To be honest, since LetsEncrypt has matured, there's really no good reason not to encrypt a web site connection. It's made it really simple to do and is free. The days of having to pay megabucks for a certificate and jumping through all sorts of hoops to get verified have long gone.
All the sites I'm currently responsible for use https. It's a no brainer and (allegedly) helps with Google rankings, as it's my understanding they are now taking that into account.