Thought Council
HTTPS secured

Security & Trust

Clear company details, secure connections, and accountable marketplace handling.

Buy A Business Ltd is built around transparency: public company details, encrypted traffic, secure account flows, reviewed submissions, and privacy-aware handling for buyer and seller information.

Official company identification

Company name
Thought Council
Company number
ICO registration number
Registered in
Registered office
Incorporated
29 June 2018
Verify on Companies House

Legal accountability

Thought Council is a UK company registered in England and Wales under company number . ICO registration number .

Encrypted traffic

The website uses HTTPS so data sent between your browser and the site is protected in transit.

Verified members

Buyer, seller, and broker accounts can be reviewed before confidential marketplace conversations or protected listing details are made available.

Secure form handling

Sensitive buyer budgets, seller financials, contact details, and business information should be submitted through secure site forms, not AI chat.

Data protection

UK privacy rights and clear contact routes.

As a UK business, Buy A Business Ltd handles personal data in line with UK data protection requirements, including UK GDPR and the Data Protection Act 2018 where they apply. Users can ask about access, correction, deletion, restriction, objection, portability, or consent withdrawal depending on the circumstances.

Privacy PolicyCookie PolicyTerms and Conditions

Security contact

security@buyabusinessltd.com

Safe marketplace handling

What helps keep buyer and seller information safer.

  • Seller submissions and broker access are subject to review before publication or wider marketplace access.
  • Buyer enquiries and internal messages are handled inside account areas so there is an accountable record of marketplace communication.
  • The chatbot is for general guidance only and is designed to move private buyer or seller details into secure website forms.
  • Form submissions use server-side validation and platform safeguards designed to reduce spam, malformed submissions, injection attempts, and misuse.

Technical safeguards

Security controls already built into the platform.

  • HTTPS/TLS encryption is used for traffic between the browser and the website.
  • Passwords are stored as one-way hashes rather than plain text.
  • Sensitive session, reset, and two-factor challenge tokens are stored using one-way SHA-256 hashes.
  • Production account cookies are configured as secure, HTTP-only cookies where supported by the browser.
  • Admin and broker sign-ins use an email-code two-factor check before access is granted.
  • Customer uploads are checked against allowed file types, basic file signatures, and risky embedded markers before accepted storage.
  • Public listing images are re-encoded before publishing so uploaded image bytes are not served back unchanged.
  • Role-based access controls separate buyer, seller, broker, and admin areas.

Locked private details

Buyer budgets, seller financials, contact details, and confidential business information should go through secure site forms, not AI chat.

Contact the team