Safaricom notes various conversations regarding data privacy and sharing of customer information with security agencies and other third parties and wishes to make the following statement.
That we respect our customers privacy and adhere strictly by the country’s data protection laws. As such we do not share any customer data unless explicitly required of us via a court order.
That for information purposes a customer’s Call Data Record (CDR) does not show any live location and movements of customers but are generated after a call is terminated and for text messages once they are sent or received and this is for purposes of billing only.
That in July 2012, Safaricom onboarded Neural Technologies to implement a Fraud Management System (FMS) on all our business lines, including our mobile money system. Neural Technologies is a global brand operating in over 30 countries providing support to telcos and utility companies to prevent and detect fraud with no third-party access.
That we were recently awarded an ISO 27701 Privacy Information Management System (PIMS) certificate by the British Standards Institute (BSI) after a vigorous audit of our adherence to the data privacy laws and policies. This is the highest certification an organisation can attain in management of privacy information systems, as a data controller or processor, a testament to our commitment to preserve our customer privacy and provide a worry-free experience on our network.
Finally, we would like to reassure our customers that we have always been transparent and honest in how we engage with our stakeholders, and we will continue to do so in order to maintain the trust that we have built over the years.