Trust & compliance
Election-grade by design.
Tazama operates in a high-adversarial environment — every layer is treated as potentially hostile. We warrant capture integrity and chain of custody; your advocates argue the case.
DPA 2019 / ODPC No public results feed SHA-256 custody Schema-per-tenant
Chain of custody
Provably unmodified, from capture to court.
For data to hold up in a petition, it must be traceable and tamper-evident at every hop.
01
On-device hash
SHA-256 computed before upload
02
Hardware GPS + clock
Location & time from device hardware
03
Server re-hash
Re-verified on arrival, byte-for-byte
04
Append-only
Corrections add versions — nothing is overwritten
05
WORM audit
Replicated to a write-once bucket
Defence in depth
Six layers, one posture.
Tenant isolation
Schema-per-tenant on PostgreSQL. A leak between rival campaigns is treated as an electoral-interference event, not a bug.
Capture integrity
On-device SHA-256, hardware GPS + clock, server re-hash, append-only records and a WORM audit bucket.
Authentication
TOTP MFA for admins and managers, SMS-OTP for agents, and device attestation via Play Integrity.
Data protection
DPA 2019 / ODPC registration, a DPIA, an appointed DPO and recorded consent. Selfies are human-verify only — no face-match.
Election-law posture
No public results feed. Tally output is internal and access-controlled, never projected before IEBC declaration.
Infrastructure
AWS af-south-1, TLS 1.3, encryption at rest, Multi-AZ, and disaster recovery with RPO ≤ 5 min, RTO ≤ 30 min.
Non-negotiable invariants
Guardrails the product enforces.
Tenant isolation is absolute
Two tenants' data never render in one list; isolation is enforced server-side.
Evidence is immutable
No destructive edits to results, incidents or messages — corrections add versions.
Internal-only tally
There is no public results feed; nothing is projected before IEBC declares.
Degrade, never block
Missing GPS or signal warns and queues locally — a legitimate agent action is never hard-stopped.
Certifications & posture
Where we stand.
DPA 2019 ODPC Controller + Processor DPIA on file Appointed DPO TOTP MFA Play Integrity TLS 1.3 Encryption at rest Multi-AZ RPO ≤ 5min RTO ≤ 30min WORM audit log No public results feed
Data residency
AWS af-south-1 (Cape Town) · Multi-AZ · DR with RPO ≤ 5 min / RTO ≤ 30 min.
Bring your security team to the demo.
We'll walk the DPIA, custody model and tenant-isolation boundaries in detail.