If you don't have good protection on your website, Documents can easily get lost. Some of those files might be stored in your computer and easily replaceable, but what about the rest of them? If you lose them the first time where are you going to get them from again? Especially fix hacked wordpress site is vital. Often sites have created a large number of files and have a lot of data. Recreating that all are a nightmare, and not something any business owner wants to do.
You can search for software that will backup your database and files. You can restore your website with the use of your backup files and change, if hackers suddenly hack your site.
1 step you can take is to delete the default administrator account. This is critical because if you don't do it, this article malicious user know a user name which they could try to crack.
Imagine if you visit WP-Content/plugins, can you view that go to website folder? If so, upload that blank Index.html file inside that folder as well so people can not view what plugins you might have. Someone can use this to get access because if your version of WordPress is current, if you are using a plugin or an old plugin with a security hole.
Of course it's possible to install plugins to make your shop like share buttons or backup plugin. That's all. Your shop is now This Site up and running!