SSL certificates secure your website by encrypting data between browsers and your site. Every domain pointing to Squarespace automatically receives a free SSL certificate.

Key Things to Know:

• SSL certificates are automatically included for Squarespace domains, connected third-party domains, subdomains, and child domains
• Domain names must be under 63 characters
• Certificates renew every 90 days through Let's Encrypt
• Uses 2048-bit encryption (except payments) and TLS 1.2

SSL Settings:

1. Secure (Preferred - Default)

• Forces HTTPS
• Includes HTTPS in sitemaps
• Better for SEO
• Won't load without SSL

2. HSTS Secure (Recommended)

• Provides strongest encryption
• Prevents security warnings
• Protects against attacks

3. Insecure

• Allows both HTTP and HTTPS
• Used for pre-October 2016 domains
• Less secure option

Important Notes:

• E-commerce payments are always secured with 128-bit SSL encryption
• Custom code may cause mixed content warnings
• Third-party SSL certificates aren't supported
• Changes can take up to 72 hours to process

Benefits of SSL:

• Builds visitor trust
• Prevents data theft
• Can improve site speed
• Helps SEO performance

For SSL issues:

• Verify domain connection
• Check SSL certificate status
• Ensure proper DNS configuration
• Allow up to 72 hours for changes

SSL certificates cannot be disabled but can be set to Insecure if HTTP access is needed. Subdomains receive their own certificates when properly connected to Squarespace.

Related Articles

Previous Articles