CA’s Director General David Mugonyi before the Senate ICT committee at Bunge Towers. [Elvis Ogina,Standard]

The Communications Authority of Kenya (CA) has been taken to task in Parliament over a plan allowing the Kenya Revenue Authority (KRA) to access people’s phones.

Members of the National Assembly’s Committee on Communication asked the CA’s Director General David Mugonyi to clarify the privacy implications of the system on personal data.

Committee Chairman John Kiarie voiced concerns that sensitive personal information could fall into the wrong hands, urging CA to detail measures for protecting citizens’ data. He noted that Kenyans might avoid online transactions due to increased fears of surveillance.

“The elephant in the room is what exactly we are allowing KRA to access on individuals’ phones. This matter isn’t about merely registering IMEI numbers; we need answers,” he said.

Tetu MP Geoffrey Wandeto emphasised the importance of protecting user privacy.

In response, Mugonyi said he had received a presidential directive to implement the system, which focuses on tax compliance.

“I want to assure Kenyans that this initiative has nothing to do with monitoring phone transactions. Our goal is to ensure the right products are in the country and that they are tax-compliant. KRA will not have access to personal data,” Mugonyi stated.

Mugonyi said mobile devices registered on Kenyan networks before October 31 would be exempt from compliance checks. He said current users would not face disruptions as the system targets devices registered after that date, with those already registered deemed tax-compliant.

The Communications Authority recently issued a notice about the system’s rollout, set to take effect after October 31, 2024. The directive requires importers and local manufacturers to register the IMEI of mobile devices entering Kenya, ensuring all applicable taxes are paid before activation on local networks.