We don't use https (which is an encrypted web transaction) because you're not transmitting anything sensitive here. But earlier this year, they adopted it as the standard and put out a notification for sites that don't use it. It's fairly common, and it's been almost a year since you'll have started seeing that notification here and probably on other sites that you visit.
We'll transition next year sometime. But it's not something we actually need.