CreditPawa (“we,” “our,” or “us”) is committed to protecting the privacy and security of all users who access or use the CreditPawa mobile application (“Application” or “App”). This Privacy Policy explains how we collect, use, process, store, disclose, and protect personal information when users apply for financial services, use our platform, or otherwise interact with our services.

By downloading, registering for, or using CreditPawa, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your information as described herein.

1. Information of the Lender Entity and Operator

All loans offered through the CreditPawa application are provided by the following licensed entity:

Company Name: Radi Credit Limited

License No.: CBK/DCP/2024/78

Radi Credit Limited is a duly incorporated, licensed lending company operating in compliance with applicable laws. The company is solely responsible for the evaluation, approval, disbursement, and administration of all credits requested through the Application.

The CreditPawa application is a digital platform through which users may request and manage financial products offered by the Lender.

Additionally, KDN ENTERPRISES LLC acts exclusively as a technology service provider. Its role is limited to the development, maintenance, and publication of the application on relevant platforms. KDN ENTERPRISES LLC does not participate in the origination, approval, or granting of loans.

Accordingly, KDN ENTERPRISES LLC assumes no responsibility whatsoever for credit decisions, financial conditions, or the contractual relationship between the Lender and the Borrower.

2. Scope of this Privacy Policy

This Privacy Policy applies to all users who access or use the CreditPawa application, website, customer support channels.

This Policy governs the following aspects:

Collection of personal information

Use of personal information

Storage and retention of information

Sharing and disclosure practices

User rights regarding personal data

Security measures implemented to protect information

3. Information We Collect

To provide lending and financial services, CreditPawa may collect different categories of information.

3.1 Personal Identification Information

We may collect information including:

Full legal name

Date of birth

Gender

Selfie photographs

Identity verification images

Residential address

This information is used to verify identity and comply with applicable regulations.

3.2 Contact Information

We may collect:

Mobile phone number

Email address

Physical address

Emergency contact information

Alternate contact details

Emergency contact information may include:

Contact name

Relationship with the user

Contact phone number

Emergency contacts may be used solely for identity verification, communication support, fraud prevention, and lawful debt recovery processes where permitted by applicable laws.

3.3 Financial Information

Information collected may include:

Bank account details

Mobile money account information

Income information

Employment status

Existing debts or liabilities

Credit history

Financial capacity assessment information

Financial information helps evaluate loan eligibility and repayment capability.

3.4 Device Information

When users access or use the CreditPawa App, we may automatically collect technical information related to the device used, including:

Device model

Device identifiers

Operating system version

App version

IP address

Network information

Language settings

Time zone

Browser type

Device performance information

3.5 Application Usage Information

To improve performance and user experience, we may collect:

App interaction behavior

Session duration

Feature usage information

Error logs

Crash reports

Activity timestamps

This information helps optimize the App and detect security risks.

3.6 Use of Software Development Kits (SDKs)

CreditPawa integrates the AppsFlyer SDK (provided by AppsFlyer Ltd), which is listed in the official Google Play SDK Console. We use this SDK to support attribution and performance analytics.

Information Collected via the AppsFlyer SDK

Advertising identifier (e.g., Google AD_ID)

Approximate location data

In-app activity (e.g., screens visited, taps on buttons)

Technical performance metrics (e.g., crash reports, diagnostics)

Purpose of This SDK

Track app installations and user activations

Measure session duration and user engagement

Capture in-app events like purchases or form submissions

Evaluate user quality and return on ad spend

All data transmitted through the SDK is secured with end-to-end encryption. We do not use this SDK to collect precise GPS location, personal messages, contact lists, or any sensitive personal information.

3.7 Use of Device Permissions

Location

With the User’s consent, CreditPawa may request access only to the approximate location of the device. This information will be used exclusively to support risk assessment processes, verify general residential information, enhance account security, and prevent fraudulent activities during the application and use of financial services. This permission is entirely optional, and refusing it will not affect the core functionality of the application. Location data will be transmitted through encrypted channels, securely stored on our servers (creditpawa.net), and will never be used for advertising purposes or shared with any third party without the User’s explicit consent.

Camera

With the User’s authorization, CreditPawa may access the device’s camera solely for capturing images of government-issued identification documents, required supporting materials, or performing facial verification during identity verification processes. The purpose of this permission is to confirm the authenticity of submitted information, reduce fraud risk, and comply with internal security procedures. All captured images will be transmitted via encrypted channels and stored under strict security protocols on our servers (creditpawa.net). Under no circumstances will these images be used for purposes outside the provision of services or shared with third parties without the User’s prior explicit consent.

SMS

With the User’s authorization, CreditPawa may access SMS messages on the device solely to automatically identify communications related to financial activities, including banking alerts, deposits, payments, income, or other transactions relevant to credit assessment.Our system includes an automated filtering mechanism that processes only SMS messages containing financial-related content and automatically excludes personal, promotional, or irrelevant messages.All processed data will be transmitted via encrypted channels and securely stored on our servers (creditpawa.net). The User may request deletion of SMS-related data at any time, in accordance with internal security procedures and applicable laws. Under no circumstances will this data be used for purposes other than providing financial services or shared with third parties without the User’s explicit consent. This permission is entirely optional, and declining it will not restrict access to or use of the App’s core features.

4. How We Use Information

Collected information may be used for purposes including:

Creating and managing user accounts

Processing loan applications

Performing identity verification

Conducting credit assessments

Evaluating repayment ability

Providing customer support

Preventing fraud and illegal activity

Monitoring security incidents

Improving application functionality

Communicating service updates

Sending notifications regarding loans

Enforcing agreements

Complying with legal obligations

5. Legal Basis for Processing Personal Data

CreditPawa may process personal information based on:

User consent

Performance of contractual obligations

Compliance with legal requirements

Legitimate business interests

Fraud prevention and security protection

6. Information Sharing and Disclosure

Radi Credit Limited does not sell personal information to third parties.

Information may be shared only under limited circumstances, including:

6.1 Service Providers

We may share information with trusted providers supporting operations such as:

Cloud hosting services

Identity verification providers

Payment processors

Customer support systems

Security and fraud prevention services

Data storage providers

These parties are required to maintain confidentiality and protect information.

6.2 Regulatory Authorities

Information may be disclosed when required by:

Courts

Government agencies

Financial regulators

Law enforcement authorities

Applicable legislation

6.3 Credit Assessment and Recovery Partners

Where permitted by law, information may be shared with:

Credit reference agencies

Debt recovery partners

Financial institutions

Sharing occurs only for legitimate lending-related purposes.

6.4 Business Transfers

If Radi Credit Limited undergoes restructuring, merger, acquisition, or asset transfer, user information may be transferred subject to confidentiality obligations.

7. Data Retention

CreditPawa retains personal information only for as long as necessary to:

Provide services and maintain user accounts

Fulfill contractual and operational obligations

Resolve disputes and handle customer support requests

Comply with applicable legal, regulatory, tax, and record-keeping requirements

Enforce agreements and protect legal rights

Prevent fraud, abuse, and unauthorized activities

Personal information may be retained for the duration of the customer relationship and, where required by applicable laws or legitimate business purposes, for up to 7 years after account closure, loan completion, or the end of the business relationship. Certain records may be retained for a longer period if required by law, regulatory authorities, ongoing investigations, dispute resolution, or legal proceedings.

When personal information is no longer required, it will be securely deleted, anonymized, or permanently destroyed using appropriate security measures.

8. Data Security Measures

CreditPawa implements reasonable administrative, technical, and organizational safeguards, including:

Encryption technologies

Secure servers

Restricted access controls

Authentication mechanisms

Monitoring systems

Security audits

Although security measures are implemented, no electronic transmission or storage system can guarantee absolute protection.

9. International Data Transfers

User information may be processed or stored outside Kenya where necessary to provide services.

When cross-border transfers occur, CreditPawa takes reasonable measures to ensure appropriate protection of personal information consistent with applicable regulations.

10. User Rights

Subject to applicable law, users may have rights to:

Access personal information

Correct inaccurate information

Update account details

Request deletion of information

Withdraw consent

Restrict certain processing activities

Object to data processing

Request copies of personal data

Requests may be submitted through:

Email: support@creditpawa.net

11. Children's Privacy

CreditPawa services are intended only for individuals who are 18 years of age or older and legally eligible to enter financial agreements.

We do not knowingly collect personal information from minors.

If information relating to a minor is discovered, reasonable steps may be taken to remove such information.

12. Cookies and Similar Technologies

CreditPawa may use cookies, analytics tools, and similar technologies to:

Improve user experience

Analyze platform performance

Enhance security

Personalize services

Users may manage certain preferences through device settings.

13. Third-Party Services

The Application may contain integrations with third-party technologies or services.

CreditPawa is not responsible for privacy practices of external platforms and encourages users to review third-party privacy policies separately.

14. Account Deletion and Data Deletion Requests

Users may request deletion of their CreditPawa account and applicable personal information by:

Accessing account settings within the App (if available); or

Contacting customer support via:

Email: support@creditpawa.net

Deletion requests may be subject to legal retention obligations, fraud prevention requirements, unresolved transactions, or regulatory compliance responsibilities.

15. Updates to this Privacy Policy

Radi Credit Limited may update this Privacy Policy periodically.

Updated versions become effective upon publication within the Application or other official communication channels.

Users are encouraged to review this Policy regularly.

16. Contact Us

For questions, complaints, privacy concerns, or requests relating to personal information, please contact:

Application Name: CreditPawa

Customer Support Email: support@creditpawa.net

By using CreditPawa, users acknowledge acceptance of this Privacy Policy and consent to the processing of information as described herein.