Business Registration Service introduces tighter controls on company changes and security registration

The Business Registration Service (BRS) has recently introduced a series of administrative requirements affecting how companies in Kenya change directors, transfer shares and register security interests. These measures reflect an effort to strengthen fraud prevention and data protection. As with any significant regulatory change, it is worth examining whether the new requirements are proportionate to the risks they address and whether they align with existing legal frameworks.

15 Jul 2026 5 min read Corporate & Commercial Alert Article

At a glance

  • The Business Registration Service has recently introduced a series of administrative requirements affecting how companies in Kenya change directors, transfer shares and register security interests.
  • These measures reflect an effort to strengthen fraud prevention and data protection.
  • However, some of the changes are also impractical since they impose real operational burdens on companies that may now have to build verification co-operation into their resignation processes to mitigate the risk of delay.

New director verification requirements

Appointing or removing a company director has always required proper documentation, including board minutes, consent letters, resignation letters, affidavits and the like. These documents create a paper trail evidencing that changes are legitimate and properly authorised. BRS has now introduced additional verification steps, ostensibly under Section 839 of the Companies Act, which grants the Registrar powers to specify the form, authentication, and manner of lodgement of documents.

Under the new requirements, both incoming and outgoing directors must provide electronic consent through the eCitizen platform. When an application is lodged, the affected director receives a link via the email maintained by BRS, logs in, reviews the proposed change, and clicks accept or decline. Where electronic consent is not possible, directors may complete verification via a Zoom call or an in-person visit to BRS offices. These steps add a layer of real-time confirmation to the documentary evidence that companies already provide.

A practical challenge arises with outgoing directors, who may have limited motivation to respond to verification requests after resigning. Without their electronic consent, the company’s records cannot be updated, potentially causing delays. However, Section 839 concerns document form and authentication, not the creation of new substantive preconditions for registration. Neither the Companies Act, Cap. 486 (Companies Act) nor the Companies (General) Regulations (Regulations) empowers BRS to demand electronic consent as a precondition to registering a change in directorship. These changes also impose real operational burdens on companies that may now have to build verification co-operation into their resignation processes to mitigate the risk of delay.

Share transfers and added bureaucracy

Share transfers have always involved multiple verification layers, including signed agreements, completed transfer forms, board resolutions, share certificates and registry notifications. BRS has now added two-factor, electronic authentication requirements for directors of companies whose shares are being transferred, again invoking Section 839. However, neither the Companies Act nor the Regulations requires electronic director consent as a precondition to registering a share transfer. Section 497 of the Companies Act requires only that a proper document of transfer be delivered, and section 498 obliges the company to register the transfer (or refuse with reasons) within two months. By adding extra-statutory requirements, BRS exceeds its administrative mandate and effectively amends the legislation by practice.

The rationale for requiring electronic director consent in addition to shareholder and board approval is not apparent, since existing safeguards already provide substantial verification. For companies involved in time-sensitive transactions such as mergers, acquisitions and investment rounds, these additional steps may cause delays, stretching processes that should take days into weeks.

Security registration requirements

When a company creates a charge over land, typically as security for a loan, it is registered at both the Lands Registry and the Companies Registry. BRS now requires that a charge must first be registered at the Lands Registry before the Companies Registry will accept the filing, again relying on Section 839. However, no provision of the Companies Act mandates this sequencing.

The sequencing requirement creates practical challenges. Companies have 30 days to register a charge at the Companies Registry from the date of its creation. The charge must first be stamped by the Collector of Stamp Duty, a process that could take 10 days or more. Most of the time, delays at the office of the Collector of Stamp Duty and at the Lands Registry mean registration at the Lands Registry takes more than 30 days. In such scenarios, the companies are then required to obtain court orders extending the 30-day time limit for no fault of theirs.

There appears to be no legal or practical risk in registering at the Companies Registry first. BRS appears to be concerned that if the charge is registered at the Companies Registry before registration at the Lands Registry, and the Lands Registry registration subsequently fails or is not completed, the company records would reflect a registered charge while the Lands Registry would show no corresponding encumbrance, potentially misleading third parties who rely on the company’s filings.

This concern does not withstand scrutiny. A charge is created by the duly executed and stamped agreement between the parties; registration merely perfects it against third parties. If Lands Registry registration fails, the charge is not perfected against subsequent purchasers or encumbrancers of the land, a risk borne by the lender, not BRS or third parties. Third parties searching the Lands Registry will find no encumbrance and are not misled, though prudent parties should also search the Companies Registry. Importantly, perfection at the Companies Registry is legally independent of Lands Registry registration. These are separate systems serving distinct purposes: registration at the Companies Registry protects the lender in insolvency, ensuring it ranks as a secured creditor regardless of whether the charge has been registered against the land title. Requiring sequential registration therefore exposes lenders to unnecessary risk without corresponding benefit to BRS or third parties.

Additionally, BRS has introduced a requirement that variations of registered charges be effected by court order. BRS’s position is that under section 888 of the Companies Act, once a charge is registered, it lacks jurisdiction to register a variation of that charge without a court order. This interpretation is unsound. Section 888 governs rectification of the register for omissions, misstatements, or satisfaction of charges. It does not address contractual variations agreed between borrower and lender. A variation of loan terms is a commercial matter between consenting parties and does not require court intervention. By conflating variation with rectification, BRS extends Section 888 beyond its intended scope and imposes judicial process on routine commercial negotiations, introducing unnecessary cost and delay.

Balancing fraud prevention with proportionality

BRS faces genuine challenges with corporate fraud and identity theft. However, effective regulation requires proportionality. The safeguards that existed before these changes, including consent letters, affidavits, board minutes and signed agreements, already provided substantial protection. BRS need not be unduly averse to the risk of litigation; provided it can demonstrate that it required and relied upon appropriate documentation, it will have acted properly. The prospect of being sued does not justify additional bureaucracy that duplicates existing safeguards.

The information and material published on this website is provided for general purposes only and does not constitute legal advice. We make every effort to ensure that the content is updated regularly and to offer the most current and accurate information. Please consult one of our lawyers on any specific legal problem or matter. We accept no responsibility for any loss or damage, whether direct or consequential, which may arise from reliance on the information contained in these pages. Please refer to our full terms and conditions. Copyright © 2026 Cliffe Dekker Hofmeyr. All rights reserved. For permission to reproduce an article or publication, please contact us cliffedekkerhofmeyr@cdhlegal.com.