Last updated: February 16, 2026
This Privacy Policy describes how Snippe collects, uses, shares, and protects your Personal Data in accordance with the Personal Data Protection Act, 2022 (PDPA) of the United Republic of Tanzania.
We process Personal Data based on: contractual necessity (providing our payment services), legal obligation (compliance with the National Payment System Act, AML Act, and Bank of Tanzania directives), your consent, or our legitimate interests (fraud prevention, service improvement).
Business Users: Name, email, phone number, login credentials, business registration details, TIN, NIDA ID or passport, bank account and mobile money details, and beneficial ownership information.
End Customers: Transaction Data including name, phone number, email, payment method, and transaction amount. We process this as a data processor on behalf of Business Users, and as an independent controller for fraud prevention and regulatory compliance.
All Users: Device and browser information (IP address, browser type, OS), and any information shared through support channels.
We use Personal Data to provide and operate our Services, verify identities under KYC requirements, process payments and payouts, detect and prevent fraud, comply with Tanzanian financial regulations and Bank of Tanzania directives, fulfil AML reporting obligations to the Financial Intelligence Unit (FIU), send transaction confirmations and service communications, and improve our platform.
We do not sell your Personal Data. We share it with:
We protect Personal Data through encryption in transit and at rest, secure access controls, regular security assessments, and incident response procedures. No system is fully secure — please protect your credentials and report any suspected unauthorized access immediately.
We retain data for as long as your account is active or as required by law. Transaction records are retained for a minimum of seven (7) years under AML requirements. When no longer needed, data is securely deleted or anonymized.
Under the PDPA, you may:
End Customers should first contact the Business User they transacted with. To exercise your rights, email kalebu@neurotech.africa. We respond within thirty (30) days.
If a breach affects your Personal Data, we will promptly notify the Personal Data Protection Commission and affected individuals where the breach poses a high risk to their rights.
Our Services are not for individuals under 18. We do not knowingly collect data from children.
We will notify you of material changes at least thirty (30) days in advance. Continued use constitutes acceptance.