Seeing A "Not Secure" Warning? Here's How To Fix It

By Graham Stewart | Updated August 2023 | 40,525 Views

There is an easy way to fix it. Just make sure you don't choose the hard way.

One minute your website’s fine. The next, it’s displaying a not secure warning. Maybe you discovered it by visiting your own website, or perhaps a concerned customer got in touch and pointed it out.


However you found about it, you’re undoubtedly asking yourself “why is my website displaying a not secure warning?”. The answer is: Any website that is not protected by a SSL certificate will show a not secure warning when viewed in Google Chrome version 68 and later. Chrome 68 was launched by Google on 24.07.18.

Online security isn’t something you should take lightly at all.


What does a not secure website mean?


A website that is not secure means that the connection between the website and your web browser is not encrypted
This means that any information you enter on the website, such as passwords, credit card numbers, or personal information, could potentially be intercepted by a third party.

You can usually tell if a website is secure by looking at the address
bar in your web browser. If the website is secure, the address will
typically start with “https” right before the domain name rather than “http.” The “s” stands for secure.


How to tell if a website is Not Secure?


Most web browsers display a padlock icon next to the website address to indicate that the connection is secure.


If you see a not secure message on a website, it is generally a good idea to avoid entering any sensitive information on the website. Instead, you should look for a different, secure website to use. Lookout for the HTTP & HTTPS.


HTTP means Not Secure Website


HTTP protocol (Hypertext Transfer Protocol) is a protocol for transmitting data over the internet. It is the foundation of data communication on the World Wide Web. When you visit a website using HTTP, the connection between your web browser and the website’s server is not encrypted, which means that any information you enter on the website, such as passwords or credit card numbers, could potentially be intercepted by a third party.


HTTPS Means Secured Website


On the other hand,HTTPS(Hypertext Transfer Protocol Secure) is a secure version of HTTP. It uses an encryption protocol called SSL (Secure Sockets Layer) or TLS (Transport Layer Security) to secure the connection between the
web browser and the website’s server. This means that any information you enter on a website using an HTTPS version is encrypted and cannot be easily intercepted by a third party.


In general, it is a good idea to use HTTPS whenever you are entering sensitive information on a website, such as passwords or credit card numbers. Most modern websites use HTTPS to secure their connections, but it is always a good idea to double-check before entering sensitive information.

How to Remove Not Secure warning on your Website?

There are Two ways to remove the warning. The easy way and the hard way.

First the easy way: On my website I actually hired someone to fix the problem for me for $15. I would highly recommend this method since its what I did and it was hassle free.

The merchant was easy to work with and has over 1,100 5 star reviews on Fiverr.

The Hard Way: The Do it yourself option.

Note: I tried doing this myself but I could not figure it out. You are welcome to try but I highly recommend having someone do it for you as stated above.

How To Get an SSL Certificate

Now you know the benefits of SSL and the answer to “Does my website need SSL?” The next step is getting an SSL certificate for your business.

While SSL is a Google recommendation for all websites, not every eCommerce website needs it. Some websites use shopping platforms with a built-in secure payment system. These websites use a third party to handle transactions.

If you use a platform where a third party processes the data, it will take care of any sensitive information, and you don’t need to worry about security. If you ask, “Does my website need SSL?” the answer in that case would be no.

Apart from those instances, all other websites must get an HTTPS status according to Google, including small businesses.

You can tell if your website is secure by checking the browser’s address bar. A secure website will show a padlock icon and an HTTPS at the beginning of the URL.

You need to ensure every page of your website loads using the right protocol. You can search and fix any URL loading as not secure using your browser’s inspection tool.

You can also confirm whether a web page is encrypted using a free SSL checker tool.

The Different SSL Certificates and How To Get Them

Now that you know the benefits of SSL, the question isn’t “Does my website need SSL?” but rather, “What type of SSL certificate do I need for my website? “

The certificate you choose will depend on your website’s type and your budget. Plus, the encryption level might be the same, but the vetting and validation process is unique for each.

Domain Validated SSL

A Domain Validated SSL is ideal if you want a fast and inexpensive SSL certificate, as no paperwork is required. The certificate authority (CA) validates your right as an applicant to use a particular domain name and that you have properly registered your domain.

You don’t need to present any company documents to receive a Domain Validated SSL. The only information displayed within the secure site seal is encrypted.

Organization Validated SSL

After thoroughly vetting your company and validating its right to use a certain domain, the CA will issue an Organization Validated SSL. The CA confirms the organization is legally registered and you’re lawfully acting on its behalf.

Anyone can find additional information on the vetted company by clicking on the secure site seal button. This allows them to see who is behind the website and is a great way of gaining trust with your customers.

Extended Validation SSL

As users move toward online shopping and banking, they need to ensure the websites they are interacting with are genuine. It can be challenging to verify all identities online.

That’s why an Extended Validation (EV) SSL certificate might be useful for your eCommerce website. This is typically the highest level of authenticity and can greatly boost your customers’ trust in your website.

But you must be ready for a thorough vetting process to receive an EV SSL certificate. The CA will verify your organization’s identity and your rights to use a specific domain by:

Making sure your business has exclusive rights to use the domain as specified in the EV SSL certificate

Vetting organization-related information such as phone number, business address, and operational existence

Verifying your company has adequately stated why it needs an EV SSL certificate

Confirming that official records match your organization’s identity

If you want more information about installing a SSL certificate yourself read this article.

Again I would highly suggest you pay the small fee of $15 and have it done on Fiverr for you as its quite technical.