Trust and Security

Last updated: March 2026

Sightline handles sensitive commercial intelligence. We take that responsibility seriously. This page outlines our security posture and compliance commitments.

ICO Registration

MyBuvo Ltd is registered with the Information Commissioner's Office as a data controller (Registration No. ZB805946).

UK GDPR Compliance

We process personal data in accordance with the UK General Data Protection Regulation. Our practices include:

• Data minimisation - we collect only what is necessary for service delivery
• Purpose limitation - data is used only for stated purposes
• Storage limitation - defined retention periods for all data categories
• Privacy by design in our systems and processes

Full details are available in our Privacy Policy.

Cyber Essentials

We are currently pursuing Cyber Essentials certification through the IASME Consortium. This covers the five technical controls: firewalls, secure configuration, access control, malware protection, and patch management.

FCA Awareness

Sightline is not itself FCA-regulated. However, many of our partners operate in FCA-regulated sectors. Our intelligence materials are designed with regulatory context in mind, including compliance triggers, regulatory filings, and sector-specific obligations.

Data Handling

Encryption

• Data in transit: TLS 1.2+ on all connections
• Data at rest: encrypted storage across all service providers

Access Control

• Multi-factor authentication on all business systems
• Principle of least privilege for data access
• Regular access reviews

Infrastructure

• Website hosted on Vercel (London region primary)
• Workflow automation on n8n Cloud (EU hosted)
• No client data stored on local machines

Sub-processors

The following third-party services are used in delivering Sightline:

• Vercel - Website hosting and delivery (edge network, London primary)
• n8n Cloud - Workflow automation (EU hosted)
• Airtable - CRM and data management (US, EU SCCs in place)
• Google Workspace - Email and document management (DPA in place)

Questions

For security questions or to request further information about our data handling practices, contact hello@mybuvo.co.uk.