The National Information Technology Development Agency (NITDA) is statutorily mandated by the NITDA Act of 2007 to develop regulations for electronic governance and monitoring of the use of information technology and electronic data. Conscious of the concerns around privacy and protection of Personal Data and the grave consequences of leaving Personal Data processing unregulated, NITDA has issued the Nigeria Data Protection Regulation (NDPR).
The objectives of the regulation are as follows:
▪ To safeguard the rights of natural persons to data privacy;
▪ To foster safe conduct for transactions involving the exchange of Personal Data;
▪ To prevent manipulation of Personal Data
▪ To ensure that Nigerian businesses remain competitive in international trade through the safe-guards afforded by a sound data protection regulation.
The regulation applies to all storage and processing of Personal Data conducted in respect of Nigerian citizens and residents.
Examples of Personal data
▪ Employee information held by HR
▪ Customers and subscribers data
▪ Vendors, suppliers and services providers' information
Personal data may contain the following: Name, telephone numbers, address, location or financial information, gender, ethnicity, health records, sexual orientation and more
Reasons for compliance
To find out your organisation's readiness for NDPR compliance please answer the questions in our 5 min questionnaire
YOUR NDPR COMPLIANCE PROJECT
Why Engage Us
We are licensed as a Data Protection Compliance Organization (DPCO) by the NITDA to provide Data Protection Compliance Services in Nigeria.
We have an experienced team of Data Privacy and Information Security Consultants as well as Regulatory experts that have provided data protection and cubersecurity services to clients within and outside Nigeria.