Last updated: January 2026
When you access or use the Mobile Wallet OS platform, we may collect personal information you provide directly — including your name, email address, phone number, business registration details, and identity verification documents required for compliance onboarding. We also collect technical information automatically when you interact with our platform, such as your IP address, device identifiers, browser type, and usage logs. For API clients, we collect integration credentials, webhook configuration data, and transaction metadata necessary to operate and audit the platform.
We use the information we collect to operate the Mobile Wallet OS infrastructure — including processing transactions, enforcing compliance rules, and routing settlements across mobile money, stablecoin, and cash endpoints. We also use your information to authenticate API clients, generate transaction records and audit trails, communicate operational or compliance updates, and improve the reliability and performance of the platform. We do not use your data for advertising and we do not sell personal data to third parties.
We share information only where necessary to operate the platform. This includes mobile money operators, stablecoin network validators, and banking partners required to execute a transaction on your behalf; identity verification providers used during compliance onboarding; and regulators or law enforcement where disclosure is legally required in any of the markets where Mobile Wallet OS operates. We do not share your data with third parties for commercial purposes beyond those listed above. Any sub-processors are contractually bound to the same data protection standards applied internally.
As a regulated financial infrastructure platform, Mobile Wallet OS is required to collect and retain Know Your Customer (KYC) and Anti-Money Laundering (AML) data for clients and, in certain markets, for end users transacting through the platform. This data includes government-issued identity documents, proof of address, and transaction history. Retention periods for compliance data are governed by the regulatory requirements of each market in which we operate and may extend beyond the termination of your account.
Depending on your jurisdiction, you may have rights to access, correct, or request deletion of personal data we hold about you. You may also have the right to object to certain processing activities or request data portability. Please note that some requests may be limited where we are required by law or regulation to retain data — particularly compliance and transaction records. To exercise any of these rights, contact us at privacy@mobilewalletinc.com. We will respond within the timeframe required by applicable law.
We implement technical and organisational measures designed to protect the data we process — including encrypted data transmission (TLS), access controls, API key management, audit logging, and infrastructure hardening. Transaction records are hashed and logged to maintain tamper-evident audit trails. While we apply industry-standard security practices, no system is entirely risk-free. If you believe your account or API credentials have been compromised, contact security@mobilewalletinc.com immediately.
We retain personal and transactional data for as long as your account is active and for the period required by applicable law in each market we serve. KYC and AML records are retained for a minimum of five years following the end of a business relationship, consistent with financial regulatory requirements in Cameroon, Kenya, Ghana, Nigeria, Senegal, and Tanzania. Technical logs and usage data are retained for shorter periods and automatically deleted on a rolling schedule.
Mobile Wallet OS operates across multiple jurisdictions. Processing your data may involve transferring it to countries outside your home jurisdiction, including to infrastructure providers and compliance partners located in the United States, Europe, or other markets in Sub-Saharan Africa. Where such transfers occur, we apply contractual safeguards consistent with applicable data protection law to ensure your data receives an equivalent level of protection.
We may update this Privacy Policy to reflect changes in our practices, product scope, or regulatory environment. Material changes will be communicated to registered clients via email or through the Operator Dashboard. The "Last Updated" date at the top of this page reflects the most recent revision. Continued use of the platform following a policy update constitutes acceptance of the revised terms.
