A lack of https on the main part of the site isn't really a big deal; the only thing that needs SSL for security is the checkout process. As long as that has SSL, I wouldn't be worried about an attack stealing the stuff assuming they're halfway competent.
It's better if the website is secured so you don't get ripped off by money, credit stolen, etc.
A website that phishes numbers won't be secured and if they do, their website get's taken down and is fined. Non-registered websites somehow get away with the stuff,
and IC stuff is not the only website that is targeted. SSL is definitely a factor but that's a key factor when maintaining a business. I still prefer HTTPS://
I need your explanation on this.
SSL is an encryption protocols used to transfer sensitive data over the internet by use of a third party certificate.
HTTP is unencrypted raw data when SSL is used to encrypt the HTTP traffic it is called HTTPS witch is suppose to be secure //tho nothing is truly secure every layer helps.
A website can have a mix of HTTP and HTTPS on a single page from what I'm aware of. I don't do web design so I don't' know the exacts of how it is implemented, but as far as I know every thing should be fine as long as the sensitive data portions of the site use ssl.