Increase in Cyberbullying Cases Tied to Digital Lending Apps in Ghana

The Ghana Cybersecurity Authority (GCA) has identified 38 mobile applications for digital lending that are implicated in cases of cyberbullying. In 2024 alone, the authority has received 130 reports, marking a notable increase in cyberbullying incidents linked to users of these apps. According to the GCA, these applications have violated the Banks and Specialised Deposit-Taking Institutions Act, 2016 (ACT 930) by not adhering to regulatory requirements. Furthermore, they have failed to meet the compliance obligations set forth by the Data Protection Commission (DPC), thereby unlawfully accessing and misusing users’ personal identifiable information (PII) under the Data Protection Act, 2012 (ACT 843).

The GCA highlighted that during installation, victims often grant these apps access to their data, including contacts, photos, and even their Ghana identity card details. Upon installation, users are sometimes credited with funds in their mobile money wallets without requesting a loan, as part of the apps’ modus operandi. Subsequently, these apps engage in coercive tactics, such as demanding exorbitant interest repayments or threatening to expose or fabricate compromising photos on social media. Some victims report continued harassment for payments even after settling their dues, illustrating persistent exploitation.

Notably, in August 2022, the Bank of Ghana flagged numerous unlicensed entities offering loans, citing these actions as violations of consumer protection regulations and privacy laws. The bank emphasized its commitment to pursuing legal measures against such entities to safeguard consumer interests and uphold regulatory standards. The GCA cautioned the public about the risks associated with these apps, advising individuals to exercise caution when engaging with digital lending services due to the potential for abuse and exploitation of personal data.