On Mon, Jul 10, 2023 at 7:59 AM Victor Kapiyo via KICTANet <kictanet@lists.kictanet.or.ke> wrote:

Two recent decisions from the Small Claims Court and the High Court have found Safaricom liable for funds lost in M-Pesa/M-Shwari accounts once the same was reported to the company.

The most recent case related to an individual whose phone got lost and later KES 751,680 was withdrawn from his mobile money accounts over several days. He reported the same to the company, but for one reason or another, the SIM card was not disabled on time. The High Court on appeal, upheld the decision of the SC court which held that the company owed him a duty of care to act with diligence, and found the company liable for the loss of 452,869, and the customer responsible for the balance of 292,812.

Read more: https://nation.africa/kenya/business/ruling-serves-safaricom-dilemma-over-customer-losses-on-m-shwari-platform-4297386

The case is likely to have implications on how telcos manage losses from SIM Swap / mobile money fraud. They will need to act swiftly when such reports are made and take adequate measures to enhance the security of SIMs, or otherwise face an avalanche of lawsuits seeking damages for lost funds. From the decision, it is not enough to blame the customer for being negligent or for telcos to put in clauses in agreements/terms and conditions to avoid responsibility. Anyway, it will be interesting to see whether the company appeals the decision, yet again.

Interesting read.

1. I still don't understand why the "Advantage Hybrid Tariff" subscription would make Safaricom NOT block the line immediately after I call them.
Safaricom has a verification process for such incidents: Give us 3 numbers that you've recently called. Give us your ID number, and date of birth. Give us your last M-Pesa transaction.
Furnishing them with all that and still don't block the SIM should have been found as negligence on their part and made them liable for the initial loss (292,812).

2. Safaricom should remove that clause where they disclaim responsibility for the security of M-Shwari. Why? M-Shwari is ONLY accessible through the SIM card, for which only Safaricom is responsible!

It is like you provide the key to a facility, only you have the ability to disable that key and still say that you do not bear any responsibility for the security of the facility. Given that I cannot block my SIM card from abuse, the entity with that ability - and with whom I have the contract - is solely responsible for the said security.

I still haven't understood why any blame was put on the client. Is any of you on this tariff? I think you should all CANCEL it immediately.

Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", egrep -v '^$|^.*#' ¯\_(ツ)_/¯ :-)

[How to ask smart questions: http://www.catb.org/~esr/faqs/smart-questions.html]