In 2026, there is simply no acceptable reason to run a website without HTTPS. Whether you're running a personal blog, a local business site, an e-commerce store, or a SaaS application — the little padlock icon in your visitor's browser address bar is no longer optional. It's table stakes. And the technology behind that padlock is an SSL/TLS certificate.
This guide is designed to be your single most useful resource on SSL certificates. We're not going to skim the surface. By the time you finish reading, you'll understand exactly what an SSL certificate is, why it matters enormously for Google rankings and user trust, the difference between free and paid SSL, how to install and force HTTPS on your site, and how to diagnose common SSL errors — all in plain language.
We'll also cover WordPress-specific setup, HTTP Strict Transport Security (HSTS), email security's relationship with SSL, and explain exactly what you get with Hosterlo web hosting when it comes to SSL out of the box.
💡 Quick answer if you're in a hurry: Every website needs HTTPS via SSL. For most sites, a free Let's Encrypt certificate is perfectly sufficient. At Hosterlo, SSL is included and auto-configured on every plan. Read on for the full picture.
What Is an SSL Certificate and How Does It Work?
SSL stands for Secure Sockets Layer. Strictly speaking, modern implementations use its successor protocol, TLS (Transport Layer Security) — currently TLS 1.3 — but the industry still uses "SSL" as the colloquial term. An SSL/TLS certificate is a small digital data file installed on your web server. Its job is to do two critical things:
- Authenticate your identity — prove to visitors that they are talking to the real, verified version of your website and not a malicious impersonator.
- Encrypt the connection — scramble all data transmitted between your server and your visitor's browser so that nobody in between can read or tamper with it.
The TLS Handshake Explained Simply
When a visitor types your URL into a browser, before any page content loads, a rapid negotiation process called the TLS handshake takes place. Here's what happens in roughly 50–200 milliseconds:
- Client Hello: The browser tells your server: "Here are the TLS versions and cipher suites I support."
- Server Hello: Your server responds, selecting a cipher suite, and sends its SSL certificate.
- Certificate Verification: The browser checks the certificate against a list of trusted Certificate Authorities (CAs). It verifies it hasn't expired, that it's issued to your domain, and that the chain of trust is intact.
- Key Exchange: Both sides agree on a session key using asymmetric cryptography (public/private key pair). All subsequent data is encrypted with this symmetric session key.
- Encrypted Connection Established: The padlock appears. Every byte of data — login credentials, payment info, personal details, API responses — is now encrypted end-to-end.
The certificate chain is worth understanding: your SSL certificate isn't trusted directly. It's signed by an intermediate CA, which is signed by a root CA (like DigiCert, Sectigo, or Let's Encrypt). Browsers come pre-installed with a list of trusted root CAs. If your certificate chain is broken — for example, if the intermediate certificate isn't installed correctly — browsers will display a security error.
What the padlock icon (or the https:// prefix) means to your visitor: "This connection is private and the website's identity has been verified." That's a powerful trust signal — and its absence is an equally powerful red flag.
Why SSL Matters for SEO
If you care about organic search traffic — and you should — HTTPS is not optional. Let's look at the concrete ways SSL affects your search engine rankings.
Google's HTTPS Ranking Signal
Back in August 2014, Google officially announced that HTTPS would be used as a ranking signal. At the time they described it as a "lightweight" signal. By 2026, after years of doubling down on HTTPS preference across every product and policy, the weight of this signal is considerably more significant. Google's crawlers, Google Search Console, and Google's PageSpeed insights all treat HTTPS as a baseline expectation.
In competitive niches, two otherwise identical pages — one on HTTP, one on HTTPS — will have HTTPS rank higher. Full stop.
Chrome's "Not Secure" Warning and Bounce Rate
Google Chrome, which holds roughly 65% of global browser market share, actively warns users when they visit an HTTP site. The address bar displays a prominent "Not Secure" label in red. On any page that includes a login form, contact form, or payment field, Chrome shows a full-page interstitial warning before the user can proceed.
Studies across numerous industries have shown that the "Not Secure" warning can increase bounce rates by 15–40%. If visitors are bouncing because your site looks unsafe, Google's RankBrain notices that user behaviour signal — more bounces, shorter dwell time — and it eventually hurts your ranking. The domino effect is real.
SSL and Core Web Vitals
HTTPS is a prerequisite for HTTP/2, which is a prerequisite for many performance optimizations that directly affect Core Web Vitals scores. HTTP/2 multiplexes requests over a single TCP connection (dramatically reducing latency), enables server push, and uses header compression. You simply cannot use HTTP/2 without HTTPS in modern browsers. Since Core Web Vitals — particularly LCP (Largest Contentful Paint) and FID (First Input Delay) — are official Google ranking factors, any site still running over HTTP is locked out of these performance gains.
Types of SSL Certificates
Not all SSL certificates are created equal. They differ primarily in the level of identity validation performed by the Certificate Authority before issuance. Here's a breakdown of every type you'll encounter.
| Type | Validation Level | Issued In | Best For |
|---|---|---|---|
| DV (Domain Validated) | Domain ownership only | Minutes | Blogs, small business sites, personal sites |
| OV (Organization Validated) | Domain + business identity | 1–3 days | Established businesses, professional services |
| EV (Extended Validation) | Domain + rigorous legal entity check | 1–5 days | Banks, healthcare, large e-commerce |
Domain Validated (DV) SSL
A DV certificate is the most common type. The CA only verifies that you control the domain — typically via email verification, DNS record, or an HTTP file upload. There's no vetting of your business identity. This is what Let's Encrypt issues and what most hosting providers (including Hosterlo via AutoSSL) install automatically. For the vast majority of websites, DV SSL is absolutely sufficient.
Organization Validated (OV) SSL
OV certificates require the CA to verify your organization's legal existence, physical address, and phone number in addition to domain ownership. The certificate contains your verified organization details, which visitors can inspect by clicking the padlock. OV certs add a layer of trust useful for professional businesses that want to demonstrate legitimacy.
Extended Validation (EV) SSL
EV SSL involves the most rigorous vetting process — legal existence, operational existence, physical address, authorized certificate requester. Historically, EV certificates showed a green company name bar in the browser, but modern browsers have largely deprecated that UI. Today, EV certificates still carry their verified info in the certificate details, and many enterprise organizations use them for compliance and trust reasons.
Wildcard SSL Certificates
A Wildcard SSL certificate covers a primary domain and all its first-level subdomains with a single certificate. For example, a wildcard for *.yourdomain.com covers shop.yourdomain.com, blog.yourdomain.com, mail.yourdomain.com, etc. These are highly cost-effective for sites with multiple subdomains and eliminate the need to manage individual certificates for each.
Multi-Domain (SAN/UCC) SSL Certificates
A Multi-Domain SSL (also called SAN — Subject Alternative Name, or UCC — Unified Communications Certificate) covers multiple distinct domains in a single certificate. Useful for agencies managing several client sites, or businesses with multiple brand domains. One certificate can cover yourbrand.com, yourbrand.co.uk, and yourotherbrand.com.
Free SSL vs Paid SSL — What's the Difference?
The most common question we hear from site owners: "Should I pay for an SSL certificate or use a free one?" The honest answer is nuanced but leans strongly toward free for most use cases.
Let's Encrypt: The Free SSL Revolution
Let's Encrypt is a non-profit Certificate Authority launched in 2016 with one goal: make the web HTTPS by default by making SSL certificates free and fully automated. It issues DV certificates that are trusted by all major browsers and operating systems. By 2026, Let's Encrypt has issued billions of certificates and powers HTTPS on a significant portion of the entire internet.
The key characteristics of Let's Encrypt / free SSL:
- DV validation only — proves you own the domain, not your business identity.
- 90-day validity — certificates expire every 90 days. This sounds short but is actually a security feature, and renewal is fully automated.
- Automated via ACME protocol — most hosting providers integrate this natively (cPanel's AutoSSL, Plesk's Let's Encrypt extension, etc.).
- Functionally identical encryption — a free DV certificate encrypts data with exactly the same strength as an expensive EV certificate. Encryption quality is not determined by price.
When Should You Pay for SSL?
Paid SSL certificates (from providers like DigiCert, Sectigo, or GlobalSign) are worth considering if:
- You need OV or EV validation — to display verified organization information to users, or for regulatory compliance.
- You need a Wildcard certificate for complex subdomain architectures not covered by your host's AutoSSL.
- You need extended warranty / liability coverage — some paid certs include insurance in case of certificate-related fraud.
- Your compliance requirements mandate a specific CA (rare).
For personal websites, blogs, business sites, and even most online stores, free SSL via Let's Encrypt is entirely adequate. The encryption is identical. The padlock looks the same. There is no user-visible difference. With Hosterlo web hosting, every plan comes with free AutoSSL powered by Let's Encrypt — installed automatically on every domain and subdomain on your account, with zero manual configuration required.
How to Check If Your SSL Certificate Is Valid
Before troubleshooting or after installation, you'll want to verify your SSL is working correctly. Here are the methods — from the quick-and-dirty browser check to a thorough technical audit.
1. The Browser Padlock Check
The fastest way: open your site in Chrome, Firefox, or Safari and look at the address bar. A padlock icon (🔒) means the connection is encrypted and the certificate is valid. Click the padlock for details — certificate issuer, expiry date, and the domain it's issued for.
If you see "Not Secure", a broken padlock, or a red warning triangle, your SSL is either missing, expired, or misconfigured.
2. SSL Labs Full Server Test
For a deep technical audit, visit ssllabs.com/ssltest/ and enter your domain. SSL Labs' free tool grades your SSL configuration from A+ to F and reports on:
- Certificate validity, chain, and expiry.
- Supported TLS versions (TLS 1.0/1.1 are deprecated — you should only support TLS 1.2 and 1.3).
- Cipher suite strength and any weak ciphers.
- HSTS implementation.
- Vulnerability checks (POODLE, BEAST, Heartbleed, etc.).
Aim for an A or A+ grade. Most quality hosting providers — including Hosterlo — configure servers to achieve A or A+ by default.
3. Checking Expiry Date
In Chrome, click the padlock → "Connection is secure" → "Certificate is valid." The "Valid to" field shows the expiry date. On the command line, you can use:
openssl s_client -connect yourdomain.com:443 -servername yourdomain.com 2>/dev/null | openssl x509 -noout -dates4. Mixed Content Warnings
After migrating to HTTPS, some sites suffer from mixed content — the page loads over HTTPS but some resources (images, scripts, stylesheets) are still referenced via HTTP URLs. Chrome's DevTools Console (F12) will flag these as "Mixed Content" warnings. Use a tool like Why No Padlock? (whynopadlock.com) to scan your site for mixed content issues.
How to Install a Free SSL Certificate via cPanel
Most shared hosting accounts use cPanel, and cPanel makes SSL installation straightforward with its built-in AutoSSL feature. Here's exactly how to do it.
Step-by-Step: AutoSSL via cPanel
- Log in to your cPanel dashboard (typically at
yourdomain.com/cpanelor via your hosting portal). - Scroll to the Security section and click "SSL/TLS Status".
- You'll see a list of all domains and subdomains on your account. Any with a yellow or red icon don't have valid SSL yet.
- Select the domains you want to secure (or click "Select All") and click "Run AutoSSL".
- cPanel will contact Let's Encrypt, complete the domain validation challenge, and install the certificate automatically. This typically takes 1–5 minutes.
- Refresh the SSL/TLS Status page — you should now see green padlock icons next to your domains.
AutoSSL is also configured to auto-renew certificates before they expire. You don't need to do anything manually going forward. At Hosterlo, AutoSSL is pre-configured on every account and applies to all domains and subdomains automatically, including any new ones you add later. That's part of what makes shared hosting plans at Hosterlo genuinely worry-free.
🔁 Pro tip: If AutoSSL fails for a subdomain, the most common reason is that the subdomain's DNS hasn't fully propagated yet. Wait 24 hours after creating the DNS record, then run AutoSSL again.
How to Force HTTPS on Your Website
Having an SSL certificate installed is only half the job. You also need to ensure that all traffic is automatically redirected from HTTP to HTTPS — so that even if someone types http://yourdomain.com, they land on the secure version. Here are the main methods.
Method 1: .htaccess Redirect (Apache Servers)
For Apache-based hosting (the most common type), add the following rules to your .htaccess file in your public root directory:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
This issues a permanent 301 redirect from any HTTP request to the HTTPS equivalent, preserving the full URL path and query string. The R=301 is important — it tells search engines this is a permanent move, passing link equity (PageRank) to the HTTPS URLs.
Method 2: WordPress Site URL Settings
In WordPress, go to Settings → General and update both the "WordPress Address (URL)" and "Site Address (URL)" fields from http:// to https://. Save changes. This ensures WordPress generates all internal links using HTTPS.
Method 3: cPanel "Force HTTPS Redirect" Toggle
Modern cPanel versions include a convenient toggle. Go to Domains → "Domains" (the domain manager, not SSL/TLS), find your domain in the list, and flip the "Force HTTPS Redirect" switch to on. This is the same as an .htaccess redirect but managed through a GUI.
Method 4: Cloudflare HTTPS Settings
If your site is proxied through Cloudflare, you can enforce HTTPS from the Cloudflare dashboard. Go to SSL/TLS → Edge Certificates and enable:
- "Always Use HTTPS" — redirects all HTTP requests at Cloudflare's edge before they even reach your server.
- "Automatic HTTPS Rewrites" — converts HTTP resource URLs to HTTPS in your page HTML to fix mixed content.
Common SSL Errors and How to Fix Them
SSL errors can be confusing and alarming for visitors. Here are the most common ones and exactly what to do when you encounter them.
ERR_SSL_PROTOCOL_ERROR
Cause: A mismatch between the TLS versions supported by your server and your visitor's browser, or an SSL configuration error on the server side.
Fix: Check that your server supports TLS 1.2 and TLS 1.3. Disable TLS 1.0 and 1.1. If the error is client-side only, ask the visitor to update their browser or OS. For server-side issues, contact your hosting provider.
Mixed Content Warning
Cause: The page is served over HTTPS but some resources (images, scripts, iframes) are loaded over HTTP.
Fix: Update all internal links to use HTTPS. In WordPress, use a plugin like Really Simple SSL or do a database search-replace to convert all http://yourdomain.com instances to https://yourdomain.com.
Certificate Expired Error
Cause: Your SSL certificate has passed its validity period. Browsers refuse to trust expired certificates.
Fix: Renew or re-issue the certificate immediately. If you're on a hosting provider with AutoSSL and it expired anyway, the auto-renewal likely failed due to a DNS propagation issue or a temporarily unreachable server — contact support.
SSL Certificate Name Mismatch (ERR_CERT_COMMON_NAME_INVALID)
Cause: The domain in the certificate doesn't match the domain you're visiting. For example, the cert is issued for www.yourdomain.com but you're visiting yourdomain.com (or vice versa), or the cert covers a different domain entirely.
Fix: Re-issue the certificate to cover both the www and non-www versions of your domain. Most AutoSSL implementations handle this automatically.
Incomplete Certificate Chain (NET::ERR_CERT_AUTHORITY_INVALID)
Cause: The intermediate certificate(s) linking your cert to a trusted root CA weren't installed on the server.
Fix: Re-install the certificate making sure to include the full chain (certificate + intermediate + root bundle). Most hosting control panels handle this automatically, but if you're installing manually via WHM, ensure you paste the CA Bundle.
SSL for WordPress Websites
WordPress has its own considerations when migrating to HTTPS that go beyond just installing a certificate and adding an .htaccess redirect. Here's the complete WordPress SSL setup process.
Step 1: Install and Activate AutoSSL (via Hosting)
Before touching WordPress, ensure your SSL certificate is installed at the hosting level via cPanel AutoSSL (as described above). Don't configure WordPress until the certificate is confirmed valid in your browser.
Step 2: Update WordPress and Site URL
In your WordPress admin, go to Settings → General. Update both URLs to use https://. This changes what WordPress considers its "home" address. Alternatively, add these lines to wp-config.php before the "That's all, stop editing!" comment:
define('WP_HOME', 'https://yourdomain.com');
define('WP_SITEURL', 'https://yourdomain.com');Step 3: Update the Database — Search-Replace HTTP to HTTPS
WordPress stores full URLs in its database for posts, pages, and media. After updating the site URL, old http:// links still exist in post content, theme settings, and plugin data. The cleanest fix is a database search-replace using WP-CLI:
wp search-replace 'http://yourdomain.com' 'https://yourdomain.com' --skip-columns=guidIf you don't have WP-CLI access, the Better Search Replace plugin does the same thing from the WordPress admin interface. Always take a full database backup before running a search-replace.
Step 4: The Really Simple SSL Plugin
Really Simple SSL is a trusted WordPress plugin that handles the most tedious parts of HTTPS migration automatically: it detects your SSL certificate, updates your site URL, and fixes mixed content via a JavaScript fixer for any hard-coded HTTP resources it can't directly update. For straightforward WordPress sites, it's often the fastest and safest migration path. With Hosterlo WordPress hosting, SSL is pre-installed and you can often skip to step 4 entirely.
Step 5: Verify and Flush Caches
After migration, clear all caches — your hosting server cache, WordPress caching plugin cache (WP Rocket, W3 Total Cache, LiteSpeed Cache), browser cache, and CDN cache. Then verify your site loads correctly on HTTPS, check for mixed content in Chrome DevTools, and update your Google Search Console property to use the HTTPS version of your site.
HTTPS, HSTS, and Security Headers
HTTPS is foundational, but it's only the beginning of a comprehensive web security posture. Two additional layers that every site owner should understand are HSTS and security headers.
What Is HSTS?
HTTP Strict Transport Security (HSTS) is a web security policy mechanism that tells browsers: "This website should only ever be accessed over HTTPS, even if someone types HTTP." Once a browser receives an HSTS header, it will automatically convert any future HTTP requests to HTTPS for the specified duration — without even making an HTTP request to the server first.
This is critical because it eliminates a vulnerability: if a user is on a public Wi-Fi network and first visits your site via HTTP before the redirect kicks in, a man-in-the-middle attacker could intercept that initial HTTP request. HSTS prevents this by making the browser go straight to HTTPS.
Add HSTS via an HTTP response header (via .htaccess or Nginx config):
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
The max-age=31536000 sets a one-year HSTS policy. includeSubDomains extends it to all subdomains. preload allows you to submit your domain to the browser HSTS preload list (hstspreload.org), meaning browsers will enforce HTTPS for your domain even on the very first visit, without ever needing to see an HSTS header.
⚠️ Before enabling HSTS preloading: Make sure every single subdomain of your domain serves valid HTTPS. Once submitted to the preload list, it can take months to be removed. Broken HTTPS on any subdomain will make those subdomains completely inaccessible.
Content Security Policy (CSP)
The Content-Security-Policy (CSP) header tells the browser which sources of content are trusted and allowed to load on your page. It's a powerful tool to prevent Cross-Site Scripting (XSS) attacks — where malicious scripts injected into your site attempt to run in visitors' browsers. A basic CSP header:
Content-Security-Policy: default-src 'self'; script-src 'self' https://cdn.tailwindcss.com; img-src 'self' data: https:;
CSP is complex to configure correctly (especially on sites with many third-party integrations), but even a basic policy adds significant protection. Start in "report-only" mode (Content-Security-Policy-Report-Only) to see what would be blocked without actually blocking anything, then tighten from there.
Other Important Security Headers
X-Frame-Options: SAMEORIGIN— prevents your site from being embedded in iframes on other domains (clickjacking protection).X-Content-Type-Options: nosniff— prevents browsers from MIME-sniffing a response away from the declared content type.Referrer-Policy: strict-origin-when-cross-origin— controls how much referrer information is included with outgoing requests.Permissions-Policy— restricts which browser features and APIs your site can access (camera, microphone, geolocation, etc.).
Email Security and SSL
When business owners first learn about SSL certificates, they sometimes assume that having one means their email is also secure. SSL on your website (port 443 / HTTPS) is separate from email security protocols, but they're related and worth understanding together.
TLS for Email: STARTTLS and SSL/TLS on Mail Ports
Modern email servers transmit messages using TLS encryption — configured on ports 587 (SMTP with STARTTLS), 993 (IMAPS), and 995 (POP3S). When you set up email on your Hosterlo hosting account, these ports are already TLS-secured using your domain's SSL certificate. This encrypts email data in transit between servers.
SPF, DKIM, DMARC — Authentication vs Encryption
While SSL encrypts the connection, SPF, DKIM, and DMARC are DNS-based email authentication protocols that prevent email spoofing and phishing:
- SPF (Sender Policy Framework): A DNS TXT record that specifies which mail servers are authorized to send email on behalf of your domain. Prevents unauthorized servers from spoofing your "From" address.
- DKIM (DomainKeys Identified Mail): Adds a cryptographic signature to outgoing emails, verified using a public key published in your DNS. Proves the email hasn't been tampered with in transit.
- DMARC (Domain-based Message Authentication, Reporting & Conformance): Ties SPF and DKIM together with a policy — it tells receiving mail servers what to do when an email fails authentication checks (quarantine, reject, or do nothing) and sends you aggregate reports.
Configuring all three is essential for email deliverability in 2026. Google and Microsoft both now require SPF and DKIM for high-volume senders, and a proper DMARC policy is rapidly becoming a baseline requirement. These records are set in your domain registration DNS zone — you can check and verify them quickly using free DMARC lookup and email security audit tools.
Does a Free Domain Come with Free SSL at Hosterlo?
Yes — and the answer is simple: every annual hosting plan at Hosterlo comes with both a free .com domain name and free SSL certificates on every domain and subdomain on your account. Here's what that means in practice:
- When you sign up for an annual Hosterlo hosting plan, you register a .com domain free of charge for the first year.
- AutoSSL is activated on your account automatically. Within minutes of your domain propagating, HTTPS is live.
- SSL certificates auto-renew silently — you never get an expiry warning, never have to manually renew, never get hit with surprise fees.
- Every subdomain you create (e.g.,
shop.yourdomain.com,staging.yourdomain.com) gets its own certificate automatically. - There is no upsell for "premium SSL" — the free SSL provided is cryptographically identical in encryption strength to expensive paid alternatives.
If you're building a new site or migrating an existing one, this is one less thing to worry about. Our free free Website Growth Kit — included with every annual plan — also includes additional tools to help you grow your online presence beyond just hosting.
Combined with Hosterlo's 99.99% uptime guarantee, global LightSpeed infrastructure, and 24/7 human support, there's no reason to delay getting your site onto a fast, secure platform. Explore shared hosting plans starting at a price that makes sense for any stage of business.
Frequently Asked Questions About SSL Certificates
Does SSL affect website speed?
Modern SSL/TLS has a negligible impact on speed, and in most cases actually makes your website faster. Here's why: HTTPS is required to use HTTP/2, which multiplexes multiple requests over a single connection, dramatically reducing latency compared to the older HTTP/1.1 protocol. Add to that TLS 1.3's 1-RTT handshake (down from 2 in TLS 1.2) and session resumption for repeat visitors, and any overhead from encryption is more than offset by the performance gains. Google PageSpeed and Core Web Vitals scores consistently improve when sites migrate to HTTP/2 — which requires HTTPS.
How often does Let's Encrypt SSL need to be renewed?
Let's Encrypt certificates expire every 90 days. This sounds inconvenient, but the ACME protocol used by Let's Encrypt makes renewal fully automatic — good hosting providers configure auto-renewal via AutoSSL or a scheduled cron job that renews certificates roughly 30 days before expiry. At Hosterlo, auto-renewal is configured out of the box. The 90-day lifespan is intentionally short — it limits the damage if a certificate's private key is ever compromised, since the window of exposure is capped at three months rather than one or two years.
What happens if my SSL certificate expires?
If your SSL certificate expires, browsers will immediately display a full-screen security error to every single visitor — something like "Your connection is not private" with a red warning. Most visitors will leave immediately rather than bypass the warning, which means your site effectively becomes inaccessible. On top of that, Google may de-index or drop-rank pages that return SSL errors. And if you're running any kind of business, the reputational damage from an "unsafe site" warning is severe. This is why auto-renewal via AutoSSL is so important — it removes human error from the equation entirely.
Does Hosterlo provide free SSL on all plans?
Yes, absolutely. Every Hosterlo hosting plan — from entry-level shared hosting to premium business hosting — includes free SSL certificates powered by AutoSSL (Let's Encrypt). SSL is automatically installed on your primary domain and all subdomains. There are no premium SSL tiers to buy, no separate SSL fees, and no manual setup required. Annual plans also include a free .com domain and the free Website Growth Kit. SSL is just included — the way it should be in 2026.
Get Free SSL + Free Domain with Every Hosterlo Hosting Plan
Stop worrying about SSL configuration. Every Hosterlo plan includes automatic SSL on all domains, a free .com domain, and the free Website Growth Kit — all on blazing-fast LightSpeed infrastructure.
No credit card tricks. SSL included. Cancel anytime.