Yes.
Sites hosted on our service are automatically secured with Let's Encrypt certificates. Setting them up and renewing them is taken care of by our system without the need for you to do anything. (Well, anything but get your site's DNS and aliases to work correctly. If the public can get to your site, Let's Encrypt can typically secure it.) Let's Encrypt is a free service, but they do accept charitable donations that are (to the best of our knowledge) tax-deductible where allowed by law.
TLS on our system is implemented using the SNI (Server Name Indication) extension, and we enforce the use of strong, modern security algorithms. All of that is well-supported on current browsers and hardware. Very old hardware and software that no longer receive security updates may not be able to interoperate with our systems. If you have a requirement to support an outdated device or software package that requires obsolete, known-insecure versions of SSL, we can't help with that.
Our implementation of TLS has not been audited for, and we do not support its use for the following:
- PCI DSS compliance for accepting credit card information directly on your site. (Use a third-party payment processor.)
- HIPAA compliance for sensitive medical information. (There's paperwork. Lots of it. You need a specialized—and very expensive—provider who can help prepare your compliance documents.)