SECURITY

Built for enterprise.
Secure by default.

RibiRewards is designed to meet the security and compliance requirements of global HR platforms and enterprise customers operating across Africa.

Security pillars

API Key Authentication

All API requests require a secret key passed via Authorization header. Keys are scoped by environment (sandbox vs production) and can be rotated at any time from your dashboard.

TLS Encryption

All data in transit is encrypted via TLS 1.3. We enforce HTTPS on every endpoint and reject insecure connections outright.

Full Audit Logs

Every action — reward sent, redeemed, cancelled, refunded — is logged with timestamp, actor, and IP. Exportable for compliance and finance.

Role-Based Access Control

Assign team members as Admin, Manager, or Viewer. Managers can send and track; Viewers are read-only. Admins control billing and API keys.

Wallet Controls

Pre-fund your reward wallet. No credit lines, no surprise invoices. Budget approval workflows available on Enterprise.

Data Residency

Enterprise customers can request data residency in specific regions. We support EU, African, and US data storage preferences.

Compliance summary

Data encryption

TLS 1.3 in transit · AES-256 at rest

Access logs

Immutable, timestamped, exportable

API key rotation

Self-serve, instant, zero downtime

Wallet controls

Pre-funded, no credit exposure

Role permissions

Admin / Manager / Viewer

Data residency

EU, Africa, US — enterprise only

Need to discuss enterprise security requirements?

Our team can walk you through our compliance posture and data handling.

Talk to Enterprise Sales →

SECURITY

Built for enterprise.
Secure by default.

RibiRewards is designed to meet the security and compliance requirements of global HR platforms and enterprise customers operating across Africa.

Security pillars

API Key Authentication

All API requests require a secret key passed via Authorization header. Keys are scoped by environment (sandbox vs production) and can be rotated at any time from your dashboard.

TLS Encryption

All data in transit is encrypted via TLS 1.3. We enforce HTTPS on every endpoint and reject insecure connections outright.

Full Audit Logs

Every action — reward sent, redeemed, cancelled, refunded — is logged with timestamp, actor, and IP. Exportable for compliance and finance.

Role-Based Access Control

Assign team members as Admin, Manager, or Viewer. Managers can send and track; Viewers are read-only. Admins control billing and API keys.

Wallet Controls

Pre-fund your reward wallet. No credit lines, no surprise invoices. Budget approval workflows available on Enterprise.

Data Residency

Enterprise customers can request data residency in specific regions. We support EU, African, and US data storage preferences.

Compliance summary

Data encryption

TLS 1.3 in transit · AES-256 at rest

Access logs

Immutable, timestamped, exportable

API key rotation

Self-serve, instant, zero downtime

Wallet controls

Pre-funded, no credit exposure

Role permissions

Admin / Manager / Viewer

Data residency

EU, Africa, US — enterprise only

Need to discuss enterprise security requirements?

Our team can walk you through our compliance posture and data handling.

Talk to Enterprise Sales →

Built for enterprise.Secure by default.

API Key Authentication

TLS Encryption

Full Audit Logs

Role-Based Access Control

Wallet Controls

Data Residency

Need to discuss enterprise security requirements?

Built for enterprise.Secure by default.

API Key Authentication

TLS Encryption

Full Audit Logs

Role-Based Access Control

Wallet Controls

Data Residency

Need to discuss enterprise security requirements?

Built for enterprise.
Secure by default.

Built for enterprise.
Secure by default.