Going through another department's API documentation and wrapper library where it has documented samples on how to use it. One of the samples specifically shows how to disable HTTPs requests for when retrieving customer info but it also states in the documentation to specifically NOT USE this disable function.

When it comes to customer info, I don't know why the fuck you would allow an override option to do everything over unsecure requests, and even document about it!