Taking on a project like making your very own website or blog is a big undertaking and kudos to you for undertaking a project like it. A big worry when undertaking a project like this, is whether your new site is safe from criminals. Although you can never be entirely safe when it comes to things that are available on the internet, there is a bunch of things you can do to make sure it is as safe as possible.
The first thing you want to do is find a proper provider for your website or blog, you may already have one, but you can still check if they are reputable and find a new one if they aren’t. Usually reading some reviews around the internet and news in regards to data breaches with the company is a good start, all of which can be found with a few searches. A good pointer as well is that most (but not all) companies who boast that they can host your site for $1 a month, are usually not where you want to have your site. The reason for this is that to provide a site a $1 a month, you really have to cut corners and that means skimping on security. Usually a more reputable provider will be in the range of $5-10 a month for a small site.
The next thing to look out for is to keep your website up to date. You most likely won’t be able to update the computer your site is run on, but most 1-click setups today runs an app that has a bunch of things that can be updated. These are entirely up to you to keep updated, WordPress being a popular choice, has a need to update WordPress itself, as well as something called plugins (small programs inside WordPress) and the themes inside (the visual part of your site). These are all important to keep up to date, to make sure there are no security holes in any of them.
The next thing is to make sure you don’t give access to anyone that doesn’t need to have access to your site. This means no sharing passwords, using secure passwords and giving the minimum amount of access to other people who need to work on your site. WordPress for example has user roles, which is what determines what a user can or can not do, but regardless of which system you are using, it is important to look up these roles/rights and only give the bare minimum to people other than yourself.
The final thing is keeping an eye on your site, there are a lot of services you can sign up for, but nothing beats the good old human inspection. You know what your site looks like and what it is supposed to look like, you also know if anything looks odd or out of place. So it is up to you to check on your site every once in a while, as well as checking any emails or comments your site may get, that you have to react on.