How do you know if your website has an SSL certificate installed? Usually, a LOCK icon is displayed next to your web address when you enter it in a browser. You can also test it out by typing in https://yourdomainname.com vs http://yourdomain.com.
Most especially if you’re taking credit card payments on your site (not including PayPal which redirects your customers to their site for payment), you should already have an SSL certificate installed on your website. Otherwise, you are probably not PCI compliant.
Why should you be PCI compliant? If a breach occurs on your site, you may be subject to fines, forensic audit costs, card replacement costs, and other unwanted consequences to your company or brand.
What if you’re not taking credit card payments on your site? Starting January of next year, Google Chrome will start labeling sites that have credit card AND password forms as NOT secure to anyone who visits your site using their browser. Imagine visiting a site and getting a warning about security. How much time would you spend on that site?
What should you do now? Depending on your web hosting service, you may already have a free certificate included or a free certificate may already be offered by your web host. Siteground (affiliate) has Let’s Encrypt ready to install from their cPanel. If you have Namecheap (affiliate), purchasing a basic SSL certificate is only $9/yr. Check the hosting package you purchased as well. Some services like GoDaddy might have it included in some of their plans but don’t automatically add it to your account.
If you need help installing an SSL certificate on your site, this is one of the services I offer to my clients and is automatically included in my WordPress Packages.