I BELIEVE that the GET or POST request occurs inside the envelope of the encrypted communication. There's an initial HELO against the server that initiates encryption negotiations, and then continuing encrypted data against that address, but the details of your requests should be encrypted.
See
http://www.xramp.com/resources/how-ssl-works.