How Jamii handles trust, records, and data

Jamii Projects Hub is a tool for communities and groups to keep clear, accountable records of projects, contributions, meetings, expenses, and decisions. By using Jamii you agree to use it honestly, to keep records truthful, and to respect the privacy of other members.

• Jamii is not a bank, SACCO marketing site, lender, investment scheme, or payment processor.
• Appearing on Jamii — including as a verified project — is never a promise or guarantee of funding.
• Do not use Jamii for illegal activity, fraud, harassment, or to misrepresent a group or project.
• Access may be reviewed, suspended, or removed if these terms are broken.
• During the pilot, features may change and some records may be sample data used for testing.

We collect only what we need to help a group keep records: names, contact details, group and project information, contributions, meetings, and the documents a group chooses to upload. A fuller summary of what is public versus private is on the privacy page.

• What we collect: the details you or your group provide, plus a record of who recorded each action.
• Why: to keep accurate, transparent group and project records.
• Who can see it: access is role-based. Private finance and member records are limited to authorised roles; the public only sees projects a group has chosen to make visible.
• How access is reviewed: roles are assigned by admins, and sensitive actions are logged.

People who run a group on Jamii (group owners and admins) hold the trust of their members. As a group admin you agree to:

• Use member data only for the group's legitimate record-keeping.
• Keep records honest and not delete or hide financial history.
• Not remove or reject members silently — removals and rejections require a reason and a record.
• Share money and records responsibilities where possible (for example, a treasurer and a separate checker) rather than holding unchecked power.
• Respect that sensitive actions (removing a verified member, changing the treasurer, deactivating a group) require additional review.

These responsibilities are enforced in the platform through role coverage and review steps, which are being rolled out during the pilot.

When you join a group on Jamii, you consent to that group keeping records about your participation — your contributions, attendance, and agreed responsibilities. You can ask what is held about you and request corrections.

• You should only be added to a group with your knowledge.
• You can withdraw consent to non-essential communications at any time.
• Some records (for example, contributions already made) are kept for accountability even after you leave, but your status is updated to reflect that you have left.

The blank forms on the public forms page are generic templates for meetings and field use. They contain no private data. Once a form is filled in with real people's details, it becomes private group information and must be handled and stored responsibly by the group.

We keep records for as long as a group is active and for a reasonable period afterwards so that accountability is preserved. Financial and audit records are kept longer than ordinary profile data because they support transparency.

• Active group records are retained while the group uses Jamii.
• Financial ledgers and audit logs are append-only — entries are voided, not erased, to protect accountability.
• When a group leaves the pilot, its data can be exported to the group and then archived or deleted on request, subject to legal retention needs.

If we become aware of a data breach that risks people's rights, we will act quickly:

• Contain and assess the issue.
• Notify the Office of the Data Protection Commissioner where required, in line with the Data Protection Act.
• Inform affected groups and members where there is a real risk to them.
• Record what happened and what we changed to prevent it recurring.

You have the right to:

• Ask what personal data is held about you.
• Ask for incorrect data to be corrected.
• Ask for your personal data to be deleted, subject to legal and accountability retention.
• Object to certain uses of your data.

To make a request during the pilot, contact your group admin or the Jamii community coordinator. We will confirm your identity before acting and respond within a reasonable time.

Jamii is being prepared to meet Kenya's Data Protection Act, 2019. Our readiness checklist for the pilot includes:

• Collecting the minimum data necessary (data minimisation).
• Clear purpose and consent for what we collect.
• Role-based access and logging of sensitive actions.
• A retention approach and a breach response plan.
• A process for data access, correction, and deletion requests.
• Registration with the ODPC as a data controller/processor where required before wider rollout.

Jamii is intended for adults managing group and community records. We do not knowingly collect personal details of children. Where a project or welfare case involves a minor, only the minimum necessary information should be recorded, with the consent of a parent or guardian, and it must not be made public.

A national ID number is sensitive. Jamii does not require a national ID to browse projects, download forms, or submit a project idea. An ID number is only requested where it is genuinely necessary for a specific workflow (for example, formal member registration by an admin), and it is treated as private data with restricted access. Never share another person's ID without their consent.