From Google Webmaster Central Blog, I quote from Google the following:
"For these reasons, over the past few months we’ve been running tests taking into account whether sites use secure, encrypted connections as a signal in our search ranking algorithms. We've seen positive results, so we're starting to use HTTPS as a ranking signal. For now it's only a very lightweight signal - affecting fewer than 1% of global queries, and carrying less weight than other signals such as high-quality content - while we give webmasters time to switch to HTTPS. But over time, we may decide to strengthen it, because we’d like to encourage all website owners to switch from HTTP to HTTPS to keep everyone safe on the web."
You’ll need to install a Secure Socket Layer certificate (the protocol that HTTPS uses) to ensure that data between your server and browser remains private and secure. Even if a hacker manages to intercept your data, he won’t have the key to decrypt it.
Google recommends the following when securing your website with SSL certificates:
- Use 2048-bit key certificates.
- Allow search engine crawlers to access your website and remove the “no index”
- Allow robots to crawl your HTTPS pages
- Use protocol relative Universal Resource Locators (URLs) for all other domains
- Use relative URLs for resources which reside on the same secure domain
- Choose the type of certificate that you require: multi-domain, single, or wildcard certificate.
So from all factors considered it time to get an SSL & secure your website.