Audit-ready disbursement engine

Stipend execution
without friction.

The high-velocity disbursement rail for South African skills programs. Face-recognition terminals at the venue door are the primary source of truth for attendance, with rotating QR codes as a built-in backup — feeding dual-authorised debit-card funding, fully FICA & POPIA aligned, with an immutable audit trail for every Rand.

Start a disbursement run Sign in

Monthly run · TVET cohort AZAR 1,482,500.00

2 / 2 pending

Nomzamo Khumalo100% attendance · QR verified

ZAR 4,500

Siyabonga Jantjies82% attendance

ZAR 3,690

Thando Mabaso100% attendance · QR verified

ZAR 4,500

R4.2B+Disbursement throughput

100%Immutable audit trail

0%Ghost-learner leakage

T+0Settlement to card

From classroom to commerce, in one continuous motion.

We stripped away the spreadsheets and reconciliation queues. Data flows on a cryptographic rail — triggering compliance checks and funding learner cards the moment dual approval lands.

Face-first attendance

Hikvision MinMoe face-recognition terminals at the venue door are the primary source of truth — a sub-second match writes a signed, tamper-evident check-in. Rotating QR codes act as a backup when a learner is new, the terminal is offline, or a session runs off-site.

Dual-approval runs

Attendance compiles into monthly stipend runs. Programme managers prepare; financial controllers authorize. Maker–checker enforced in code, not policy.

Instant card funding

Approved funds settle straight onto virtual or physical sponsor-bank cards. Per-program controls, MCC blocks, and freeze/cancel from one console.

Hikvision MinMoe face-recognition terminal mounted at a training venue door

Attendance hardware

A face at the door is the receipt. QR is the safety net.

We deploy Hikvision MinMoe face-recognition terminals at training venues as the primary attendance check. A learner walks up, the terminal matches their face in under a second, and a signed event lands in the attendance ledger — no facilitator phone, no register sheet, no ghost learners.

When a learner hasn't been enrolled yet, the terminal is offline, or a session runs off-site, rotating QR codes step in as a fully audited backup — same ledger, same compliance trail.

Wall-mounted terminal, IP65, mask & liveness detection
Per-device HMAC-signed webhooks, replay-protected
Centrally managed across venues via HikCentral Connect
Automatic QR fallback — never blocks a learner from being marked present

How the integration flows

From a face at the door to a line on the ledger — in under a second.

The terminal recognises the learner and sends the event to HikCentral Connect in the cloud. HikCentral posts it to our signed webhook, where we verify the device's signature, ignore duplicates, and append the check-in to the attendance ledger. If the terminal is unreachable, a scanned QR code lands on the very same ledger — so monthly stipend runs always have one clean source of truth.

Diagram showing Hikvision MinMoe terminal sending signed events through HikCentral Connect to the Stipend attendance ledger, with QR codes as a backup path

Built for the institutions moving South Africa forward.

SETAs

Pay across hundreds of accredited providers with a single ledger and a single audit pack.

TVET colleges

Bind register data to disbursements — no more after-the-fact reconciliation.

Corporate skills programs

Run YES, learnerships and bursaries with B-BBEE-ready reporting.

NGOs & implementers

Stipend cohorts of any size with controlled spend on basics, not luxuries.

Engineered for strict regulatory compliance.

Automated FICA / KYC verification ensures every beneficiary is legitimate before a cent moves.

Maker–checker enforced on every disbursement run, with cryptographic signatures preserved for audit.

Every state change — attendance ping, approval, settlement — is recorded immutably and exportable on demand.

SYSTEM_LOG // COMPLIANCE_CHECKACTIVE

[14:02:05] KYC check ID_8402…PASS

[14:02:06] AML screening against global DB…CLEARED

[14:02:08] Verifying dual-signatures on batch #992…VALID

[14:02:09] Disbursement authorized. Routing to cards.[OK]

How we protect data

Card data, learner identity, and money movement — held to the standards that govern them.

Stipend never stores raw PAN or CVV. Card details are tokenised by our PCI-DSS Level 1 issuer; reveal renders inside an isolated iframe our application cannot read. Every administrative action is recorded to an append-only audit log.

Download compliance pack (PDF)Preview in browser

PCI-DSS

Level 1 issuer

POPIA

Aligned (Act 4 of 2013)

FICA

KYC at onboarding

ISO 27001

Issuer & cloud platform

Card data isolation (PCI-DSS)

Raw PAN/CVV never touch our servers or React app. Reveal renders inside the issuer's PCI-scoped iframe and short-lived signed tickets expire in 60 seconds.

PCI-DSS standards library PCI e-commerce guidance

Identity & data privacy (POPIA)

ID numbers are collected for FICA only, encrypted at rest, and access-controlled by row-level policies. Staff card management deliberately omits PII it doesn't need.

POPIA — Act 4 of 2013 Information Regulator (SA)

Anti-fraud & sanctions (FICA)

Every learner is KYC-verified before card issue. Sanctions and PEP screening run before disbursement; failures freeze the run, not just a row.

FIC Act 38 of 2001 Financial Intelligence Centre

Auditability & integrity

Maker–checker is enforced in code, not policy. Every approval, freeze, top-up and reveal is written to an append-only audit log, exportable on demand for SETA/sponsor review.

ISO/IEC 27001:2022 NIST SP 800-92 log management

Ready to move stipends with confidence?

Spin up a programme in minutes. Invite facilitators. Onboard learners. Pay the right people, at the right time, with proof.

Create your account Sign in