The Nigeria Data Protection Commission (NDPC) has opened investigations into 1,369 companies suspected of violating data privacy regulations. The Commission disclosed that the firms have been given a three-week deadline to comply with the country’s data protection laws or face sanctions.
According to the NDPC, the move is part of its intensified efforts to enforce the Nigeria Data Protection Act 2023, which mandates organizations to adopt global best practices in safeguarding citizens’ personal data. The Commission emphasized that organizations handling sensitive data must strengthen their compliance systems to avoid legal consequences.
Failure to meet the standards within the stipulated timeframe could result in hefty fines, suspension of operations, or other regulatory actions. Under the Data Protection Act, penalties can reach up to ₦10 million or 2% of a company’s annual gross revenue for serious infractions. Beyond financial sanctions, firms risk severe reputational damage, customer distrust, and potential civil liabilities.
The NDPC reaffirmed its commitment to ensuring the privacy rights of Nigerians are fully protected, urging companies in sectors such as telecommunications, finance, healthcare, and e-commerce to take urgent steps to align with statutory requirements before the deadline expires.
Photo credit: Unsplash
0 Comments