AzamPay
Legal

Privacy Policy

How AzamPay collects, uses and protects your personal data across our website and payment products.

1. Introduction

AzamPay Tanzania Limited and its regional offices ("AzamPay", "we", "us", "our") respect your privacy. This Privacy Policy explains what personal data we collect when you use our website, products and services, why we collect it, how we use and protect it, and what rights you have over it.

This policy applies to visitors of our website, users of our payment products, and anyone who contacts us through the site. It should be read alongside our Terms & Conditions and Cookie Policy.

2. Information We Collect

• Information you give us: name, email address, phone number, company name and any message content when you submit a contact form, request a demo, or otherwise reach out to us.

• Payment and transaction information: when you use AzamPay's payment products, we (or our licensed banking and mobile money partners) process transaction data: amounts, timestamps, payment method, and the identifiers needed to route and reconcile a payment. We do not display, store, or ask for full card numbers or mobile money PINs on this website.

• Automatically collected information: IP address, browser type, device information, pages visited and referring pages, collected via server logs and, where enabled, cookies (see our Cookie Policy).

• Information from third parties: where you interact with us through a partner, bank, or mobile network operator, they may share information with us as needed to provide the service you requested.

3. How We Use Your Information

We use personal data to:

• Respond to inquiries submitted through the contact form and provide the information or support requested

• Operate, maintain and improve our website and payment products

• Process and reconcile payment transactions on behalf of merchants and partners

• Comply with know-your-customer (KYC), anti-money laundering (AML), and other regulatory obligations that apply to a licensed payment service provider

• Detect, investigate and prevent fraud, security incidents and abuse

• Send you information you've requested, such as a reply to a sales or support inquiry

4. Legal Basis for Processing

Where applicable data protection law requires it, we process personal data on the basis of: your consent (e.g. submitting a contact form), performance of a contract or requested service, our legitimate business interests (e.g. keeping the site secure), and compliance with legal and regulatory obligations, including those under Tanzania's Personal Data Protection Act and Rwanda's Law on the Protection of Personal Data and Privacy.

5. How We Share Your Information

We do not sell personal data. We may share it with:

• Regulated banking, mobile money and card network partners, strictly as needed to process a payment

• Service providers who support our operations (for example, email delivery and database hosting), under confidentiality obligations

• Regulators, law enforcement or courts, where required by law or to protect our rights, users, or the public

• A successor entity, in the event of a merger, acquisition, or sale of assets, with notice to affected users where required by law

6. Data Security

We use industry-standard safeguards to protect personal data, including encryption of data in transit, access controls, and PCI DSS-aligned practices for payment processing. No system is completely secure, and we encourage you to also take reasonable precautions when sharing information online.

7. Data Retention

We retain personal data for as long as needed to fulfil the purposes described in this policy, including to meet legal, accounting, or regulatory record-keeping requirements (which, for transaction-related records, may extend several years under applicable financial regulation). We delete or anonymize data when it is no longer needed.

8. Your Rights

Subject to applicable law, you may have the right to: access the personal data we hold about you, request correction of inaccurate data, request deletion of your data, object to or restrict certain processing, and withdraw consent where processing is based on consent. To exercise any of these rights, contact us using the details below.

9. International Data Transfers

As a regional company, personal data may be processed in the country where it was collected or in another country where AzamPay or its service providers operate. Where data is transferred across borders, we take steps to ensure it remains protected consistently with this policy.

10. Children's Privacy

Our website and services are intended for businesses and individuals capable of entering into a binding agreement. We do not knowingly collect personal data from children.

11. Third-Party Links

Our website may link to third-party sites. We are not responsible for the privacy practices of sites we do not operate; please review their policies separately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated effective date. Continued use of our website after a change constitutes acceptance of the revised policy.

13. Contact Us

Questions about this Privacy Policy or how your data is handled can be sent to legal@azampay.com, or through our Contact page.