Insights
Practical cybersecurity guidance for East African businesses.
Patient Data and the Tanzania PDPA: What Every Clinic and Hospital Needs to Know
Healthcare providers in Tanzania hold some of the most sensitive personal data imaginable — and most have no data protection framework in place. Here's what the PDPA requires, where clinics typically fail, and what practical controls look like for a small medical practice.
SACCOs and the Bank of Tanzania's Cybersecurity Expectations: What Small Institutions Need to Do Now
The Bank of Tanzania's cybersecurity guidelines apply to SACCOs and smaller financial cooperatives — but most haven't acted on them. Here's what the expectations actually require and how to prioritise your response.
Mobile Money Fraud: How Tanzanian Businesses Are Being Targeted in 2026
A practical breakdown of the fraud vectors targeting Tanzanian SMEs through mobile money platforms — BEC, SIM swap, fake payment confirmations, and insider threats — and the controls that actually work.
Tanzania PDPA: A Practical 90-Day Compliance Roadmap for SMEs
A phased, practical guide to achieving Tanzania Personal Data Protection Act compliance in 90 days — what the law requires, where most SMEs fall short, and how to close the gaps.
What Working in Australian Banking Taught Me About Vendor Risk — and What Tanzania Can Borrow
Practical lessons from APRA-regulated banking environments on managing third-party risk — scaled to the reality of Tanzanian SMEs.
The 10 Microsoft 365 Settings Every Tanzanian SME Should Change Today
Ten specific, actionable Microsoft 365 security settings — what they do, why they matter, and exactly where to find them in the admin centre.
Compliance-as-Code: Why Your Auditor Will Thank You
What Compliance-as-Code means, why manual evidence collection is a liability, and how Tanzanian SMEs can start automating compliance evidence with practical Python examples.