Zed - Privacy policy

Privacy policy


Zed respects your privacy and to this end has developed this policy to explain how we may collect, retain, process, share and transfer your personal data when you visit our or use our sites and services. You accept this Privacy Policy when you sign up for, access, or use our products, services, content, features, technologies or functions offered on our website and all related sites, applications, and services (collectively “Zed”). This Privacy Policy is intended to govern the use of Zed Services by our users (including, without limitation those who use the Zed Services in the course of their trade or business) unless otherwise agreed through contract. We may amend this Privacy Policy at any time by posting a revised version on our website. The revised version will be effective as of the published effective date.

Please contact us with any questions you may have regarding our privacy practices that are not addressed in this Privacy Policy. This Policy describes:

1. What Personal Data Do We Collect?

Personal data means any data that, either on its own or jointly with other data, that can be used to identify a natural person. You directly provide us with such data when you use our websites, or interact with us. The information we collect may include the following:

Registration Information – When you register to use our Services by creating an Account, we will collect Personal Data as necessary to fulfill the Services you request. Depending on the Services you choose, we may require you to provide us with your name, email address or phone number to establish an Account. We may require you to provide us with additional Personal Data as you use our Services.

Transaction and experience information – When you use our Services or access our Sites, for example, to make purchases from merchants, or to process payments, we collect information about the transaction, as well as other information associated with the transaction such as amount paid for products or services, customer information, including information about the payment method used to complete the transaction, Device Information and Technical Usage Data.

Personal Data about you we collect Personal Data when you are interacting with and making payments to merchants, on their sites and checkout with Zed without logging into an account. For our unbranded payment services, your interaction is with the merchant, on their platform. If you are an Account holder, or create an Account at a later date, we may collect information about such unbranded transactions and associate them with your Account to improve your customer experience as an Account holder and for compliance and analytics purposes. If you are not an Account holder, we will collect and store all information you provide and use such information in accordance with this Privacy Policy.

Other information we collect related to your use of our Sites or Services – We may collect additional information from or about you when you communicate with us, contact our customer support teams or respond to a survey.

2. Why Do We Retain Personal Data?


We retain your personal information, in the first instance, for as long as required by a relevant law (e.g. to ensure compliance with tax requirements); or if a relevant law no longer requires us to maintain Personal Information (or that period has elapsed), the Personal Information may then still be retained if required by any relevant contractual agreement or arrangement; and for Personal Information to which a relevant law or contractual agreement or arrangement does not apply, we will retain the Personal Information for as long as is required to manage our engagement and/or relationship with you plus a reasonable period afterwards

If your Account is closed, we may take steps to mask Personal Data and other information, but we reserve our ability to retain and access the data for so long as required to comply with applicable laws. We will continue to use and disclose such Personal Data in accordance with this Privacy Policy

3. How Do We Process Personal Data?


    We may use your personal data for the following purposes:
    Provision of our Services, including to:
  • initiate a payment, or pay a bill.
  • authenticate your access to an Account;
  • communicate with you about your Account, the Sites, the Services, or Zed; sending you information about our services that may interest you or help us serve you better. If you do not want to receive these types of information, you can opt out at any time.
  • perform Account application evaluations and compare information for accuracy and verification purposes
  • keep your Account and financial information up to date.

To manage our operational needs, such as monitoring, analyzing, and improving the Services and the Sites’ performance and functionality. For example, we analyze User behavior and perform research about the way you use our Services.

To manage risk and protect the Sites, the Services and you from fraud by verifying your identity. Zed’s risk and fraud tools use Personal Data, Device Information, Technical Usage Data and Geolocation Information from our Sites and website that other Zed Services to help detect and prevent fraud and abuse of the Services.

To comply with our obligations and to enforce the terms of our Sites and Services, including to comply with all applicable laws and regulations.


To respond to your requestsfor example to contact you about a question you submitted to our customer support team and better respond to your requests and support needs.

4. How to Access & Control Your Personal Data


Subject to limitation set out in the Kenya Data Protection and Privacy Law, you have certain rights in relation to your personal data. You have the right to request access to your data, rectification and data portability.

It is your responsibility to ensure that all personal data submitted to ZED is correct. ZED is dedicated to maintaining the accuracy and completeness of personal data and keeping the data up to date.

To this extent required by the Kenya Data Protection and Privacy Law, you may:

  • have the right to access certain personal data we maintain about you
  • request that we update or correct inaccuracies in that data
  • object or restrict to our use of your personal data
  • ask us to delete your personal data from our platforms.

    • To exercise these rights, you may contact Zed Directly through the contacts provided in this policy.

5. How We Protect Your Personal Data


The security of your personal data is important to us and is our highest priority. We use appropriate physical, management, and technical measures to protect your personal data from unauthorized access, disclosure, use, modification, damage, or loss. The security measures include:


  • Implementing security measures in accordance with internationally recognized standards such as ISO 27001 and PCI DSS i.e., information access management, firewalls, security monitoring, data encryption etc. where our security controls are independently verified by an external auditor.
  • We use cryptographic technologies for transaction security and integrity such as encryption, transmission of transaction information using Secure Socket Layer (SSL) technology and ensuring that post transaction no sensitive card information is stored on our systems
  • We maintain physical, electronic, and procedural safeguards in connection with the collection, storage, and disclosure of personal information

While we are dedicated to securing our systems and Services, you are responsible for securing and maintaining the privacy of your password(s) and Account/profile registration information and verifying that the Personal Data we maintain about you is accurate and current.

6. Updates to This Policy


ZED reserves the right to update or change this Policy at any time. We will release the latest Privacy Policy on our website and appropriate channels for any changes. If major changes are made to the Privacy Policy, we may notify you through different channels, for example, posting a notice on our website or sending you a direct notification.

7. How to Contact Us

If you have any questions or suggestions, privacy complaints or issues, and want to contact ZED Data Protection Officer (DPO) through info@zed.business

8. Definitions


Personal Data: means personal information that can be associated with an identified or identifiable person such as Name, Mobile Phone or Telephone Number, email address, Payment Card Numbers, Official identification information e.g., Identification Number.

Process:means any operation or set of operation which is performed on personal data whether or not by automated means such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Account: means a ZED Business Account

Device Information: means data that can be automatically collected from any device used to access our Sites or Services. Such information may include, but is not limited to, your device type; device ID; your device’s network connections; your device’s name; your device’s IP address; information about your device’s web browser and the internet connection being used to access the Site or Services.

Services: means any products, services, content, features, technologies, or functions, and all related websites, applications and service offered to you by ZED.

User: means an individual or merchant who uses the Services or accesses the Sites means the websites, mobile apps, official social media platforms through which ZED offers the Services and which has posted or linked to this Privacy Policy

ZED: means ZED Limited