If your website doesn’t use HTTPS by default, or if your certificate isn’t properly configured, then you’re not taking privacy seriously. In fact, you’re part of the problem.