PESA-MKONONI TANZANIA CREDIT LIMITED ("Pesa Mkononi", "we" or "our") is a loan provider and authorizes Pesa Mkononi to provide loan services. PESA-MKONONI TANZANIA CREDIT LIMITED is a registered loan company authorized by the Central Bank of Tanzania.
Please read this Privacy Policy carefully to ensure that you understand each paragraph. By clicking "Sign Up", or agreeing to the Terms and Conditions of Use of the Mobile Money Service, or using any of our services, you acknowledge that you have read and understand the terms of this Privacy Policy and the Agreement. This Privacy Policy and all future changes, including the collection and use of your information as set forth in the Privacy Policy, are subject to the terms of this Privacy Policy.
This Privacy Policy is intended to explain:
This Privacy Policy has been designed to comply with our obligations under the Data Protection Act or DPA, which is a legal framework that sets out guidelines for the protection and processing of personal information of individuals in Tanzania or residing outside Tanzania but of Tanzanian origin.
Any revisions or changes to the Privacy Policy will be posted on this page and you will be notified through all of our service channels. If you object to these changes, you may close your account and stop using the Services. Your continued use of any of our Services after receiving any notice of changes will indicate that you understand and accept the revisions or changes.
Access to and use of the "Pesa Mkononi - Mikobo ya Pesa" mobile application owned, operated or controlled by us, and the content, software, mobile services, financial products and features offered through Pesa Mkononi ("APP") (collectively, the "Services"). Pesa Mkononi is a modern financial platform that serves our customers anywhere, anytime, through their mobile phones. We provide our customers with the best choice and access to financing.
If you have any questions about our practices or this Privacy Policy, please contact us at:
Email: [email protected]
If you would like to exercise any of the rights set out above, please contact us using the details set out in the "Who we are" and "How to contact us" sections.
You will not be required to pay a fee to access your personal information (or to exercise any of your rights in relation to your personal information), however, we may charge a reasonable fee for withdrawing consent if your request is unfounded, repetitive or excessive. In this case, we may refuse to comply with your request.
We may need to request specific information from you to help us verify your identity and ensure your right to access your personal information (or to exercise any other rights under this Privacy Policy). This is a security measure to ensure that your personal information is not disclosed to anyone who is not entitled to receive it. We may also contact you to ask for more information about your request to expedite our response.
We aim to respond to all legitimate requests within one month. If your request is particularly complex or you have submitted multiple requests, it may take us longer than one month. If this happens, we will notify you and keep you informed.
If you would like to complain about this Privacy and Cookies Policy or our practices in relation to your personal information, please contact us at [email protected]
We will endeavour to respond to your complaint as quickly as possible. If you feel that your complaint has not been dealt with appropriately, you may lodge a complaint with the relevant supervisory authority.
We may send you commercial communications from time to time. If you would like us to stop sending you commercial messages or to adjust your email communications at any time, please follow one of the following steps:
When you opt out of receiving these commercial messages, this will not apply to the personal information you provide to us for processing for legitimate service-related purposes.
To use the Services, you must provide Customer Information through our registration, account upgrade or profile forms. This information includes but is not limited to:
Full name, email address and phone number, PIN, address, gender, date of birth, occupation or business details.
For certain services, we may also collect national identification, document details and photographs (if required). Photographs are collected to distinguish new and existing customer information in our systems. This is also considered a means of preventing customers from attempting to use our services again if they have already used our services.
When you choose to use the facial recognition feature, to verify your identity and ensure that the selfie taken is of a real user.
When you contact us to report an issue related to Pesa Mkononi Services, you may be asked to provide additional information in order to participate in social media activities (cash loans, promotions or surveys) on our Pesa Mkononi App.
When you contact our customer service team via email, live chat or phone, your conversation may be recorded and stored for training and record-keeping purposes. We use this information to measure and improve the quality of our services.
When you use Pesa Mkononi - Cash Loan Services, the following information may be automatically collected, including but not limited to:
Contact information, such as your name and mobile phone number. We collect this information when you sync your device's address book with Pesa Mhononi - Money Loan App and use this information when such access is necessary to provide the Services, such as airtime top-ups and money transfers.
Your phone/device information, unique device identifier (IMEI or serial number), information about your SIM card, mobile network, operating system, and browser settings.
Access your device, including your camera for facial recognition and facial information security purposes; devices with external storage for storing photos, audio, video, and other files; and your device's messaging icon so that we can send and receive text messages to you.
We use this information to protect our customers from crime related to the Services, to improve the Services we provide, and to help us understand how people use the Services. Facial recognition also allows us to distinguish customer information.
Some features of the Services may require location information from your device's Global Positioning System "GPS". With your consent, we will collect this information for use in these features and services. You will be required to provide consent. Disabling location services may result in certain services or features being unavailable.
We may use in-app analytics technology (e.g. appsflyer, Firebase) to help improve and simplify the app, design and services as a whole. These tools track general information about app usage, provide performance metrics, improve ads and allow for better reporting of app errors. We record when you install or uninstall software to help us track who is using the Services.
A cookie is a string of information that a website stores on a visitor's computer, and that the visitor's browser provides to the website each time the visitor returns.
We use cookies to help us identify and track visitors, their use of our website, and their website access preferences. Visitors to our website who do not want cookies placed on their computers should set their browsers to refuse cookies before using the website or should decline the option to use cookies on their first visit. Our Services may not function properly without the help of cookies.
This means information about:
| Types of Personal Information Collected | Detailed Introduction |
|---|---|
| Identifying Information | First name, last name, surname, username or similar identifier, marital status, name, date of birth and gender, selfie, identification number, copy of identification document or other form of identification. |
| Contact Information | Your home address, work address, billing address, email address and telephone number. |
| Financial Information | Your bank account and payment card information, income and financial statements. |
| Content Information | Any content you post on the Service that is included in other categories, including, but not limited to, your profile, questions, preferences, responses, messages, comments and other contributions to the Service, and metadata about them (such as when you posted them) (“Content”). |
| Marketing and Communications Reporting | Your preferences in receiving commercial communications from us and our other partners and your communication preferences. If you communicate with us via email or messaging through the Service, we may store the content of such messages and our responses. |
| Technical Information | security credentials (username and PIN/password), Internet Protocol (IP) address, your service login information, browser type and version, location and region settings, browser plug-in types and versions, operating system and platform, and other technologies on the devices you use. By accessing this App or Website or using our Services. |
| Device Information | Contact information, such as name, mobile phone number or email address. Your phone/device information, access to your device's camera so we can send and receive text messages, unique device identifier (IMEI or serial number), SIM card information. , mobile networks, operating systems and browser settings. |
This personal information is used to help us provide the services you have signed up for; allow us to understand how you use the services; protect you and your account; improve our services and communicate new services and offers to you.
In order to process our transactions, we need to share some of your personal information with individuals or companies with whom you do business. This information may include:
Contact information (phone number, email, personal photo)
Payment information (card statement, bank statement, wallet balance)
We will not disclose your credit card number or bank account number to anyone you have paid or who has paid you through us, unless we have your express consent or are required to do so to comply with applicable laws or regulations, subpoenas, court orders or other legal process.
We collect and store your personal information as part of our compliance with relevant financial regulations.
The biometric data collected is only used to verify your identity and prevent fraud. The data is only stored temporarily during the eKYC process and is automatically deleted after verification is complete. All data is processed securely within our systems. This data cannot be accessed or stored by any third party. We will not use this data for any other purpose. The information is processed securely and in accordance with applicable laws and regulations regarding biometric data.
We will not provide personally identifiable information to third parties except to comply with a court order, court order, court order, regulatory order or any other legal or regulatory obligation. However, we may provide you with aggregated, anonymous information, such as the number of people of a certain age or gender who have made transactions of a certain amount during a specific period of time.
When we work with another partner, with your consent, we may share your information to provide a service or improve your experience with that service. Sharing this information helps us determine whether the person providing the information is still alive and also allows us to differentiate or match customer information. When you use such services for the first time, you will need to review and agree to our terms and conditions, privacy policy and other relevant agreements.
For each purpose for which we use your personal information, the DPA requires us to ensure that we comply with a lawful basis for that use. The legal basis depends on the services you use and how you use them. This means that in almost all cases the lawful basis for collecting and using your personal information is:
We may also rely on your consent as a legal basis for using your personal information where we explicitly ask you to provide your personal information for a specific purpose. You have the right to withdraw your consent at any time (but this will not affect any processing that has already taken place).
Where we need to process your personal information to comply with the law, or to perform the terms of a contract we have with you, failure to provide such data when requested may result in our inability to perform existing or proposed contracts with you (e.g., to provide you with the functionality of the Services). In these circumstances, we may be forced to stop providing you with our services.
If we are acquired, or our business is transferred. You agree that our successor company may have access to the information we hold, including customer account information. As our successor, the Company will continue to be bound by this Privacy Policy until amended.
We may share your personal information with third parties as described in the table below. We consider this information to be an important part of our relationship with you.
| Recipient | Why Get Involved |
|---|---|
| Our Partners | Our partners may access your personal information to help us develop, maintain and provide our services and to help manage our relationships with our customers (including providing customer support, customer communications, fund advisory services, etc.). |
| Service Providers | Our service providers may use our services, including, for example, website and application development, hosting, maintenance, backup, storage (such as Huawei Cloud), online infrastructure, payment processing, automated identification services, analytics, identity verification, background and compliance checks and financing. management, banking and other services, which may require them to access or use your personal data. We ensure that our service providers maintain the confidentiality of your personal information and take all reasonable security measures to ensure the confidentiality of this information. |
| Expert Advisor | Our lawyers, accountants, bankers, auditors and insurers may need to review your personal information in order to provide advisory, compliance, banking, legal, insurance, accounting and similar services. |
| Legal and tax authorities, regulators and participants in court proceedings | We may disclose your personal information if we believe it is necessary to comply with a law, regulation, order, subpoena, the rule of a self-regulatory body or investigation, or to protect the safety of any person, to address fraud, security or technical issues. issues, or to protect our legal rights, interests, and the interests of others, such as in connection with an acquisition, merger, or sale of securities or businesses (e.g., due diligence). |
| Advertisers | Some users of the Services may have access to your Personal Information so that they can more effectively communicate with you and present opportunities through the Program that are relevant to your interests. We may also allow third parties, including ad servers or ad networks, to serve advertisements on the Application, and such third parties may access your Personal Information to provide advertisements targeted to your interests. |
| Researchers | To increase public understanding of patterns and trends in the markets served by the Service, we may disclose Personal Information to third parties, such as academics or contractors for research purposes, under obligations of confidentiality. |
| API Users | A limited number of partners may access portions of the Site through the API. Examples of common uses of APIs are OAuth and AML/AML/Validate authorization for prospective investors. |
| SDK Partners | Our APP integrates with software development kits (SDKs) from certain third-party providers. In this case, your personal information may be collected or accessed by these service providers. The SDKs we use include Firebase, appsflyer and Mate. We ensure that these service providers implement extensive security measures and advanced encryption technology to protect your personal information from loss, misuse or alteration. |
| Credit Reference Bureau | Customer credit information will be submitted to the Credit Reference Bureau (CRB). Customer credit information may also be collected and compiled by the CRB and its staff, processed by the CRB’s computer systems, and stored in a database. |
| Our agents and employees | We share personal information, such as Contact Details, with debt collection agencies or our employees in order to collect credit payments. |
As our business grows, we may buy or sell businesses or assets. In the event of a corporate sale, merger, reorganization, liquidation, or similar event, we may also transfer your Personal Information as part of the transferred assets without your consent or notice to you.
We may also share non-personal information (such as anonymous usage information, referring/exit pages and URLs, platform type, clickstream volume, etc.) with third parties interested in helping them understand Service usage patterns or certain trends. Independent research based on this anonymous usage information.
If you ask us to delete your personal information as described in your rights related to your personal information, we will forward that request to the third parties with whom we have shared your information. However, we are not obliged to correct or delete your personal information obtained from any other person who has previously provided us with your information under this Policy or to whom you have provided such information (whether by sharing your login and password details or otherwise).
Furthermore, when you apply for a loan, you agree to comply with the terms and conditions of submitting customer credit information to the Credit Reference Bureau, regardless of whether your loan application is approved.
We are fully committed to protecting the information we collect from you and will encrypt your personal information when transferred to countries considered to have adequate data protection laws. When we transfer your personal information to countries that do not have adequate data protection laws, we will ensure that we obtain your consent. and comply with other relevant provisions of the DPA to ensure that your personal information is adequately protected.
After a transaction is completed, we are required to retain details of the transaction or payment you make with us. We will retain these transactions for the period required by the financial regulations in your jurisdiction. We retain information collected using online services such as our partners (Huawei Cloud Services).
We will retain your information for as long as your account is used or as necessary for the purposes set out in "How we use your personal information and for what purposes" unless you ask us to delete your personal information as set out in "Your rights regarding your personal information". In general, your personal information will continue to be retained for a period of at least two years. We will retain your personal information for as long as we need it for those purposes, unless we are required to do so by law (for example for regulatory purposes). This may include retaining your personal information after you have deactivated your account for as long as necessary to pursue our legitimate business interests, conduct audits, comply with (and demonstrate compliance with) legal obligations, resolve disputes, and enforce our agreements. Information may be retained to distinguish the personal information of new customers.
We are required to report any personal information breach to the regulator within 72 hours of becoming aware of it.
If your personal information has been compromised and there is a high risk to your freedoms and rights, we will notify you immediately.
You are responsible for protecting your password or PIN in accordance with our terms and conditions. You must not share your Pesa Mkononi account password or PIN with anyone.
We will never ask you for your PIN or password via email, SMS or any other means. If you receive such communications, please ignore them and contact us at: ([email protected])
If you share your password with others, you will be responsible and liable for any consequences arising therefrom. If you believe that your password or PIN has been compromised, please change it immediately and contact us.
Pesa Mkononi does not knowingly collect personally identifiable information from anyone under the age of 18. Mkononi encourages parents to instruct their children not to provide personal information online. If parents are concerned about their children’s personal information being disclosed, they can contact us.
We may change its Privacy Policy at any time in our sole discretion. We will notify you of any changes. By continuing to use the Mobile App or Website after any changes, you agree to be bound by the new policy.
This Privacy Policy shall be governed by and construed in accordance with the laws of the United Republic of Tanzania.