While checkout may be the most obvious target for a malicious hacker, resources across all parts of your website can also expose you to vulnerabilities. This is because regular HTTP does not provide a secure connection, so any part of a website loaded over HTTP can be intercepted and even replaced or edited by a hacker with the tools and know-how to do it. While this is rare on many platforms and doesn't mean your Shift4Shop store is at risk, Google doesn't discriminate when they make their recommendations, as their priority is to ensure a better, safer experience for the entire World Wide Web. Therefore, Google now promotes sitewide HTTPS for all websites.