Step-by-Step Guide12 min readUpdated June 2024

How to Make Your Clinic SHA Compliant in Kenya

A complete step-by-step guide to achieving Social Health Authority compliance for your clinic or health center — from registration to integration and go-live.

What Does SHA Compliance Mean for Your Clinic?

The Social Health Authority (SHA) is Kenya's national health insurance program. For clinics and health centers, SHA compliance means your facility can verify patient eligibility, submit electronic claims, and receive timely reimbursements for services rendered to SHA-insured patients. Clinics typically have simpler integration requirements than large hospitals, but the core compliance steps remain the same: registration, system integration, claims automation, data security, and staff training.

This guide walks you through every step required to make your clinicSHA compliant in Kenya. Whether you're starting from scratch or upgrading an existing system, follow these steps to achieve full compliance with the Social Health Authority.

1

Register Your Clinic with the Social Health Authority

Get your clinic officially accredited as an SHA provider.

  • Create a facility account on the SHA portal at sha.go.ke
  • Submit your clinic operating license, KRA certificate, and facility registration
  • Provide clinic details: name, location, services offered, operating hours
  • Receive your facility identifier and SHA API credentials after approval (2-3 weeks)
  • Sign the SHA provider agreement for clinics
2

Choose or Upgrade Your Clinic Management System

Ensure your clinic management software can support SHA integration.

  • Check if your current system supports API integration for claims submission
  • Verify that patient registration captures SHA member numbers
  • Ensure your billing module can generate SHA-compliant claim formats
  • If your system doesn't support integration, consider upgrading to a SHA-ready clinic management system
  • Assess your internet connectivity for real-time API calls
  • Work with an integration partner like Afya Stack Kenya if you need system recommendations
3

Integrate Your System with SHA

Connect your clinic management system to SHA's platform.

  • Use your SHA API credentials to configure integration endpoints
  • Set up real-time patient eligibility verification at the front desk
  • Configure electronic claims submission from your billing module
  • Map your service codes and tariffs to SHA's standard code sets
  • Set up pre-authorization requests for procedures requiring SHA approval
  • Test all integrations in the SHA sandbox environment
4

Set Up Claims Processing and Tracking

Automate your claims workflow to reduce manual work and errors.

  • Configure auto-generation of SHA claims from patient visit data
  • Set up claim validation to catch errors before submission
  • Implement claim status tracking for pending, approved, and rejected claims
  • Create workflows for handling rejected claims and re-submission
  • Set up reconciliation reports to track SHA payments against submitted claims
5

Meet Data Security and Privacy Requirements

Comply with Kenya's data protection laws for patient information.

  • Implement encryption for all data transmitted to SHA (TLS 1.2+)
  • Ensure patient data is encrypted at rest in your clinic system
  • Set up access controls so only authorized staff can view SHA-related data
  • Maintain audit logs of all SHA transactions
  • Ensure compliance with the Data Protection Act 2019 and Digital Health Act 2023
6

Train Your Clinic Staff

Ensure your team knows how to use the new SHA-compliant workflows.

  • Train front desk staff on SHA member verification and patient registration
  • Train billing staff on electronic claims submission and rejection handling
  • Train clinicians on pre-authorization workflows
  • Create quick-reference guides for common SHA tasks
  • Conduct a mock patient journey: registration → treatment → claim → payment
7

Go Live and Monitor

Launch your SHA integration and monitor for issues.

  • Switch from sandbox to production SHA credentials
  • Start with a small batch of real claims
  • Monitor API response times and error rates
  • Track claim approval rates and fix common rejection reasons
  • Set up alerts for integration issues
  • Stay updated on SHA regulation changes to maintain compliance

SHA Compliance Requirements Checklist for Clinics

Valid clinic operating license from the relevant regulatory body
KRA PIN certificate for the clinic
Clinic management system that supports API integration
SHA facility registration and API credentials
Reliable internet connection (minimum 5Mbps)
Data encryption for patient information (TLS 1.2+, AES-256)
Access controls and audit logging in your clinic system
Trained staff for registration and billing workflows
Compliance with Kenya Data Protection Act 2019
Compliance with Digital Health Act 2023

Common Mistakes to Avoid When Making Your Clinic SHA Compliant

Using a clinic management system that doesn't support API integration — you'll need to upgrade or add middleware

Not registering with SHA before attempting integration — you need approved credentials first

Skipping sandbox testing — going live without testing leads to rejected claims

Not mapping service codes correctly to SHA tariffs — this is the top cause of claim rejections

Neglecting staff training — even a simple clinic integration fails if staff don't know the new workflows

Ignoring data security requirements — non-compliance can result in loss of SHA accreditation

Not tracking claim status — without monitoring, you won't know why claims are rejected or delayed

Frequently Asked Questions About SHA Compliance for Clinics

How long does it take to make a clinic SHA compliant?

For clinics, the process typically takes 2-4 months — shorter than hospitals due to simpler systems. SHA registration takes 2-3 weeks, system integration takes 1-2 months, staff training takes 1-2 weeks, and go-live monitoring takes 2 weeks.

Does my clinic need a complex HMIS to be SHA compliant?

No. Clinics can use simpler practice management or clinic management software as long as it supports API integration for claims submission and eligibility verification. If your current system doesn't support this, you may need to upgrade or add an integration layer.

How much does SHA compliance cost for a clinic?

Costs are lower for clinics than hospitals. Key costs include SHA registration (free), system integration (KES 200,000 - 800,000 depending on your system), and staff training (KES 50,000 - 150,000). Contact Afya Stack Kenya for a clinic-specific quote.

Can a small clinic with basic software become SHA compliant?

Yes. Even small clinics with basic management software can achieve SHA compliance. You may need to add an integration layer or upgrade to a SHA-ready system. Afya Stack Kenya can assess your current setup and recommend the most cost-effective path to compliance.

What happens if my clinic is not SHA compliant?

Without SHA compliance, your clinic cannot verify SHA patient eligibility, submit electronic claims, or receive reimbursements. SHA-insured patients would need to pay out-of-pocket, which significantly reduces your patient base since SHA is Kenya's primary health insurance program.

Can Afya Stack Kenya help my clinic become SHA compliant?

Yes. We specialize in helping clinics and health centers of all sizes achieve SHA compliance. We offer system assessment, integration development, staff training, and ongoing support. Schedule a free assessment to get started.

Need Help Making Your Clinic SHA Compliant?

Our healthcare technology experts have helped 50+ healthcare providers across Kenya achieve SHA compliance. Schedule a free assessment today.