not using HTTPS means that checkout information is passed to the payment gateway insecurely.
If you are using one of the local checkout methods, meaning that the customer enters their credit card number on the checkout page of your site, it can pose a security risk.
if you are using one of the local checkout methods, you should have an ssl certificate installed.