Safaricom has dismissed allegations of sharing customer data with state agencies, saying it only complies when ordered by the court.

This follows concerns that Safaricom’s data sharing may be linked to rising abductions.

In a statement, Safaricom clarified that Call Data Records (CDRs) are not used for live location tracking but are generated post-call for billing purposes.

“We respect our customers’ privacy and strictly adhere to Kenya’s data protection laws. We only share customer data when required by a court order.”

Further, the telecommunication company assured customers of transparency and commitment to data privacy.

The response follows a media report claiming that Safaricom provides real-time location data to agencies like the Directorate of Criminal Investigations (DCI) without court orders.

Safaricom recently earned the ISO 27701 Privacy Information Management System (PIMS) certification from the British Standards Institute (BSI), confirming that its IT systems are secure and free from unauthorized access.