Data Protection

We are committed to protecting personal information in compliance with POPIA (Protection of Personal Information Act). When integrating with our API, please follow these guidelines:

What NOT to Send

To ensure POPIA compliance and protect personal information, do not send us:

❌ ID numbers or passport numbers
❌ Physical addresses
❌ Email addresses (unless explicitly required for the product)
❌ Personal financial information
❌ Any other Personally Identifiable Information (PII)

What You Can Send

Only send the minimum required information for the transaction:

✅ Mobile numbers (required for airtime/data products)
✅ Transaction amounts
✅ Product codes
✅ Your merchant reference numbers

Additional Information Field

We offer a dynamic field (additionalInfo) for any extra data you need for reconciliation purposes. When using this field:

Only include non-sensitive business data
Use anonymized identifiers where possible
Never include PII or sensitive personal information

Best Practices

Minimize data collection to only what's necessary
Implement proper data handling on your side
Ensure you have user consent for data processing
Regularly review what data you're transmitting

Last updated: October 2025

What NOT to Send​

What You Can Send​

Additional Information Field​

Best Practices​

What NOT to Send

What You Can Send

Additional Information Field

Best Practices