SEO

HSTS

By Paul Brock·Updated on 22-04-2026
TL;DR

HSTS (HTTP Strict Transport Security) is a browser policy enforcing that all connections to a site happen over HTTPS.

HSTS is set via the Strict-Transport-Security HTTP header and instructs browsers to load your site only over HTTPS, even if users type http://. It prevents man-in-the-middle attacks and signals to Google that the site takes security seriously.

Example

Strict-Transport-Security: max-age=31536000; includeSubDomains; preload enables HSTS for one year including subdomains, with intent to submit to the preload list.

Frequently asked questions

Does HSTS directly affect rankings?

Not directly. Indirectly yes: HSTS strengthens trust signals and prevents redirect chains that would hurt CWV.

Related terms

SSL / HTTPSE-E-A-T

Further reading

  • → Our service: SEO

Need help with SEO or GEO?

We help Bitcoin, AI and fintech companies get found in Google and in AI search engines.

Book a call