Site security is among one of the most important aspects of building a website. If you're using a Vanity URL or email white labeling, you may experience some instances where your Splash page is displaying as not secure. Not to worry - there are a few ways to remediate these situations.
Check them out below!
1. Your Vanity URL is not SSL-certified
Every Splash event is created with a unique URL that includes a splashthat.com subdomain. These URLs are all secure - meaning they start with https:// - and ensure an encrypted connection between server and browser, protecting your attendees and their data.
However, your team has the option to connect a custom domain to your page via our Vanity URL option. While it's easy to connect your page to a custom domain, this will not automatically open with the secure https:// extension.
Securing your custom domain will prevent any errors when access the site via the Vanity URL by installing an SSL certification. The installation of this certificate is a typical requirement to meet the rigorous security standards of many companies. It also enables your Vanity URLs to open with https:// prepended.
For our Enterprise accounts, Splash now offers two options to install certificates! For more information on how to set this up, check out: How do I get an SSL certificate installed for my vanity domain?
2. There is a piece of insecure content on your page
If you already have an SSL certificate in place, you might see a message from your browser that reads, "This site is not fully secure".
This could mean that there is a piece of content (say, an image) on your site that is hosted by an insecure http:// link. If you need help identifying the insecure image, reach out to our team and we can take a look!
3. Your URL's Link Branding is insecure
Are you noticing that your site is only showing it's not secure when opening the page via a button in a Splash email? Do your emails send from a custom domain (e.g. firstname.lastname@example.org)?
If so, it can happen time to time because another domain (e.g. url314.yourdomain.com) is redirecting the visitor to your Splash site. This URL populates to act as a middle-man to get traffic to the actual end URL. This URL is not covered by an SSL, which is why it can get flagged by some browsers. To ensure your guests can reach your page when they click the link from your emails, we can take a few steps to remediate:
1. Paste a plaintext link to your Splash page in your email as opposed to linking it through a button.
2. Submit a request to our team to remove link branding from your account.
A few things to note about link branding:
- The change will be almost imperceptible to guests/email recipients.
- This change will take place across your entire Splash account
- Once link branding is removed, it cannot be re-added unless we remove your team's existing Email White Label set-up, and start over.