Embedded forms security

What is the correct way to use an embedded application form in external website to assure proper data security? The website itself is not using any SSL at all.