Privacy Policy

📋1. Introduction & Scope

PayHero Agencies ("we," "us," "our," or "PayHero Agencies") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with our platform and services.

Who We Are

PayHero Agencies is an online earning platform operating primarily in African countries with focus on Kenya, Nigeria, and Ghana. We connect users with legitimate online earning opportunities including surveys, tasks, and other digital work.

Scope of This Policy

This Privacy Policy applies to all users of the PayHero Agencies platform, including:

The PayHero Agencies website (payheroagencies.com)
Our mobile applications (iOS and Android)
All associated services and features
Email communications and support channels

                Important: This Privacy Policy is separate from our Terms & Conditions. Together, they form the entire agreement between you and PayHero Agencies.
            

🔍2. Information We Collect

A. Information You Provide Directly

We collect information you voluntarily provide to us:

Registration Information:

Full name
Email address
Phone number
Date of birth
Country and city of residence
Username and password

Verification Information:

Government-issued identification (national ID, passport)
Photographs for identity verification
Address verification documents
Bank account or payment method details

Profile Information:

Demographic data (age, gender, occupation)
Educational background
Interests and preferences
Social media usernames (when applicable)
Skills and qualifications

Communication Data:

Messages you send us
Support tickets and complaints
Feedback and survey responses
Chat messages with support team

B. Information Collected Automatically

Device Information:

Device type and model
Operating system and version
Device identifiers
Mobile network information

Usage Data:

Pages visited and time spent
Features used and interaction patterns
Tasks completed and earnings history
Login times and activity logs
Search queries and browsing behavior

Location Data:

IP address
Approximate location (city/region level)
GPS coordinates (if you grant permission)

Technical Data:

Browser type and version
Internet service provider (ISP)
Crash reports and error logs
Performance metrics

C. Information From Third Parties

We may receive information about you from:

Payment Processors: Transaction data from M-Pesa, banks, and other payment providers
Identity Verification Services: Results from ID verification and KYC providers
Social Media: If you link your account with Facebook, Google, or Twitter
Advertising Networks: Conversion data and audience insights
Analytics Services: Aggregate usage statistics

                Data Accuracy: You are responsible for ensuring that the information you provide is accurate, complete, and current. Providing false information may result in account suspension.
            

⚙️3. How We Use Your Information

We use the information we collect for the following purposes:

A. Service Delivery

Creating and maintaining your account
Verifying your identity for compliance
Processing earnings and withdrawals
Providing access to tasks and opportunities
Calculating and crediting payments

B. Fraud Prevention & Security

Detecting fraudulent activities
Preventing unauthorized access
Investigating suspicious transactions
Implementing security measures
Compliance with regulatory requirements

C. Communication

Sending transactional emails (registration, withdrawal confirmations)
Providing customer support
Responding to your inquiries
Sending important platform updates
Notifying you of policy changes

D. Marketing & Engagement

Sending promotional emails about new earning opportunities
Personalizing your user experience
Conducting surveys and research
Testing new features
Analyzing user preferences

E. Analytics & Improvement

Understanding how you use our platform
Identifying trends and patterns
Improving our services and user experience
Developing new features
Troubleshooting technical issues

F. Legal & Compliance

Complying with applicable laws and regulations
Responding to legal requests and subpoenas
Enforcing our Terms & Conditions
Protecting our rights and interests
Resolving disputes

Marketing Preferences: You can opt out of promotional emails by clicking the "unsubscribe" link in any marketing email or updating your preferences in your account settings.

⚖️4. Legal Basis for Processing

We only process your personal information when we have a valid legal basis to do so:

Legal Basis	Purpose	Examples
Contract Performance	To fulfill our agreement with you	Account creation, task assignment, payments
Legal Obligation	To comply with laws and regulations	KYC/AML checks, tax reporting, fraud prevention
Legitimate Interest	For our business interests	Fraud detection, platform security, analytics
Consent	With your explicit permission	Marketing emails, location tracking, cookies

You have the right to withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

🤝5. Data Sharing & Third Parties

A. When We Share Your Information

We share your personal information only in the following circumstances:

Service Providers:

We share necessary information with third parties who help us operate our platform:

Payment Processors: M-Pesa, banks, and payment gateways for processing withdrawals
Identity Verification Services: KYC and ID verification providers
Cloud Hosting Providers: For storing and securing data
Email Services: For sending communications
Analytics Providers: For understanding usage patterns
Customer Support Platforms: For managing support tickets

Legal Requirements:

We may disclose your information when required by law or to:

Comply with legal processes, court orders, or government requests
Enforce our Terms & Conditions and other agreements
Protect against fraud, security, or technical issues
Protect the rights, property, and safety of PayHero Agencies, users, and public

Business Transfers:

If PayHero Agencies is involved in a merger, acquisition, bankruptcy, or asset sale, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.

Aggregated Data:

We may share anonymized, aggregated data that cannot identify you with third parties for research, marketing, analytics, and other purposes.

⚠️ Important: We will never sell your personal information to third parties for their direct marketing purposes without your explicit consent.

B. Data Processing Agreements

All third-party service providers are contractually bound by Data Processing Agreements (DPAs) that:

Require them to process data only as instructed
Mandate appropriate security measures
Restrict data use and sharing
Require them to assist with data subject rights

🔒6. Data Security & Protection

A. Security Measures

We implement comprehensive security measures to protect your personal information:

Technical Security:

SSL/TLS Encryption: All data in transit is encrypted using industry-standard protocols
Database Encryption: Sensitive data is encrypted at rest
Firewalls: Advanced firewalls protect against unauthorized access
Intrusion Detection: Systems monitor and detect suspicious activity
Regular Penetration Testing: We conduct security assessments regularly

Organizational Security:

Limited access to personal data on a need-to-know basis
Employee confidentiality agreements and data protection training
Background checks for employees with data access
Regular security audits and compliance checks

Access Controls:

Multi-factor authentication for user accounts
Strong password requirements
Session timeouts and automatic logout
Role-based access controls

B. Limitations of Security

Important Disclaimer: While we implement robust security measures, no system is completely secure. We cannot guarantee absolute security of your information. Any transmission of data over the internet is at your own risk. We encourage you to use strong passwords and enable multi-factor authentication.

C. Data Breach Notification

In the unlikely event of a data breach, we will:

Notify affected users without undue delay (typically within 72 hours)
Provide details of the breach and affected data
Explain steps you should take to protect yourself
Provide contact information for more information
Comply with all legal notification requirements

⏰7. Data Retention

A. Retention Periods

We retain your personal information only for as long as necessary:

Data Type	Retention Period	Reason
Account Information	Duration of account + 3 years	Legal and tax compliance
Transaction Records	7 years	Legal, tax, and fraud prevention
ID & Verification Documents	3 years after account closure	AML/KYC compliance
Communications	2 years	Dispute resolution and support
Analytics Data	13 months	Service improvement
Log Files	90 days	Security monitoring

B. Data Deletion

After the retention period expires, we delete your information or anonymize it so it cannot be linked to you. We may retain aggregated, anonymized data indefinitely for statistical purposes.

C. Account Deletion Request

You can request deletion of your account. Upon deletion:

Your profile and login credentials will be removed
Personal identification information will be anonymized
Transaction records will be retained for legal/tax compliance
Processing takes 30 days

Note: We cannot delete information required for legal compliance, fraud prevention, or legitimate business purposes.

👤8. Your Privacy Rights

A. Your Rights

You have the following rights regarding your personal information:

Right to Access (1. Data Subject Access Request)

You have the right to request a copy of all personal information we hold about you. We will provide this within 30 days in a portable, machine-readable format.

Right to Rectification

You can request correction of inaccurate or incomplete information. You can update much of this yourself in your account settings.

Right to Erasure ("Right to be Forgotten")

You can request deletion of your information, except where we have a legal obligation to retain it.

Right to Restrict Processing

You can request that we limit how we use your information while a dispute is resolved.

Right to Data Portability

You can request your data in a structured, commonly-used format to transfer to another service.

Right to Object

You can object to processing based on legitimate interest or marketing purposes.

Right to Withdraw Consent

You can withdraw consent for marketing communications at any time.

B. How to Exercise Your Rights

To exercise any of these rights, contact us with:

Your name and account email
Specific right you're exercising
Proof of identity (for data access requests)
Any supporting documentation

We will verify your identity and respond within 30 days. If your request is complex, we may extend this by 60 days with notification.

C. Right to Lodge a Complaint

If you believe we've violated your privacy rights, you can lodge a complaint with:

PayHero Agencies Data Protection Officer (contact details below)
Your Local Data Protection Authority in Kenya or your country

                No Penalty for Rights Exercise: We will not discriminate against you or deny services for exercising your privacy rights.
            

🍪9. Cookies & Tracking Technologies

A. What Are Cookies?

Cookies are small text files stored on your device that help us recognize you and enhance your experience. We use the following types:

Essential Cookies

Required for the platform to function:

Session authentication cookies
Security and fraud prevention
User preference storage

Performance Cookies

Help us understand how you use our platform:

Google Analytics for usage analytics
Page load time measurement
Error tracking

Marketing Cookies

Used to personalize advertising:

Facebook Pixel for conversion tracking
Google Ads for remarketing
Audience identification

B. Managing Cookies

You can control cookies through:

Browser Settings: Most browsers allow you to refuse cookies or alert you when cookies are being sent
Opt-Out Services: Use third-party opt-out services like AdChoices
Our Cookie Preferences: Click "Cookie Settings" in our footer to manage preferences

⚠️ Note: Disabling essential cookies may prevent the platform from functioning properly.

C. Other Tracking Technologies

We may use other tracking methods:

Pixel Tags: Invisible tracking images in emails
Web Beacons: For analytics and conversion tracking
Device Fingerprinting: For fraud detection and security
Local Storage: Browser storage similar to cookies

🔗10. Third-Party Links

Our platform may contain links to third-party websites and services that are not operated by PayHero Agencies. This Privacy Policy does not apply to those sites.

Your Responsibilities

When you click on third-party links:

You leave the PayHero Agencies platform
Their privacy policies apply, not ours
We're not responsible for their privacy practices
You should review their policies before sharing information

Linked Services We May Use

Payment Providers: M-Pesa, banks, and payment gateways
Social Media: Facebook, Google, Twitter login integration
Analytics: Google Analytics, Hotjar
Support: Live chat providers, helpdesk software

Third-Party Features: Some sections of our platform may be powered by third parties. We recommend reviewing their privacy policies as well.

👶11. Children's Privacy

Age Restrictions

PayHero Agencies is not intended for users under 18 years old. We do not knowingly collect personal information from children under 18.

If You're Under 18

If you're under 18, please do not use our platform or provide any information. If we discover we've collected information from someone under 18, we will delete it promptly.

Parent/Guardian Concerns

If you believe we've collected information from a child under 18, please contact us immediately at:

Email: privacy@payheroagencies.com
Phone: +254 140 556 947

                Parental Controls: Parents concerned about their children's online safety are encouraged to monitor their children's internet activities and use parental control tools.
            

🌍12. International Data Transfers

A. Where Your Data Is Stored

PayHero Agencies operates primarily in Kenya and processes data in African data centers. However, we may transfer your data to:

Payment processors in various countries
Cloud service providers (AWS, Google Cloud, etc.)
Third-party service providers worldwide
Regulatory authorities as required by law

B. Data Transfer Mechanisms

When we transfer data internationally, we use:

Standard Contractual Clauses (SCCs)
Data Processing Agreements with safeguards
Your explicit consent
Adequacy decisions by regulators

C. Your Consent

By using PayHero Agencies, you consent to international data transfers as described above. You acknowledge that data protection laws may differ in other countries.

⚠️ Important: Some countries may not have the same data protection standards as Kenya. We ensure adequate safeguards are in place through contractual agreements.

📝13. Updates to This Policy

Policy Changes

PayHero Agencies may update this Privacy Policy periodically to reflect:

Changes to our data practices
New services or features
Legal or regulatory requirements
Technology improvements

How We Notify You

We will notify you of material changes by:

Updating the "Last Updated" date at the top
Emailing you about significant changes
Requesting your consent if legally required
Posting a notice on our website

Your Rights Upon Changes

If you disagree with policy changes, you may:

Stop using the platform
Request account deletion
Contact us with concerns

Continued use of PayHero Agencies after policy changes constitutes your acceptance of the updated terms.

📞14. Contact Us

Data Protection Officer

For privacy-related inquiries, contact our Data Protection Officer:

Email: dpo@payheroagencies.com
Phone: +254 140 556 947
Mailing Address: PayHero Agencies, Nairobi, Kenya

Privacy Inquiries

For general privacy questions and requests:

Email: privacy@payheroagencies.com
WhatsApp: +254 140 556 947
Live Chat: Available in your dashboard

Data Subject Rights Requests

To exercise your privacy rights (access, deletion, portability, etc.):

Send a written request to dpo@payheroagencies.com
Include your name, account email, and request details
Provide proof of identity
We'll respond within 30 days

Response Times

Privacy Inquiries: 48 business hours
Data Requests: 30 days (extendable to 60 days for complex requests)
Complaint Response: 14 days

📊 Your Privacy Rights Summary

1

Access Your Data: Request all information we hold about you

2

Correct Your Data: Request correction of inaccurate information

3

Delete Your Data: Request deletion (where legally possible)

4

Export Your Data: Receive your data in a portable format

5

Object to Processing: Stop processing for marketing or other purposes

✅ Our Privacy Commitment

At PayHero Agencies, we take your privacy seriously. We are committed to:

Collecting only necessary information
Using your data transparently and responsibly
Protecting your information with robust security
Respecting your privacy rights
Complying with applicable privacy laws

Thank you for trusting PayHero Agencies with your information. We value your privacy and are committed to maintaining your trust. If you have any questions or concerns about this Privacy Policy or our privacy practices, please don't hesitate to contact us.

This Privacy Policy is effective as of February 2026 and will be updated as needed.

↑ Back to Top

📑 Table of Contents