Privacy Policy

Lendrate Africa

Effective Date: 1st May 2026

Website: lendrate.africa

Contact: [Insert official email address]

1. Introduction

Lendrate Africa (“Lendrate,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, disclose, and protect personal information when you access or use our website, platform, dashboards, lending infrastructure, borrower services, saver/investor services, lender tools, onboarding flows, payment services, and related services.

This Policy is intended to comply with the Kenya Data Protection Act, 2019, which provides rights to data subjects and obligations for data controllers and processors.

By using lendrate.africa or any Lendrate service, you agree to the practices described in this Privacy Policy.

2. Who This Policy Applies To

This Policy applies to:

Lenders and lender staff using Lendrate infrastructure.
Borrowers registering or applying through the platform.
Savers, investors, or capital providers using the platform.
Visitors to lendrate.africa.
Administrators, support users, and authorised representatives.
Any person whose data is submitted through the platform by an authorised user.

3. Information We Collect

We may collect the following categories of information.

3.1 Account and Identity Information

This may include:

Full name.
Email address.
Phone number.
National ID, passport, or registration details where required.
Business name, trading name, business registration number, tax PIN, and related business information.
Contact person details.
User role, permissions, and organisation affiliation.

3.2 Borrower Information

For borrower onboarding, assessment, repayment, and lender management, we may collect:

Business details.
Director or shareholder information.
KYC documents.
Financial profile information.
Loan application details.
Repayment records.
Communication history.
Risk assessment information.
Supporting documents submitted during onboarding or loan processing.

3.3 Saver or Investor Information

For saver or investor onboarding, account management, capital allocation, and transaction tracking, we may collect:

Personal or organisation details.
KYC documents.
Wallet or account information.
Investment preferences.
Transaction history.
Payment confirmation details.
Communication and support history.

3.4 Lender Information

For lenders using Lendrate as infrastructure, we may collect:

Organisation details.
Staff user information.
Subscription and billing information.
Borrower and saver records managed through the lender account.
Platform configuration details.
Support, activity, and audit logs.

3.5 Payment Information

We may collect or process payment-related information through third-party payment providers, including:

Payment reference numbers.
Transaction status.
Amount paid.
Payment method.
Date and time of transaction.
Subscription or service fee records.

We do not intend to store full card details or sensitive payment credentials unless expressly disclosed and handled through a compliant payment provider.

3.6 Technical and Usage Data

When you use the platform, we may collect:

IP address.
Browser type.
Device information.
Login timestamps.
Pages visited.
Session activity.
Error logs.
Security and access logs.
Cookies or similar tracking data.

3.7 Communications

We may collect information when you contact us by email, phone, support forms, chat, or other communication channels.

4. How We Collect Information

We collect information:

Directly from you during registration, login, verification, onboarding, payment, support, or platform use.
From lenders, borrowers, savers, or authorised organisation representatives.
From third-party service providers, including payment processors, email providers, verification providers, hosting providers, analytics tools, and security tools.
Automatically through cookies, logs, and platform activity tracking.
From publicly available sources where lawful and relevant.

5. Why We Use Your Information

We process personal data for the following purposes:

To create and manage user accounts.
To verify identity and account ownership.
To onboard lenders, borrowers, savers, and organisation users.
To support lending, saving, investment, repayment, and subscription workflows.
To process payments and reconcile transactions.
To send OTPs, verification codes, security alerts, and service notifications.
To provide customer support.
To manage lender dashboards, borrower records, saver records, and platform workflows.
To detect fraud, misuse, unauthorised access, and security threats.
To comply with legal, regulatory, tax, audit, and reporting obligations.
To improve platform performance, usability, and reliability.
To enforce our Terms of Service and other agreements.
To send important operational communications.

Where automated decision-making or profiling significantly affects a user, the Data Protection Act gives data subjects protections, including the ability to request reconsideration in certain circumstances.

6. Legal Basis for Processing

We may process personal data based on one or more of the following legal grounds:

Your consent.
Performance of a contract with you.
Compliance with a legal obligation.
Our legitimate business interests.
Protection of vital interests.
Performance of a task carried out in the public interest, where applicable.
Establishment, exercise, or defence of legal claims.

7. Sharing of Information

We may share your information with:

Lenders, where you are a borrower or saver associated with that lender.
Borrowers, savers, or authorised representatives where required for platform workflows.
Payment processors.
Email and notification providers.
Hosting, cloud, and infrastructure providers.
KYC, identity verification, or fraud prevention providers.
Legal, audit, accounting, and compliance advisers.
Regulators, law enforcement, courts, or government authorities where required by law.
Business partners where necessary to deliver services and where appropriate safeguards are in place.

For digital credit-related operations, the Central Bank of Kenya’s Digital Credit Providers Regulations require confidentiality of customer information and restrict sharing except with customer consent or as permitted by law.

8. Data Security

We use reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure.

These measures may include:

Password hashing.
Access controls.
Role-based permissions.
OTP or multi-factor verification.
Audit logs.
Encryption where appropriate.
Secure hosting practices.
Security monitoring.
Regular review of platform access and permissions.

However, no digital system is completely secure. Users are responsible for keeping their login credentials confidential and notifying us immediately of suspected unauthorised access.

9. Data Retention

We retain personal data only for as long as necessary for the purposes described in this Policy, including:

Account management.
Service delivery.
Legal and regulatory compliance.
Tax, accounting, audit, and dispute resolution.
Fraud prevention and security monitoring.
Enforcement of agreements.

Where data is no longer required, we will delete, anonymise, archive, or securely dispose of it in accordance with applicable law and internal retention procedures.

10. Your Rights

Subject to applicable law, you may have the right to:

Be informed about how your data is used.
Access your personal data.
Request correction of inaccurate or incomplete data.
Request deletion of your data where legally permitted.
Object to processing of your data.
Restrict processing in certain circumstances.
Withdraw consent where processing is based on consent.
Object to certain automated decisions.
Request data portability where applicable.
Lodge a complaint with the Office of the Data Protection Commissioner.

The Data Protection Act gives data subjects the right to object to processing unless the controller or processor demonstrates compelling legitimate grounds or needs the data for legal claims.

11. Cookies and Tracking Technologies

We may use cookies and similar technologies to

Keep users logged in.
Improve platform performance.
Understand usage patterns.
Secure user sessions.
Remember user preferences.
Support analytics and troubleshooting.

You may disable cookies through your browser settings, but some parts of the platform may not function properly.

12. International Data Transfers

Some service providers may process or store data outside Kenya. Where we transfer personal data outside Kenya, we will take reasonable steps to ensure appropriate safeguards are in place in accordance with applicable data protection laws.

13. Children’s Privacy

Lendrate Africa is not intended for use by children. Users must be at least 18 years old or otherwise legally capable of entering into binding agreements. We do not knowingly collect personal data from children.

14. Data Breach Notification

Where a data breach occurs, we will assess the risk and take appropriate action, including notifying affected users and/or the Office of the Data Protection Commissioner where required by law.

15. Third-Party Links and Services

Our platform may contain links to third-party websites, payment providers, verification services, or partner platforms. We are not responsible for the privacy practices, content, security, or policies of third parties.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be posted on lendrate.africa with a revised effective date. Continued use of the platform after changes means you accept the updated Policy.

17. Contact Us

For questions, privacy requests, or complaints, contact us at:

Lendrate Africa

Email: info@lendrate.afica

Website: lendrate.africa