Trust, Compliance & Regulation
MoneyMatch operates as a comparison and referral platform and adheres to Kenyan data protection and consumer protection principles.
Regulatory Oversight
MoneyMatch maintains high standards of transparency by aligning with the frameworks established by Kenya's primary financial regulators. While we are a neutral technology layer, we respect the mandates of each governing body.
CBK
Central Bank of Kenya: Banking and payment service oversight.
CMA
Capital Markets Authority: Investment and securities regulation.
IRA
Insurance Regulatory Authority: Protection for policyholders.
RBA
Retirement Benefits Authority: Pension and retirement scheme safety.
MoneyMatch acts as a neutral comparison and referral service designed to empower Kenyan consumers with financial clarity. We are not a lender, broker, or bank. We do not hold user funds, nor do we make credit decisions or issue insurance policies.
Important Notice: MoneyMatch provides guidance and comparisons based on available market data. Final approval, interest rates, and terms are subject to the respective financial institution’s independent assessment and internal policies.
Data Protection & Privacy
Kenyan Data Protection Compliance
We strictly adhere to the Data Protection Act of 2019. Our principles include lawfulness, transparency, and data minimization. We only process what is necessary to find your financial match.
What We Collect
To provide accurate matching, we collect income ranges, employment status, monthly expenses, and financial goals. Contact details like phone and email are collected only with explicit consent for referral purposes.
Retention Policies
User data is retained only for the duration necessary to fulfill the matching service or as required by law. Anonymized data used for institutional insights is kept indefinitely but cannot be traced back to individuals.
Your Rights
Under the Kenyan Data Protection Act, you have the right to access, rectify, or erase your personal data. You may also object to processing or request data portability at any time through our compliance portal.
Security & Operational Controls
Enterprise-Grade Encryption
All data in transit and at rest is protected using industry-standard AES-256 encryption. We utilize Secure Socket Layer (SSL) technology to ensure that your financial profile remains private and protected from unauthorized access.
Access Controls
Strict internal protocols ensure that only authorized personnel can access sensitive systems under supervised conditions.
Anonymisation
Analytics shared with institutions are fully anonymised to protect individual identities and minimize risk.
Compliance & Auditability
Partner Onboarding
Rigorous KYC and due diligence on all financial institutions before they are listed on the MoneyMatch platform.
Regulatory Reporting
Regular submission of operational reports to ensure alignment with consumer protection mandates.
Audit Readiness
Maintaining comprehensive logs and documentation for independent third-party compliance audits.
Institutional Verification
Providing partners with the necessary transparency to verify our compliance posture and data handling.
Compliance Inquiries
For institutional partners requiring compliance documentation, data-processing agreements (DPAs), or regulatory queries, our legal team is available for consultation.
Institutional Partners
Request our full compliance packet and DPA templates for your legal review.