SSL certificates automatically secure your domain connections to your Squarespace site. This security protocol prevents hackers from impersonating your site or stealing visitor information.

SSL certificates are included for:

• Squarespace domains
• Connected third-party domains
• Subdomains
• Predefined domain names

Requirements:

• Third-party domains must be properly connected
• Domain names must be 63 characters or less
• Domains must point to Squarespace sites

To check your SSL certificate status:

1. Open your Domains dashboard
2. Click on the domain
3. Verify certificate status shows "Issued"

SSL Settings Options:

Secure (Recommended)

• Redirects visitors to HTTPS
• Includes HTTPS links in sitemap
• Promotes SEO through HTTPS indexing
• Requires SSL-compatible browsers

HSTS Security

• Ensures encrypted connections
• Prevents site spoofing
• Eliminates "connection not private" errors
• Recommended when using Secure setting

Unsecured

• Allows both HTTP and HTTPS access
• Uses HTTP links in sitemap
• Search engines index HTTP version
• Default for pre-October 2016 domains

Commerce Payment Security:

• Protected by 128-bit SSL encryption
• PCI level 1 compliant
• Secure payment pages regardless of site SSL settings

Technical Specifications:

• Uses Let's Encrypt DV certificates
• 2048-bit SSL encoding
• TLS 1.2 for HTTPS connections
• 90-day certificate renewal cycle

Benefits of SSL:

• Enhances visitor trust
• Protects user information
• Improves site loading
• Boosts SEO performance

Third-party certificates are not supported. For optimal security, use Squarespace's built-in SSL protection with the Secure setting and HSTS enabled.

For SSL issues or security warnings, check domain connections and DNS settings. Certificate processing can take up to 72 hours for new or modified settings to take effect.

Related Articles

Previous Articles