It is a special communication protocol that protects the information being transmitted across the web. It creates a secure connection between a person’s web browser and the server of the company they are interacting with, so all communication between the two is kept private and secure, safe from eavesdropping, and cannot be stolen or changed in transit.
All the information that is passed through this secure connection is encrypted before being sent, and decrypted only when received on the other end.
If someone manages to access the information en route, it is useless to them because they cannot read what it says.
To enable SSL, a website needs to get an SSL Certificate. When your website has an SSL Certificate, your visitors will see a small padlock in front of your URL. Your URL will also start with HTTPS instead of HTTP. The S on the end stands for Secure. Depending on the internet browser they are using, there may also be a green bar and the word Secure in front of your domain name.
Everyone knows that it is critical you secure any financial data, but even basic personal information such a person’s name, address, phone number and email address should also be secured.
In fact, your website needs to be fully secured no matter how much or how little information you gather from your visitors.
Google Chrome is already marking sites with Not Secure in the address bar if the site asks for any sensitive information (like login information, financial information or other confidential information) when the website does not have an SSL Certificate.
Firefox displays a small padlock with a red diagonal slash through it.
Eventually, all websites without an SSL Certificate will be marked as not secure simply because they are not secure, and not because they are collecting any sensitive information at all.