Security
Enterprise-grade security and regulatory compliance protecting every KAD user, merchant, and transaction.
Certifications
PCI DSS Level 1
The highest level of payment card industry data security standard certification, validating our ability to securely process, store, and transmit cardholder data.
ISO 27001
International standard for information security management systems. Our ISMS covers all KAD systems, processes, and data handling across all operating jurisdictions.
SOC 2 Type II
Service Organization Control report validating the design and operating effectiveness of our controls for security, availability, processing integrity, and confidentiality.
Regulatory Compliance
Financial Sector Conduct Authority
Licensed as a Financial Services Provider under the FSP Act for payment services and credit facilitation in South Africa.
South African Reserve Bank
Registered with SARB under the National Payment System Act for the provision of payment services and digital currency operations.
Financial Intelligence Centre
Fully compliant with FICA requirements for customer due diligence, transaction monitoring, and suspicious activity reporting.
National Credit Act
Registered credit provider under the NCA for BNPL and credit facilitation services, ensuring responsible lending practices.
Security Features
End-to-End Encryption
All data in transit and at rest is encrypted using AES-256 and TLS 1.3. Payment data never touches our servers in plaintext.
Two-Factor Authentication
Mandatory 2FA for all accounts using TOTP authenticator apps, SMS OTP, or hardware security keys for maximum account protection.
Biometric Authentication
Fingerprint and facial recognition support on mobile devices for seamless and secure transaction authorization.
97.8% Fraud Detection
AI-powered real-time fraud detection system analyses transaction patterns, device fingerprints, and behavioural signals to block fraudulent activity.
Infrastructure Security
Multi-region deployment with DDoS protection, WAF, intrusion detection, and automated security patching across all infrastructure.
KYC & AML
Tiered identity verification with document validation, liveness checks, and continuous transaction monitoring for anti-money laundering compliance.
Bug Bounty Program
We believe in the power of the security research community. If you discover a vulnerability in our systems, we want to hear from you. Responsible disclosures are rewarded based on severity.
Critical
R50,000+
High
R20,000
Medium
R10,000
Low
R2,500