SSL certificates automatically protect all properly configured domains pointing to your Squarespace website. This security measure prevents hackers from impersonating your site or stealing visitor information.

Qualifying for SSL Protection

• Includes: Squarespace domains, third-party domains, sub-domains, and integrated domains
• Domain requirements:
  • Must be correctly connected
  • Must point to a Squarespace website
  • Maximum length: 63 characters

Checking SSL Status

1. Visit Domain dashboard and check for "Issued" status
2. Check SSL menu for "Active" status
3. Visit your website to verify the certificate

SSL Security Settings

Secure (Recommended)

• Redirects to HTTPS
• Includes HTTPS in sitemaps
• Improves SEO through HTTPS indexing
• Requires SSL-supporting browsers

HSTS Secure

• Enhanced encryption
• Prevents security attacks
• Eliminates "connection not private" errors

Insecure

• Allows both HTTP and HTTPS access
• Uses HTTP in sitemaps
• Search engines index HTTP version

E-commerce Security

• Checkout areas use 128-bit SSL encryption
• Complies with Level 1 PCI guidelines
• Custom domains visible in checkout URL with Secure setting

Technical Specifications

• Provider: Let's Encrypt DV SSL certificates
• Certificate renewal: Every 90 days
• Encryption: 2048-bit (except checkout)
• Protocol: TLS 1.2
• No support for HPKP or third-party certificates

Benefits of SSL

• Builds visitor trust
• Protects sensitive data
• Potential performance improvements
• SEO advantages

Important Notes

• SSL certificates cannot be disabled
• Works with all sub-domains
• Account login always encrypted regardless of settings
• Certificate changes may take up to 72 hours
• Mixed content warnings may occur with custom code

Related Articles

Previous Articles