Awesome Image

Cart (0)
Awesome Image
Awesome Image

Get in touch

Awesome Image Awesome Image
Privacy Policy — Sasini Mobile App
Est. 1952

Privacy Policy

Sasini Mobile Application  ·  Android & iOS

Document
Privacy Policy v1.0
Effective Date
27 April 2026
Owner
Sasini PLC
Support Email
sasiniapp@sasini.co.ke
Website
www.sasini.co.ke
Phone
+254-020-30000

Preamble & Introduction

Sasini PLC ("Sasini", "we", "our", or "us"), a public listed company in Kenya established in 1952 and headquartered in Nairobi, is committed to protecting the privacy and personal data of every individual who uses the Sasini Mobile Application ("the App"). This Global Privacy Policy ("Policy") governs the collection, use, storage, sharing, and deletion of personal data across all versions and features of the App, available on the Google Play Store (Android) and the Apple App Store (iOS).

This Policy is designed to comply with, and exceed the requirements of, the following regulatory frameworks:

  • The Kenya Data Protection Act, 2019 (KDPA) and the Data Protection (General) Regulations, 2021
  • Google Play Store Data Safety and Privacy Policy requirements
  • Apple App Store App Privacy and Data Use requirements
  • Any other applicable national or international data protection laws

By downloading, installing, registering for, or using the Sasini Mobile Application, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. If you do not agree to any part of this Policy, you must discontinue use of the App immediately and may request deletion of your account and data as described in Section 9.

This Policy applies to all users of the Sasini Mobile App regardless of their geographic location, user type (Sasini Farmer or Guest/Buyer), or device platform (Android or iOS). It applies to personal data collected through the App, our backend systems, third-party services integrated into the App, and all communications between you and Sasini.

Table of Contents

  1. Identity of the Data Controller
  2. Categories of Personal Data We Collect
  3. How We Use Your Personal Data
  4. Data Sharing & Third-Party Processors
  5. Data Security & Technical Safeguards
  6. Data Retention Policy
  7. Your Data Subject Rights
  8. Children's Privacy
  9. Account Deletion & Data Deletion Policy
  10. Cookies, Tracking Technologies & Analytics
  11. International Data Transfers
  12. Push Notifications
  13. Device Permissions
  14. Google Play Data Safety Declarations
  15. Apple App Store Privacy Nutrition Label
  16. Changes to This Privacy Policy
  17. Contact Us
  18. Governing Law & Jurisdiction
  19. Definitions & Glossary

1Identity of the Data Controller

For the purposes of applicable data protection law, the data controller responsible for your personal data is:

Legal Name
Sasini PLC
Registration
Public Listed Company
Physical Address
3rd Floor, Rivaan Centre, Brookside Grove, Muguga Green, P.O Box 30151 – 00100, Nairobi, Kenya
App Support
sasiniapp@sasini.co.ke
General Email
info@sasini.co.ke
Phone
+254-020-30000
Website
www.sasini.co.ke

Sasini PLC designates a Data Protection Officer (DPO) to oversee compliance with this Policy and applicable data protection legislation. Data protection queries, complaints, and subject access requests may be directed to the DPO at sasiniapp@sasini.co.ke with the subject line: "DATA PROTECTION REQUEST".

2Categories of Personal Data We Collect

We collect only what is necessary for each specific purpose described below, depending on your user type and the features you use.

2.1 Identity & Registration Data

Collected from all users during registration and account creation:

  • Full legal name
  • Email address (primary account identifier and communication channel)
  • Phone number
  • Password (stored only as a salted cryptographic hash — never in plain text)
  • Preferred language (English or Swahili)
  • User type (Sasini Farmer or Guest/Buyer)
  • Date of registration and account creation timestamp

2.2 Farmer-Specific Identity & Verification Data

Collected exclusively from users registering as Sasini Farmers. This data is required to validate the farmer's identity against Sasini's internal factory database:

  • Sasini Farmer ID (official registration number issued by Sasini)
  • National Identity Card (NIC) Number / National ID
  • Unique Digital ID (UID) — generated and assigned by Sasini's system upon verification
  • Date of Birth (DOB)
  • Gender
  • Village, Buying Centre, County, and Sub-County of residence
Important: Farmer registration data is cross-referenced in real-time against Sasini's encrypted central factory database. Invalid or unrecognised identifiers return a generic 'Validation Failed' error to prevent account enumeration attacks. Sasini does not collect or store National ID numbers beyond the initial verification query.

2.3 Profile & Account Management Data

  • Profile information maintained in the 'My Profile' section
  • Language preference settings and app notification preferences
  • Session identifiers and authentication tokens (time-limited, invalidated on logout or password change)

2.4 Agricultural & Transactional Data (Farmer Accounts Only)

Generated by or associated with a farmer's activity within the App, synchronized from Sasini's systems:

  • Produce delivery records: receipt numbers, delivery dates, produce weights (kg), number of bags, delivery status, and unique digital receipt numbers
  • Payment records: payment periods, total weight delivered, unit price per kg, gross earnings ('Green Leaf Pay'), bank charges, deductions, and net income
  • Farm input and Agri Shop orders: items ordered, quantities, unit prices (KES), and order status
  • Produce pickup requests: produce type, estimated weight, preferred collection date, pickup location, and request status
  • Pest and disease reports: farm location, crop type, pest type, severity level, symptom descriptions, and photographic evidence

2.5 AI Assistant Interaction Data

When you use the Sasini AI Assistant (the Digital Agronomist):

  • Text messages and queries you type into the AI chat interface
  • Images you upload for crop diagnostics (transmitted via encrypted Base64 encoding)
  • AI conversation session IDs and chat history (stored only while your account is active; permanently deleted on request or upon account deletion)
  • Vector search embeddings generated from your query text for knowledge retrieval (not linked to PII)

2.6 Device & Technical Data

Automatically collected when you use the App:

  • Device type, manufacturer, model, and operating system version
  • App version number and IP address (used for security logging and fraud prevention)
  • Firebase installation ID and FCM token (for push notifications)
  • Crash logs and error reports (via Firebase Crashlytics)
  • App performance metrics and diagnostics (via Firebase Performance Monitoring)
  • Session start/end timestamps and network type (Wi-Fi / mobile data)

2.7 Location Data

Location data is collected only when you use the Weather & Alerts module and only with your explicit permission:

  • High-accuracy GPS coordinates (latitude and longitude) for micro-climate weather data and farm-specific alerts
  • Movement detection data — processed locally on your device and not stored on our servers beyond the active session
You can revoke location permission at any time through your device settings (Settings > Apps > Sasini > Permissions). Revoking location permission will disable weather and farm location features but will not affect other App functionality.

2.8 Photographic & Media Data

  • Photos captured or uploaded for pest and disease reports — transmitted securely to Sasini's agronomy team
  • Photos submitted with produce pickup requests — used to verify produce readiness
  • Images uploaded to the AI Assistant — processed by the Vision Inference Engine and not stored permanently after the session

2.9 Feedback & Ratings Data

  • Star ratings (1–5 scale) and Net Promoter Score (NPS) ratings (1–10 scale)
  • 'Success Tags' qualitative selections and written review text

Feedback data is anonymized before being aggregated for operational analysis.

2.10 Communications Data

  • Emails and support queries sent to sasiniapp@sasini.co.ke
  • In-app support tickets or help requests

2.11 Data We Do NOT Collect

We do not collect or request: payment card numbers, bank account credentials, biometric data (fingerprints, facial recognition), social security numbers unrelated to farmer verification, children's data (the App is not intended for individuals under 18), or any data through third-party advertising networks. We do not track your activity on other apps or websites.

3How We Use Your Personal Data

We only use your personal data for the purposes described below. For each purpose, we identify the applicable legal basis under the Kenya Data Protection Act, 2019.

Purpose of ProcessingData UsedLegal Basis
Account creation, authentication & identity verificationName, email, phone, Farmer ID, National ID, UID, password hashContract / Legitimate Interests
Farmer validation against Sasini factory databaseFarmer ID, National ID, phone numberContract
Providing core services: delivery tracking, payment ledgers, input orderingTransactional and agricultural dataContract
AI Agronomist: answering farming queries and crop diagnosticsAI chat history, uploaded imagesContract / Consent
Live weather and GPS-based farm alertsGPS coordinates (with consent)Consent
Pest and disease biosecurity reportingFarm location, crop data, photos, symptom descriptionsLegitimate Interests (public agricultural interest)
Produce pickup scheduling and logisticsPickup details, photos, farmer locationContract
Push notifications (orders, pickups, deliveries, payments, broadcasts)FCM token, notification preferencesContract / Consent
Security monitoring, fraud prevention, brute-force protectionIP address, login attempts, session data, device infoLegitimate Interests
App diagnostics and performance improvementCrash logs, performance metrics, device infoLegitimate Interests
Feedback analysis and service improvementAnonymized feedback and ratings dataLegitimate Interests
Legal compliance and regulatory obligationsRelevant personal and transactional dataLegal Obligation
Account deletion abuse prevention (anti-spam)User ID (non-PII) and email address onlyLegitimate Interests

4Data Sharing & Third-Party Processors

We do not sell, lease, or trade your personal data to any third party. We do not share your data with advertisers or marketing companies. We do not use your data for targeted advertising. Your personal data is only shared in the limited circumstances described below, always under strict data processing agreements.

4.1 Internal Sharing — Sasini ERP Systems

Farmer data is synchronized with Sasini's internal factory servers and database systems to support delivery tracking, payment processing, and agronomy services. This is an internal transfer within the Sasini organization and is necessary for the App to function.

4.2 Third-Party Service Providers

ProviderServiceData Shared
Google FirebasePush notifications (FCM), crash analytics, performance monitoring, email verificationFCM token, device info, crash logs, email address
Google Weather APIReal-time weather and agricultural alertsGPS coordinates (anonymized, not stored)
Apple APNs / Google FCMNative OS push notificationsDevice token only

4.3 Legal Disclosures

We may disclose your personal data to regulatory authorities, law enforcement agencies, or courts if required by applicable law, including the Kenya Data Protection Act, court orders, or other legal processes. We will notify you of such disclosures where legally permitted to do so.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of Sasini PLC or its assets, your personal data may be transferred to the relevant successor entity. You will be notified of such a transfer and any material changes to this Privacy Policy.

5Data Security & Technical Safeguards

Sasini implements a comprehensive, multi-layered security architecture to protect your personal data against unauthorized access, disclosure, alteration, or destruction.

5.1 Encryption

  • Transport Layer Security: All data transmitted between the App and our servers is encrypted using TLS 1.3. The backend scans for valid SSL/TLS certificates on every connection initiation before any data loads.
  • Database Encryption: All data stored in our backend databases is encrypted at rest using AES-256 encryption.
  • Password Security: Passwords are never stored in plain text. All passwords are hashed using a salted cryptographic algorithm (bcrypt or equivalent), creating a one-way hash.
  • Image Transmission: Images uploaded for AI diagnostics or pest reports are transmitted via secure Base64 encoding over the encrypted TLS channel.

5.2 Authentication & Access Controls

  • Email Verification (MFA): All users must verify their email address via a time-limited link containing a unique CSPRNG-generated token before account activation.
  • Password Complexity: Passwords must contain at least one uppercase letter, one lowercase letter, one numeric digit, and one special character. Minimum length requirements are enforced.
  • Brute-Force Protection: After consecutive failed login attempts, the account is immediately locked and a secure password reset link is dispatched to the registered email.
  • Session Management: Authentication tokens are time-limited and automatically invalidated upon logout or password change.
  • Role-Based Access Control (RBAC): Users can only access modules and data appropriate to their verified user role (Farmer or Guest/Buyer).

5.3 Input Validation & Injection Prevention

  • SQL Injection Prevention: All user inputs are sanitized using parameterized queries before being processed by the backend database.
  • Spam Prevention: A 60-second mandatory cooldown is enforced between email verification resend requests.
  • Idempotency Keys: Duplicate form submissions are handled via Idempotency Keys, ensuring only one request is processed per action.

5.4 Data Integrity & System Reliability

  • Zero-Cache Strategy for Financial Data: The Deliveries and Payments modules perform a fresh API call on every load to ensure financial data accuracy.
  • Finite State Machine (FSM) for Orders and Pickups: Orders follow strictly controlled state transitions (Pending → Processing → Completed), preventing unauthorized modification of locked records.
  • Backed Cart Persistence: Shopping cart data is serialized to prevent data loss during connectivity interruptions.
  • 31-Day Query Constraint: Delivery data queries are limited to 31-day windows to prevent server timeouts and ensure performance integrity.

5.5 Incident Response

In the event of a personal data breach, Sasini will notify affected users and the relevant supervisory authority (the Office of the Data Protection Commissioner of Kenya) within the timeframes required by law, and no later than 72 hours of becoming aware of the breach where required by applicable regulation.

6Data Retention Policy

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law.

Data CategoryRetention PeriodReason
Farmer identity & verification dataDuration of active farmer registration with SasiniContractual requirement
Agricultural & transactional records (deliveries, payments)7 years from the date of recordLegal, financial audit compliance
Farm input / Agri Shop orders5 years from order completionFinancial and legal compliance
AI chat historyDuration of account, or deleted on user requestUser control & AI service
Pest and disease reports5 years from submissionAgricultural biosecurity records
Produce pickup records3 years from completionLogistics and dispute resolution
Device & technical / diagnostic data90 days from collectionPerformance monitoring
Location data (weather sessions)Not stored beyond active sessionTemporary processing only
Security logs & IP address records12 months from collectionFraud prevention & security
Account deletion abuse prevention (User ID + email only)24 months from deletionSystem integrity / anti-spam
Legal hold / regulatory dataAs required by applicable lawLegal obligation

After the applicable retention period, personal data is securely and permanently deleted or anonymized. Data retained for legal compliance is not accessible to users and is stored in a restricted, encrypted environment.

7Your Data Subject Rights

Subject to applicable law, you have the following rights with respect to your personal data. You can exercise any of these rights by contacting us at sasiniapp@sasini.co.ke. We will respond to all valid requests within 30 days.

7.1 Right of Access

You have the right to request a copy of all personal data we hold about you, the purposes for which it is processed, the categories of data held, and the recipients to whom it has been disclosed.

7.2 Right to Rectification

You have the right to request correction of any inaccurate or incomplete personal data. You may update your profile information directly within the App via Settings > My Profile.

7.3 Right to Erasure (Right to be Forgotten)

You have the right to request the deletion of your personal data. We will honor all valid erasure requests subject to legal retention requirements. See Section 9 for full details on account and data deletion procedures.

7.4 Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as while a dispute about data accuracy is being resolved.

7.5 Right to Data Portability

Where technically feasible, you have the right to request a copy of your personal data in a structured, commonly used, machine-readable format (such as JSON or CSV).

7.6 Right to Object

You have the right to object to processing of your personal data where we rely on legitimate interests as the legal basis. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests.

7.7 Right to Withdraw Consent

Where processing is based on your consent (e.g., location data for weather features), you may withdraw your consent at any time through your device settings without affecting the lawfulness of prior processing.

7.8 Right to Lodge a Complaint

You have the right to lodge a complaint with the relevant supervisory authority:

  • Kenya: Office of the Data Protection Commissioner (ODPC) — www.odpc.go.ke

7.9 Deactivation vs. Deletion

  • Account Deactivation: Temporarily pauses your account. Your data is retained and your account can be restored by contacting Sasini support. Navigate to: Settings > Deactivate Account.
  • Account Deletion: A permanent, irreversible action that purges all personal data from our active systems. See Section 9 for the full deletion procedure.

8Children's Privacy

The Sasini Mobile Application is NOT intended for individuals under the age of 18 ("minors"). We do not knowingly collect, process, or store personal data from children. The App relates to agricultural production, financial ledgers, and commercial services associated with Sasini's farming operations, which are adult business activities.

If we become aware that we have inadvertently collected personal data from a minor, we will take immediate steps to delete that data from our systems without delay. If you believe a minor has provided us with personal data, please contact us immediately at sasiniapp@sasini.co.ke.

9Account Deletion & Data Deletion Policy

Sasini provides users with full control over their personal data, including the right to request permanent deletion of their account and all associated personal data.

9.1 In-App Account Deletion

Users can request full and permanent deletion of their account and all associated personal data directly within the App:

  • Navigation Path: Settings > Delete Account
  • Effect: Initiates an immediate, permanent, and irreversible deletion of the user account and all associated personal data stored in our active systems
  • Confirmation: Users will be prompted to confirm the deletion with a warning that the action cannot be undone
  • Processing Time: Account deletion is processed immediately upon confirmation
Google Play & Apple App Store Compliance: In accordance with store policies, users can delete their account and all associated data directly within the App without requiring contact with customer support. This functionality is accessible at: Settings > Delete Account.

9.2 Web / Support-Based Deletion Request

Users may also request account or data deletion outside the App using the following channels:

  • Email: sasiniapp@sasini.co.ke (subject line: "ACCOUNT DELETION REQUEST")
  • Help Centre: Contact details provided in the Help & Support section of the App

We will acknowledge your request within 5 business days and confirm completion within 30 days.

9.3 Data Deleted Upon Full Account Deletion

When a full account deletion request is processed, the following data is permanently and irreversibly deleted from all active systems:

  • User profile information (name, email, phone, gender, DOB, location details)
  • Account credentials and identifiers
  • Farmer-specific registration data (Farmer ID, National ID reference, UID, Buying Centre, village, county, sub-county)
  • App usage history and session data
  • Stored preferences and language settings
  • AI chat history and all conversation session data
  • Agricultural and transactional records from active systems
  • Pest and disease reports, produce pickup request history
  • Notification history, feedback submissions
  • Device tokens and FCM registration data
There is no recovery period. Once deletion is complete, your account and data cannot be restored. If you wish to use the App again in the future, you will need to register as a new user.

9.4 Partial Data Deletion — AI Chat History

Users may delete individual AI chat conversations at any time within the AI Assistant module without closing their account. Deleted AI chats are permanently and irreversibly removed from our systems and cannot be restored.

9.5 Data Retained After Account Deletion (Legal Retention)

Data RetainedRetention PeriodReason
User ID (non-PII) + email address only. All personal data (names, etc.) is deleted.24 monthsAccount deletion abuse prevention — prevents frequent account creation/deletion cycles
Financial transaction records (for delivered/completed orders)Up to 7 yearsFinancial audit compliance, legal obligation under Kenya tax and company law. These records do not contain personal profile data.
Security logs relevant to active fraud investigationsDuration of investigation + 12 monthsFraud prevention, legal compliance

9.6 Deletion Summary

  • Users CAN delete their account directly in-app (Settings > Delete Account)
  • Users CAN request deletion via email (sasiniapp@sasini.co.ke)
  • Full data deletion is permanent, irreversible, and completed within 30 days
  • Partial deletion is supported: AI chat history can be deleted independently
  • Users have control over both account-level and granular data-level deletion
  • A web-based deletion option is available at the help email above
  • Retained data after deletion is limited to legally required minimums and is not accessible to users

10Cookies, Tracking Technologies & Analytics

The Sasini Mobile Application does not use browser cookies. However, the following technologies are used within the App:

  • Firebase Analytics SDK: Collects anonymized app usage data (screen views, feature interactions) for internal product improvement. No cross-app or cross-site tracking is performed.
  • Firebase Crashlytics SDK: Captures crash reports and error logs to diagnose and fix technical issues. Data is linked to a Firebase installation ID, not to personal identifiers.
  • Firebase Performance Monitoring: Tracks app load times and network request performance metrics to optimize the user experience.
  • Firebase Cloud Messaging (FCM) Token: A device-specific token used exclusively to deliver push notifications. Not used for advertising or third-party tracking.

We do not use third-party advertising SDKs, cross-app tracking technologies, or any form of behavioral profiling for commercial purposes.

11International Data Transfers

Some of the third-party service providers we use (such as Google Firebase and Google Weather API) may process data in countries outside Kenya. Where such transfers occur, we ensure that appropriate safeguards are in place.

Data processed by Google services is subject to Google's data processing terms and privacy policies, available at policies.google.com.

12Push Notifications

The Sasini App uses Firebase Cloud Messaging (FCM) to deliver push notifications to your device. Push notifications are sent for the following events:

  • New delivery records approved by the factory
  • Payment processing and payment period updates
  • Farm input and Agri Shop order status changes
  • Produce pickup request status updates (Accepted or Declined)
  • Broadcasts and announcements from the Company
  • Pest and disease alerts affecting your region

You may manage push notification preferences through your device operating system settings at any time (Settings > Notifications > Sasini). Disabling push notifications will not affect your ability to use the App or access your data.

13Device Permissions Requested by the App

PermissionPurposeRequired / Optional
Internet / Network AccessRequired for all App features — data synchronization, payments, AI, weatherRequired
Location (Fine / GPS)Weather & Alerts module — provides micro-climate farm dataOptional (user-granted)
CameraPest report photos, produce pickup photos, AI crop diagnosticsOptional (feature-specific)
Storage / Photo LibraryUploading images from gallery for pest reports, pickups, AI diagnosticsOptional (feature-specific)
Push NotificationsReceive real-time alerts for deliveries, payments, orders, pickups, broadcastsOptional (user-granted)
VibrationNotification alertsOptional

14Google Play Data Safety Declarations

PracticeDeclared ValueNotes
Data is encrypted in transitYESTLS 1.3 on all connections
Data is encrypted at restYESAES-256 on all stored data
Data can be deleted by usersYESIn-app deletion + email request
Data is shared with third partiesYES (limited)Only service providers as listed
Data is sold to third partiesNONever
Data is used for advertisingNONo ad networks integrated
Data is used for tracking across appsNONo cross-app tracking
App collects Personal InformationYESAs detailed in Section 2
App collects Financial InformationYESPayment ledger data (read-only)
App collects Location dataYES (optional)GPS for weather only, with consent
App collects Photos/VideosYES (optional)Pest reports, pickups, AI diagnostics
App collects App ActivityYESFirebase analytics (anonymized)
App collects Device identifiersYESFCM token, device info
App collects Crash logsYESFirebase Crashlytics
In-app account deletion availableYESSettings > Delete Account

15Apple App Store Privacy Nutrition Label

15.1 Data Used to Track You

NONE. The Sasini App does not use any data to track users across apps or websites owned by other companies for advertising or data broker purposes.

15.2 Data Linked to You

  • Contact Info: Name, email address, phone number
  • Identifiers: User ID, Farmer ID, device ID
  • Financial Info: Payment records and ledger data (read-only display)
  • Location: Precise location (GPS) — only when you use the Weather feature and only with your permission
  • User Content: Photos uploaded for pest reports, produce pickups, and AI diagnostics; AI chat messages
  • Diagnostics: Crash logs and performance data

15.3 Data Not Linked to You

  • Anonymized, aggregated feedback and app analytics data

15.4 Data Not Collected

  • Health & Fitness data
  • Browsing or search history
  • Sensitive personal data (biometrics, political, religious, racial data)
  • Contacts list, calendars, or reminders

16Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, applicable law, or the App's features. When we make material changes, we will:

  • Update the 'Last Reviewed' date at the top of this document
  • Notify users via a push notification and/or in-app banner at the time of their next login
  • In the case of significant changes affecting your rights, we will provide 30 days' advance notice before the changes take effect

Your continued use of the App after the effective date of any revised Privacy Policy constitutes your acceptance of the changes. If you do not agree to the revised Policy, you may delete your account as described in Section 9.

17Contact Us — Data Protection Enquiries

For all privacy-related queries, data subject access requests, complaints, or to exercise any of your rights as described in this Policy, please contact us:

Data Protection Contact
sasiniapp@sasini.co.ke
General Support
info@sasini.co.ke
Phone
+254-020-30000
Website
www.sasini.co.ke
Physical Address
3rd Floor, Rivaan Centre, Brookside Grove, Muguga Green, P.O Box 30151 – 00100, Nairobi, Kenya
Response Time
Acknowledgement within 5 business days; full response within 30 days

For complaints about data protection compliance, you may also contact the Office of the Data Protection Commissioner of Kenya (ODPC) at www.odpc.go.ke.

18Governing Law & Jurisdiction

This Privacy Policy is governed by and construed in accordance with the laws of Kenya, in particular the Kenya Data Protection Act, 2019, and the Data Protection (General) Regulations, 2021. Any disputes arising in connection with this Policy shall be subject to the exclusive jurisdiction of the courts of Kenya, without prejudice to the rights of users in other jurisdictions to bring claims before their local supervisory authorities.

19Definitions & Glossary

Personal Data
Any information relating to an identified or identifiable natural person ('data subject')
Processing
Any operation performed on personal data, including collection, storage, use, disclosure, or deletion
Data Controller
The entity that determines the purposes and means of processing personal data — in this case, Sasini PLC
Data Processor
A third party that processes data on behalf of the data controller under a contractual agreement
KDPA
Kenya Data Protection Act, 2019
ODPC
Office of the Data Protection Commissioner — Kenya's supervisory authority for data protection
FCM
Firebase Cloud Messaging — Google's service for delivering push notifications
TLS
Transport Layer Security — encryption protocol for data in transit
AES-256
Advanced Encryption Standard with 256-bit key — encryption standard for data at rest
CSPRNG
Cryptographically Secure Pseudo-Random Number Generator — used for generating secure tokens
RBAC
Role-Based Access Control — security model restricting system access by user role
FSM
Finite State Machine — a controlled state-transition model used for order and pickup processing
PII
Personally Identifiable Information — data that can be used to identify a specific individual
NPS
Net Promoter Score — a metric measuring likelihood of recommending a product to others
LLM
Large Language Model — the AI technology powering the Sasini AI Agronomist

For any inquiries talk to us
today

Contact Us
Address
  • 3rd Floor, Rivaan Centre -
    Brookside Grove, Muguga Green.
    P.o Box 30151 – 00100 Nairobi, Kenya
Contacts
  • Email: info@sasini.co.ke
  • Phone: (+254-020) – 50 300 00
    (+254) 722/05-200 706
    (+254) 733/34-200 706
Menu
  • © 2026 | Sasini PLC. All rights reserved.