Legal

Data Protection.

Last updated: 15 July 2026

Many of our members share sensitive information with us — including income data — so we can measure real economic impact. Protecting that information is a founding commitment, not an afterthought. This page describes how we do it.

01Legal framework

DIRA handles personal data in line with Ethiopia's Personal Data Protection Proclamation No. 1321/2024 and the principles it establishes: lawful and fair processing, purpose limitation, data minimisation, accuracy, storage limitation, and security.

02Our principles

03How income data is handled

Baseline and follow-up income figures are stored separately from identity details, accessible to a small number of authorised team members, and used solely to verify economic outcomes. When a member story is published, the member reviews and approves the exact wording — including any figures — in writing first.

04Security measures

05If something goes wrong

If a data breach affecting members occurs, we will assess it immediately, notify affected members without undue delay, explain plainly what happened and what we are doing, and notify authorities where the law requires.

06Your rights

Under Ethiopian data protection law you can ask us to: access the data we hold about you, correct it, delete it, restrict how it is used, or withdraw consent. Requests go to hello@dira.app and are answered within 14 days.

07Related policies

This page sits alongside our Privacy Policy (what we collect and why), our Cookie Policy (this website), and our Terms of Use.