If you read the chapter on basics, you learned how to tell a non secure from secure site (HTTP vs HTTPS). The question is about this site specifically.

Safeonline889.com does not have SSL enabled and is an http only site (for now). This is because there is no PII (Personally Identifiable Information) being stored here. There are no financial transactions being processed. If this site gets compromised, the best a cracker would get would be an email address unattached to a person.

Part of the what we call “risk assessment” is (or should be) performed for any aspect involving security and personal protection. Even if someone were able to get past defenses, they would not get personal information from this site.

To underline HTTP vs HTTPS, I am not advocating using only HTTPS sites. If you are sending PII or financial information, the site needs to be HTTPS. If the most you transmit is an email address or are just browsing, HTTP is fine.

In a few months, a new Google Chrome version will begin a more emphatic message to point out the difference between the two. I will post an update when this happens.