How to Make Your Squarespace Site SSL Secure (It’s Easier Than You Think)

You know that little padlock in the browser bar? The one next to “https”? That’s SSL.

And if your Squarespace site doesn’t have it?

Google flags it. Visitors get nervous.

And you look like you forgot to lock the door on your digital house.

SSL (Secure Sockets Layer) encrypts the connection between your site and its visitors. It protects form submissions, login data, checkout info-everything. It’s non-negotiable in 2025.

The good news? Squarespace provides free SSL certificates for every site.

Even better news? It’s almost automatic.

How to Make Sure SSL is Working-and How to Fix it if it’s Not.

Step 1: Make Sure SSL Is Enabled

1. Go to your Squarespace Dashboard
    
2. Click Settings > Advanced > SSL
    
3. Choose the following settings:
    
   • Security Preference: Select Secure (Preferred)
      
   • SSL: Make sure ON is selected
      
4. Save your changes

Done. That activates the SSL certificate provided by Let’s Encrypt.

Step 2: Wait for Activation

SSL certificates on Squarespace usually activate within a few minutes-but in some cases, it can take up to 72 hours (especially if your domain was just connected).

In the meantime:

• Visit your site at https://yourdomain.com
   
• Don’t force redirects or edit DNS during this time

If the padlock shows in the browser bar, you’re good.

Step 3: Fix Mixed Content Warnings (If SSL Still Shows Insecure)

If your site says "Not Secure" even after SSL is enabled, you might have mixed content-meaning you’re trying to load insecure (http) assets on a secure (https) page.

Here’s how to fix it:

• Go to Settings > Advanced > SSL
   
• Turn on HSTS and Force HTTPS
   
• In Design > Custom CSS or any Code Blocks, search for any links starting with http://
   
• Update them to https:// or use relative URLs (no http/https at all)
   
• Double-check all image embeds, video URLs, and third-party scripts

Step 4: Use HTTPS Everywhere

Update all your internal links:

• In navigation menus
   
• Inside buttons
   
• Within blog content

Make sure every link starts with https:// to avoid unnecessary warnings or redirects.

Step 5: Set Canonical URLs (Optional, but Smart)

To avoid SEO confusion between HTTP and HTTPS versions of your site:

1. Go to Settings > SEO > Site Visibility
    
2. Confirm that your canonical URL is set to the HTTPS version
    
3. Submit your HTTPS site to Google Search Console

Conclusion: Lock the Door, Build Trust

SSL isn’t just a security feature. It’s a trust signal.

When visitors see that padlock, they’re more likely to stay, sign up, and buy. When Google sees it, you avoid penalties and climb higher in search results. When something goes wrong-forms, payments, login attempts-SSL is what keeps everything protected.

Squarespace makes it easy. But you still have to make sure it's actually on.

Check the settings. Fix the content. Lock it in.

One padlock. Ten minutes of effort. A whole lot of peace of mind.

You’ve got a secure site and it shows.