it's our promise

Device requests are based on identifiers such as IMEI, SIM card number or device serial number.

These requests typically seek information about customers associated with specific devices or their connections to Safaricom services, such as during investigations of lost or stolen devices. Safaricom also receives multi-device requests for fraud investigations to protect customer security.

Requests related to financial identifiers, such as mobile money transactions, are primarily used for fraud detection or regulatory compliance. These requests may involve accessing transaction histories or verifying account details, with the utmost care taken to protect sensitive financial information.

Account data requests typically focus on customer identification, usage history, Call data records Location or service interactions. Safaricom may provide account-related data when required by law or regulatory authorities within the boundaries of data protection laws while prioritising customer privacy.

Account preservation requests involve storing account information for a specific period due to legal obligations or customer requests.

This is often necessary for investigations, compliance with regulations or to prevent fraud. Safaricom ensures that this data is preserved securely and is accessible only when authorised.

Account restriction or deletion requests are made by customers who wish to limit or completely erase their personal data from Safaricom’s systems.

Safaricom is committed to promptly processing these requests while ensuring compliance with legal requirements and preserving service continuity as appropriate.

Push token requests involve information related to customer notifications and alerts through Safaricom’s services.

These tokens are used to send essential updates and communication or users can control their preferences to opt-in or opt-out of notifications at any time.

Emergency requests involve the sharing of customer data in critical situations, such as health emergencies or natural disasters.

Safaricom is committed to ensuring that this data is shared only with authorized parties, such as emergency responders or law enforcement, under strict legal guidelines.

Requests related to national security involve Safaricom complying with legal requests from government and law enforcement agencies e.g. terrorism, organised crime hostage situations.

These requests are handled with transparency, ensuring data is shared in line with the law while safeguarding customer privacy and rights.

Private party requests involve data sharing with businesses, marketers or third-party services when necessary.

These requests may relate to service personalization, targeted marketing or partnership agreements but Safaricom ensures that customer consent is always obtained and that data protection is maintained.

Digital content provider requests focus on sharing data related to customers’ use of digital content services, such as streaming or online media.

These requests are handled with customer consent, ensuring data is shared only when necessary for service delivery while maintaining privacy.