Security

AZA Finance is committed to protecting the security and privacy of information in the face of security breaches and unwanted events and has implemented an Information Security Management System (ISMS) that is compliant with ISO/IEC 27001:2013, the international standard for information security, PCI-DSS 3.2.1, payment card industry data security standard, SOC 2, a voluntary compliance standard for service organizations, developed by the American Institute of CPAs (AICPA), and data protection regulations including the GDPR, NDPR, and POPIA.

The management of AZA Finance is committed to ensuring:

1. Information will be protected against unauthorised access and processing in accordance with its classification level. On this basis, access to information will be on the basis of least privilege and need to know.

2. Confidentiality, Integrity and Availability of information for business processes will be assured and maintained.

3. Legislative and regulatory requirements will be met.

4. Information security training will be available for all employees.

5. Staff with particular responsibilities for information must ensure theclassification of that information; must handle that information in accordance with its classification level; and must abide by any contractual requirements, policies, procedures or systems for meeting those responsibilities.

6. All actual or suspected information security breaches will be reported to the IT Service Desk and will be thoroughly investigated.

7. Procedures and guidelines developed and maintained to support the information security policy, including access control measures, passwords and physical security.

8. Business continuity and disaster recovery plans are developed, maintained and tested.

9. All users covered by the scope of this policy must handle information appropriately and in accordance with its classificationlevel.

10. Information security provision and the policies that guide it will be regularly reviewed, including through the use of annual internal audits.

Compliance with the Information Security Policy is mandatory, and all managers are directly responsible for implementing the policy and ensuring staff compliance in their respective departments.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

About AZA Finance

Who we are

Treasury

Payments

Foreign Exchange

Financial Technology

News

AZA Finance Newsroom

Naira Notes Reprieve Signals Gradual Depreciation

Shilling Lifts Off 3-Year Low As Bank Of Tanzania Sells Dollars

Uganda-South Africa Seeks Deeper Economic Ties

Support

Contacts

Web Platform

API Solution

Security

Grow your business across the world with our fast,
cost-effective and easy-to-use services.

Company

Our services

Subscribe

Follow Us

Fintech-Powered

Need live support?