We collect personal information you voluntarily provide when you interact with our website or services, including:

• Name, phone number, and email address
• Membership application details (identification, employment, next-of-kin, and financial information submitted during onboarding)
• Messages and inquiry content submitted through contact forms
• Technical data such as browser type, device information, and pages visited (see Cookies)

We collect only information reasonably necessary to respond to your request, process membership interest, or improve website security and performance.

Contact forms, callback requests, and general inquiries on this website create lead records for member services follow-up.

Information submitted may be used to:

• Respond to your question or request
• Route your inquiry to the appropriate team or branch
• Record communication history for service quality and accountability

We do not sell lead data to third-party marketers.

Online membership applications collect information required to assess eligibility and prepare your membership file. This may include identity, contact, employment, savings history, and guarantor details as defined in our membership policy.

Submitted applications are reviewed by authorised SACCO staff. Until membership is approved, your data is handled as a prospective-member record subject to the same confidentiality standards as member data.

For full membership data handling after approval, refer to our internal data privacy policy available through the Policy Center.

This website may use essential cookies and similar technologies to:

• Maintain secure sessions (for example, during form submission)
• Remember basic preferences where applicable
• Support website performance and error monitoring

We do not use cookies to sell your personal information. You may control non-essential cookies through your browser settings; disabling cookies may affect certain website features.

When you contact us by form, phone, or email, we retain your communication details to provide a response and maintain an audit trail. Contact records may be stored in our member services or CRM systems with access limited to authorised staff.

If you request deletion of a contact record that is not yet linked to an active membership, contact us using the details on our Contact page.

We apply reasonable technical and organisational safeguards to protect personal data, including access controls, secure transmission where supported, and staff confidentiality obligations.

No online system is completely risk-free. You are responsible for keeping your login credentials confidential if you access member digital services. Report suspected unauthorised access immediately through our contact channels.

Read more about digital safeguards on our Security page.

We retain personal data only for as long as necessary to fulfil the purpose collected, meet regulatory obligations, or resolve disputes.

• Contact and lead inquiries: retained for a reasonable follow-up period, then archived or deleted per internal records policy.
• Membership applications: retained according to membership and records-management policies, including regulatory retention requirements.
• Website technical logs: retained for security and troubleshooting for a limited period.

Specific retention schedules for member records are defined in cooperative policies and applicable law.

Depending on applicable data protection law, you may have the right to:

• Request access to personal data we hold about you
• Request correction of inaccurate information
• Request deletion or restriction of processing where legally permitted
• Object to certain processing or withdraw consent where processing is consent-based
• Lodge a complaint with a relevant data protection authority

To exercise these rights, contact our office via the Contact page. We may need to verify your identity before fulfilling a request.