Hustler Fund and the data protection implications

Indeed Government (and any other registered Data Controllers/Data processors for that matter) would have legitimate needs/reasons to collect citizen or customer personal data. 
But the right to collect is NOT exactly the same as having the right to abuse/violate your privacy rights thereafter 😉
You as a citizen (or customer) now have a say on every step of the long personal data life cycle that includes Collecting, Processing, Sharing, Retention/Retiring, Accessing, Securing amongst others (ref: KE Data Protection Act, 2019)
You just need to know, then exercise your personal data rights  – as and when required.
On Thursday, December 1, 2022 at 05:19:47 PM GMT+3, Alex Watila <> wrote:

Dear Walu,It’s one of those theories of why governments are needed.

according to him, life was “solitary, poor, nasty, brutish, and short”. It is a war “of every man against every man”. because of that humans agreed to form governments and ceded some of their rights e.g. agreeing to be taxed
Anyway, in data protection speak, doesn’t the government have a legitimate need to collect the hustler fund data? in addition, the citizen does opt in and provide consent for their data to be collected.
I doubt the mpesa pin leaves the Safaricom network as it is being used to verify your identity (Your telephone lines are registered and linked to your identification documents)
On Thu, Dec 1, 2022 at 4:35 PM Walubengo J <> wrote:

@ Alex,
I am still stuck on this statement:
>>>i am still not convinced a citizen can demand privacy from the government since the basics of government >>>is that citizens ceded private rights in return for the public good (Hobbes theory of government)

I don’t know who ‘Hobbes’ is or was but please avoid him or her 😉
Your right to privacy is baked into your 2010 Constitution and even the government should not take it away. Emphasis is of course on ‘should not’ – the fact that most governments regularly do and  violate citizen privacy should never, ever be normalized.
walu–  On Thursday, December 1, 2022 at 11:31:57 AM GMT+3, Alex Watila via KICTANet <> wrote:

in terms of data privacy the government has legitimate right to access your information since you require them to provide you with services 
i am still not convinced a citizen can demand privacy from the government since the basics of government is that citizens ceded private rights in return for public good (Hobbes theory of government)
in terms of mpesa pin i doubt it leaves mpesa. GoK is just using an existing platform (shared services concept we have been pushing) to deliver a public good
On Thu, Dec 1, 2022, 10:20 tevin mwenda via KICTANet <> wrote:

Dear listers,
The Kenyan Government launched the much hyped hustler fund a digital lending platform. Credit will be accessible through various lending platforms such as M-PESA. Out of curiosity I can not help but wonder what are the data protection implications of the system. For example what data will be used as baseline to determine your credit worthiness. Is it data held by government, credit reference bureaus, the lending companies or we are starting from scratch ? Who will be the main data controller of the data collected is it government is it the companies. If it’s the government how much data will they have on Kenya and their credit worthiness and what are the implications of that. Who will store this data? Are their any data sharing agreements in place between the entities involved. What data subject rights have been provided and does the consumer understand them? It will be intresting to see how this develops and the discussion from a data protection perspective.