🔒 Your Privacy Matters

Privacy Policy

Last updated: February 2026

1. Introduction

Welcome to Amani Pay LTD.

This Privacy Policy explains how we collect, use, store, share, and protect your personal information, and your rights under applicable data protection laws, including the Kenya Data Protection Act and the General Data Protection Regulation (GDPR).

This policy applies to:

  • All Amani Pay products and services
  • Our affiliates and approved third-party partners that provide services to you through Amani Pay

By using Amani Pay services, you confirm that you:

  • Have read and understood this policy
  • Agree to the lawful processing of your personal information as described

If you do not agree, please stop using our services immediately.

📞 Customer Support

+254 781 203 368

2. Who Can Use Amani Pay

Amani Pay services are only for adults (18 years and above). If you are under 18, please do not use our services.

3. What This Policy Covers

This policy explains:

  • How we collect and use your personal information
  • Cookies and similar technologies
  • How we share, transfer, or disclose information
  • How we store your data
  • How we protect your data
  • Your data protection rights
  • Protection of minors
  • Policy updates
  • How to contact us

4. How We Collect and Use Your Personal Information

We collect personal information lawfully, fairly, and only when necessary to provide our services.

Sources of Information

We collect information:

  • You provide directly
  • Generated when you use our services
  • From trusted third parties (where legally allowed)

Providing some information is optional, but refusing may limit certain services.

5. App Permissions We Request

5.1 SMS Permission

Purpose:

  • Assess cash flow and transaction history
  • Identify bank and M-Pesa accounts
  • Detect fraud and prevent misuse

What We Collect:

  • SMS content related to financial transactions
  • Sender, date, and message metadata

Security: Encrypted via HTTPS. Never shared without your consent.

5.2 Application List Permission

Purpose:

  • Detect fraudulent or malicious apps
  • Prevent multiple borrowing
  • Improve user experience

What We Collect: App name, version, install time, package name

Security: Encrypted via HTTPS. Not shared with third parties.

5.3 Phone State Permission

Purpose:

  • Identify and secure your device
  • Prevent fraud
  • Ensure app compatibility

What We Collect:

  • Device ID, IMEI, IMSI
  • Device model, OS version
  • IP address and network status

Security: Encrypted via HTTPS. Shared only with your consent.

5.4 Contact List Permission

Purpose:

  • Emergency contact verification
  • Account recovery or security issues

What We Collect:

  • Contact name
  • Phone number
  • Relationship to you

Security: Encrypted. Never shared without consent.

6. Account Login and Verification

To create and secure your account, we collect:

  • Phone number
  • IP address
  • Login and risk assessment data

Without this information, you cannot log in or use our services.

7. Risk Management

To prevent fraud and secure accounts, we may collect:

  • Device details
  • App installation data
  • Device location and sensor data

8. Marketing & Communications

We may use de-identified data to:

  • Improve services
  • Recommend relevant products
  • Send marketing messages

You can opt out at any time by contacting customer service.

9. Cookies and Similar Technologies

We use cookies to:

  • Ensure the website works correctly
  • Improve user experience
  • Analyse traffic

You can manage cookies through your browser settings. Disabling cookies may affect some features.

10. How We Share Your Information

We do not sell your personal data.

We may share data only when:

  • You give consent
  • Required by law
  • Necessary to protect users or public safety
  • Working with affiliates or service providers
  • During mergers or legal audits

All partners must follow strict confidentiality and security rules.

11. Data Storage and Retention

Storage Location

  • Data is stored within Kenya
  • Cross-border transfers require your consent and legal safeguards

Retention Period

  • Data is kept for 5 years after account closure
  • Extended if required by law
  • Data is deleted or anonymised after expiry

12. How We Protect Your Information

We use:

  • HTTPS encryption
  • Access controls
  • Employee confidentiality agreements
  • Regular security audits
  • Incident response plans

⚠️ Security Notice

The internet is not 100% secure. Please use strong passwords and avoid sharing sensitive data via SMS or email.

13. Data Breach Response

If a data breach occurs, we will:

  • Act immediately to reduce harm
  • Notify regulators where required
  • Inform affected users promptly
  • Provide guidance on protecting yourself

14. Your Rights

You have the right to:

  • Access your data
  • Correct inaccuracies
  • Request deletion
  • Restrict processing
  • Object to processing
  • Withdraw consent
  • Deactivate your account
  • Request a copy of your data

📞 Requests can be made via customer service.

⏱ We respond within 15 working days.

15. Minors' Data Protection

We do not knowingly collect data from minors. If we discover such data, it will be deleted immediately.

16. Contact Us

If you have questions or complaints:

  • 📧 Email: amanipayltd@gmail.com
  • 📞 Phone: +254 781 203 368
  • 🏢 Address: Utalii House, Uhuru Highway

17. Policy Updates

We may update this policy as needed. You will be notified through:

  • App notifications
  • Emails or SMS
  • Website notices

Continued use of Amani Pay means you accept the updated policy.

Appendix: Key Definitions

  • De-identified Data: Data that cannot identify you directly
  • Anonymized Data: Data that cannot be restored to identify you
  • Third-Party Partners: Approved service providers (excluding affiliates)
  • Personal Information: Any data that identifies you
  • Sensitive Personal Information: Data that could cause harm if misused