Up until this month, a “Not secure” warning only appeared next to the website address on non-HTTPS website pages that accepted a username and password or credit card.

Now, every non-HTTPS form and all non-HTTPS pages viewed in incognito mode will have this warning.

Chrome will show a “Not secure” warning when users enter text in a form on an HTTP page or when they view any non-HTTPS page in incognito mode. Google's been pushing for more security for a long time now, and this latest warning is their way of further nudging website owners to offer full security.

But who uses incognito mode anyway? Well, 46% of international web users, according to GlobalWebIndex.

How can you tell if your site is secure?

Well, if you’ve got a web developer, ask him. If not, register your site to Google Search Console. If your site isn’t secure, you should receive a notification from Google letting you know so.

On average, only half of page 1 Google search results are HTTPS. This means you're not alone if your website hasn't yet been converted, but also means that if it was, you’d have a big one-up on some of your competitors.