SSL Warning / "Not Secure" Website
Browsers show a "Not Secure" label or a certificate warning when people visit your site, which scares away visitors.
Common signs of this issue
- The address bar shows "Not Secure" or a crossed-out padlock.
- Visitors see a full-page warning like "Your connection is not private."
- The site loads on http:// but not https://, or mixes the two.
- The warning mentions an expired or mismatched certificate.
Safe checks you can do yourself
None of these require sharing passwords with anyone.
- Look at the exact wording. "Certificate expired," "name mismatch," and "not secure" each point to different fixes.
- Try loading your site with
https://in front of the address. Note whether the warning changes. - Check whether it happens on every device and network, or just yours. A wrong clock on your own computer can cause false certificate warnings.
- Use a free online SSL checker (search "SSL checker") and enter your domain to see the certificate's status and expiry date — this needs no login.
- Note whether your hosting offers free SSL (most do, often "Let's Encrypt" or "AutoSSL" in cPanel) and whether it's switched on.
What this usually means
Usually it means the security certificate is missing, expired, or not installed for the exact address people use (for example it covers example.com but not www.example.com).
If the certificate is fine but you still see "Not Secure" on some pages, the page may be loading insecure images or scripts — that's a related "mixed content" issue.
What not to do
- Don't ignore it — a security warning drives away customers and hurts trust.
- Don't buy an expensive certificate before checking whether your host offers free SSL.
- Don't tell visitors to "click through the warning"; that trains bad habits and looks unprofessional.
When to get help
Certificate installs and forcing https across a whole site are quick for someone who does it regularly. If this is a business site showing a scary warning to customers right now, it's worth resolving the same day.
Not sure what to do next?
Answer a few short questions and we'll point you to the safest next step — DIY, a freelancer, or a direct review. No passwords required.
Is this a business website? If this issue may be costing you leads, sales, or trust, you may want a direct review instead of trial and error.
Frequently asked questions
Is SSL the same as HTTPS?
Effectively yes — installing an SSL/TLS certificate is what lets your site load securely over https:// and removes the "Not Secure" label.
Do I have to pay for SSL?
Usually no. Most hosts include free certificates (Let's Encrypt / AutoSSL). Paid certificates exist but most small sites don't need them.