M-Ledger Privacy Policy

Effective Date: April 12, 2026

Your privacy is important to us. This policy explains what data M-Ledger collects, how it is used, and your rights as a user. The short version: your M-PESA transaction data never leaves your device.

What We Collect How We Use It Data Storage App Permissions Your Rights Contact

1. About M-Ledger

M-Ledger (package name: com.records.pesa) is an Android application developed and maintained by Kiwitech Hub, a registered business in Kenya. M-Ledger reads M-PESA SMS messages on your device to help you track, categorize, and analyze your personal M-PESA financial transactions.

By downloading or using the M-Ledger app, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use of the app.

2. Information We Collect

We collect only what is necessary to provide M-Ledger's services. The information falls into two categories:

2.1 Data Stored Only on Your Device (Never Sent to Our Servers)

Your M-PESA transaction data stays 100% on your device. M-Ledger reads your M-PESA SMS messages solely to parse and store transaction records locally using an on-device database (SQLite via Android Room). This includes:
  • Transaction codes and types (send, receive, withdrawal, paybill, till, etc.)
  • Transaction amounts and costs
  • Transaction dates and times
  • Sender and recipient identifiers (phone numbers, paybill numbers, till numbers as they appear in SMS)
  • M-PESA account balance figures
  • Custom nicknames and categories you create within the app
  • Budgets and spending limits you configure

This data is never transmitted to, stored on, or processed by Kiwitech Hub's servers. It exists solely on your personal device and is under your control at all times.

2.2 Account & Authentication Data (Sent to Our Servers)

To enable premium subscriptions and account management, we collect and store the following on our secure servers:

  • Email address — used for account creation and login
  • First and last name — used to personalise your account
  • Phone number — used for account identification and M-PESA subscription payments
  • Account activity timestamps — date of account creation, last login, and last backup
  • Subscription status — whether you are on a free or premium plan and the expiry date of your subscription

2.3 Payment Data

Premium subscriptions are processed via M-PESA. When you initiate a subscription payment, your phone number is used to trigger an M-PESA STK push. We record the payment transaction reference and status for subscription management purposes. We do not store your M-PESA PIN or full payment credentials.

3. How We Use Your Information

We use the information we collect for the following purposes only:

  • To provide the app's core features — transaction tracking, analytics, categories, budgets, and statement generation are all powered by on-device data and do not require server access.
  • To manage your account — authentication, login, and account recovery use your email address and phone number.
  • To manage your subscription — verifying premium access and processing M-PESA subscription payments.
  • To provide AI-powered insights (Premium) — if you use the AI assistant feature, anonymised or aggregated financial summaries may be processed to generate insights. Raw transaction records are never sent to AI services.
  • To improve the app — we may use anonymised, aggregated usage data to understand how features are used and improve the app experience.

We do not sell, rent, or share your personal information with third parties for marketing purposes.

4. Data Storage & Security

4.1 On-Device Storage

Transaction data, categories, budgets, and all financial records are stored in an encrypted SQLite database on your Android device. This data is subject to your device's security settings (screen lock, device encryption). Uninstalling M-Ledger will delete all locally stored data.

4.2 Server-Side Storage

Account information (name, email, phone number, subscription status) is stored on secure servers. We implement industry-standard security measures including:

  • HTTPS encryption for all data in transit
  • Hashed and salted password storage (passwords are never stored in plain text)
  • Role-based access controls limiting who can access your data
  • Regular security updates and monitoring

4.3 Data Retention

Account data is retained for as long as your account is active. If you request account deletion, your personal information will be removed from our servers within 30 days. On-device data is deleted when you uninstall the app or clear app data from your device settings.

5. App Permissions

M-Ledger requests the following Android permissions to function:

Permission Purpose
READ_SMS Reads M-PESA SMS messages to parse transaction details. Only M-PESA messages are processed; all other SMS messages are ignored and never stored.
RECEIVE_SMS Listens for new incoming M-PESA SMS messages so transactions are captured in real time.
INTERNET Required for account authentication, subscription management, and accessing AI insights (Premium).
WRITE_EXTERNAL_STORAGE Saves downloaded PDF and CSV statements to your device's storage so you can open and share them.

You can manage or revoke permissions at any time through your Android device's Settings > Apps > M-Ledger > Permissions. Revoking the READ_SMS permission will prevent the app from reading new transactions.

6. Third-Party Services

M-Ledger integrates with the following third-party services:

  • M-PESA (Safaricom) — Used to process premium subscription payments via STK push. Your interaction with M-PESA is governed by Safaricom's Privacy Policy.
  • Google Play Store — The app is distributed through Google Play. Download and installation are subject to Google's Privacy Policy and Terms of Service.

We do not share your personal data with any other third parties unless required by law or with your explicit consent.

7. Children's Privacy

M-Ledger is intended for users who are 18 years of age or older, or of legal age to hold an M-PESA account in Kenya. We do not knowingly collect personal information from children under 18. If you believe a child has provided us with personal information, please contact us and we will promptly delete it.

8. Your Rights

You have the following rights regarding your personal data:

  • Access — You may request a copy of the personal information we hold about you.
  • Correction — You may update your name, email, or phone number from within the app's profile settings.
  • Deletion — You may request deletion of your account and all associated server-side data by contacting us at support@kiwitechhub.com. On-device data can be deleted by clearing app data or uninstalling the app.
  • Data portability — You can export your transaction data as PDF or CSV directly from within the app at any time.
  • Withdraw consent — You may revoke SMS permissions at any time via Android device settings.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Effective Date" at the top of this page and, for material changes, notify users through an in-app notification or via email. Continued use of M-Ledger after such changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please contact us:

Company Kiwitech Hub
Email support@kiwitechhub.com
Phone +254 794 649 026
Address Mobtech Shop, Mau Summit Road, Molo, Nakuru, Kenya
← Back to M-Ledger Kiwitech Hub Home