Have you heard the recent news about Google Search Console that your website may have a possible security issue? If you are operating an e-commerce website or an informational website, it’s very important that you have an SSL for your site.
According to recent news, starting October 2017, Google Chrome will show a “Not Secure” warning message when users enter text in a contact form on a standard https:// page. The new warning is part of a long term plan to mark all pages served over https:// as “Not Secure”.
Since April 2017, Google Chrome has been protecting credit card information on sites that don’t run https://, but now Google is increasing this security to cover an even wider range.
What it means?
You should now go ahead to protect your website contact form or a form that your customer uses to subscribe to your email marketing list. Google recommends that even if no customer specific data is captured, your website should be protected, which in effect makes good sense, as it makes your customers feel safe when using your site.
If your site doesn’t have an SSL Certificate, visitors to your page will be warned about it with additional security warnings highlighted in the Chrome browser toolbar, which may prevent them from progressing further with their page views, losing you customers and sales.
What parts of the site you need to secure?
Any hard-coded http: links used for images, css or .js on your site will need to be secured. Again any forms used anywhere in the site (newsletter signup, contact forms, search etc) all need to point to secure locations or they will be flagged as non-secure. Any third party scripts or tools your site make use of, which are not secure, will have to be secured. Depending on the third party script or tools you are using, you may have to reach out to the provider you are using for any third-party vendors.
Make sure your SEO does not get affected
This could affect your SEO as your URL’s are changing from https:// to https://. In order to prevent you from losing your organic rankings, will need to do a 301 redirect from https:// to https://. Depending on the site will need to follow the below steps to make sure your SEO does not get affected:
- Remove the existing sitemap.xml from Google Webmaster
- Create a new HTTPs website profile in Google Webmaster
- Submit sitemap.xml including HTTPs URLs in new Google Website profile
- Change website HTTP to HTTPs in Google Analytics profile
Don’t be anxious, we are here to help you
We’d recommend that you attend to this sooner, rather than leaving it till after October when your site will display insecure messages. To resolve this security issue, we can help you to install an SSL certificate to provide protection and for your website to be migrated to https://rather than the unsecured https:// version. By doing this upgrade the “Not Secure” warning will not appear on your site when users on the Chrome browser visit. Other file URLs and Image Links will also need changing to support the new security settings.