Safaricom has stated that they do not share customer information amid rising public concerns regarding data privacy.
Safaricom, in a statement issued on Thursday, October 31, 2024, denied sharing customer information with third parties.
The telco stated that they respect their customers’ privacy and strictly adhere to the country’s data protection laws.
Safaricom on sharing data
According to the Peter Ndegwa-led company, any customer data is not shared unless explicitly required of them via a court order.
“Safaricom notes various conversations regarding data privacy and sharing of customer information with security agencies and other third parties and wishes to make the following statement.
“That we respect our customers privacy and adhere strictly to the country’s data protection laws. As such, we do not share any customer data unless explicitly required of us via a court order,” the statement reads in part.
Call Data Record (CDR)
Safaricom further clarified that a customer’s Call Data Record (CDR) does not show any live location or movements of customers but is generated after a call is terminated and for text messages once they are sent or received.
This, Safaricom says, is for purposes of billing only.
“For information purposes, a customer’s Call Data Record (CDR) does not show any live location or movements of customers but is generated after a call is terminated and for text messages once they are sent or received, and this is for purposes of billing only,” Safaricom stated.
The telco went ahead to state that it had onboarded Neural Technologies to implement a Fraud Management System (FMS) on all their business lines, including mobile money systems, to prevent and detect fraud with no third-party access.
“That in July 2012, Safaricom onboarded Neural Technologies to implement a Fraud Management System (FMS) on all our business lines, including our mobile money system. Neural Technologies is a global brand operating in over 30 countries, providing support to telcos and utility companies to prevent and detect fraud with no third-party access,” the company said.
“That we were recently awarded an ISO 27701 Privacy Information Management System (PIMS) certificate by the British Standards Institute (BSI) after a vigorous audit of our adherence to the data privacy laws and policies. This is the highest certification an organisation can attain in the management of privacy information systems, as a data controller or processor, a testament to our commitment to preserve our customer privacy and provide a worry-free experience on our network,” it concluded.