Overview   

In Google Chrome, versions 56 and higher, there will be a pop-up message that states, Not secure prior to the domain name of the site. This message shows if the site does not have a valid SSL certificate.

Important Notes  

• Other browsers have begun to adopt this practice as well. 
• When you request a password, the password transfers in an encrypted format over a secure connection via your production domain, which has an SSL. 
• CivicPlus provides a secure environment for our clients when you collect passwords, even when you do not have an SSL on your site.  

Best Practices

CivicPlus does not recommend that you collect credit card information without a payment vendor set up. These transactions are completed via the third-party ePayment's vendor site. They are required to have SSL. CivicPlus does not fall under this category and as such, we do not recommend that you collect credit card information or sensitive (personal, non-public) information through any of our modules, as this information does not store in an encrypted environment.