Why Your Site Shows "Not Secure" and How to Fix It

Sometimes, when visiting certain pages or switching regions on your store, you might see a browser warning like:

This warning usually appears in modern browsers when a website is using HTTP instead of HTTPS.


On this page:

What HTTPS Is

HTTPS (HyperText Transfer Protocol Secure) is the secure version of HTTP. It:

  • Encrypts the connection between your users’ browser and your site.
  • Protects sensitive information, like payment details or personal data, from being intercepted by hackers.
  • Provides a trust signal to visitors — modern browsers display a padlock for HTTPS sites.

Think of HTTPS as a digital seal of security for your website. Without it, browsers will mark your site as "Not Secure", which can scare customers away.

Why You Might See This Warning

The warning appears when:

  • A page is served over HTTP instead of HTTPS.
  • Certain regional versions of your site or custom domains do not have an SSL/TLS certificate configured.

Even if most of your site uses HTTPS, any page still using HTTP will trigger the browser warning.

How to Fix the Warning

To remove the security warning and protect your users:

  1. Update your domain configuration to HTTPS.
  2. Ensure your hosting provider or CDN supports SSL/TLS certificates.
  3. Most Shopify-managed domains come with automatic HTTPS. custom third party domains may need manual setup directly with the provider.

Once HTTPS is properly configured, browsers will show a secure padlock, giving visitors confidence that their data is safe.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us