As of January 2017, websites should be using HTTPS in place of HTTP.
Why HTTPS is essential on your webpages.
Having HTTPS protects your users against intruders coming to your site impersonating you and tricking users into divulging personal information, tracking their behaviors and identities and injecting ads and malicious content onto their computers.
If you are visiting a website with HTTP, data can be breached from wifi hotspots, a compromised ISP, or a user’s machine. It’s like leaving your door open for intruders to enter and watch everything that happens between you and the information you enter in your browser. This can include your passwords, credit card information and other sensative data.
HTTPS is a requirement for many new browser features, particularly those required for progressive web apps.
Let’s Encrypt is a nonprofit global Certificate Authority resource that helps organizations obtain, renew, and manage SSL/TLS certificates that can be used on websites to enable HTTPS connections.