With the global gaming market projected to reach $583.69 billion by 2030, Nigeria has a huge opportunity to compete, but only if its gaming sector becomes trustworthy, secure, and privacy-compliant.
This was the message delivered on day one of the second edition of the Enugu Gaming Conference held at the International Conference Centre, Enugu.
Delivering a keynote address on behalf of the National Commissioner/CEO of the Nigeria Data Protection Commission (NDPC), Dr. Vincent Olatunji, an NDPC officer, Alexander Onwe, spoke on the topic “Privacy Compliance and the Future of Gaming: Building Unity Through Decentralised Regulation.”
Onwe laid out the Commission’s position on what gaming operators must prioritise going forward.
“Effective data is the backbone of engagement and revenue. With this rise in interdependency comes heightened risk of violent intent, financial fraud, unauthorised profiling and child exploitation,” he said.
He noted that modern gaming isn’t about consoles or casinos anymore. “Gaming, as we know today, is no longer confined to physical spaces. It is driven by mentalist advertising, behavioural profiling and digital transactions, all of which rely on personalities.”
With the sector expanding into decentralised and digital spaces, the NDPC warned that exposure to risk multiplies when personal data isn’t properly managed. “It recognises the increasingly decentralised nature of gaming regulation, while also acknowledging the shared responsibility we all have to build a trusted, safe and compliant digital ecosystem,” Onwe stated.
Citing the Nigerian Data Protection Act 2023, he outlined the mandates:
- Informed Consent: Operators must ensure players give clear consent before data is collected or processed. “Consent is one of the better bases of processing personal data,” he noted. “You must also provide a mechanism by which users can withdraw their consent. They have the right to do so at any time.”
- Cross-border Transfers: Platforms hosted offshore must comply with Nigeria’s lawful data transfer protocols.
- Cybersecurity: Gaming platforms must embed strong technical and organisational measures to prevent breaches.
- Compliance and Accountability: “Gaming companies are expected to demonstrate compliance by developing data privacy models, processing data in line with the principles of the Nigeria Data Protection Act, and registering as a data controller or processor of major importance with the Commission,” Onwe added.
He stressed the need for collaboration between the federal and state levels, urging that decentralised regulatory frameworks must not mean disjointed enforcement.
“Decentralisation must not mean fragmentation. We should instead empower local innovation while aligning with international principles of privacy, fairness and accountability.”
To that end, the NDPC proposed:
- Regulatory Dialogue: Memoranda of understanding, joint enforcement, and shared compliance metrics among regulators.
- Capacity Building: NDPC will train gaming operators and developers on data protection frameworks.
- Sectoral Frameworks: Specific privacy compliance guidelines for the gaming industry.
- User Awareness: Operators must invest in educating users. “Compliance is not just about ticking boxes, but about earning trust.”
“Privacy is not a barrier to innovation. It is a competitive advantage. As global markets increasingly favour organisations with credible data protection records, Nigeria stands to benefit if its gaming ecosystem is trusted, transparent, responsible and compliant.”
In clear terms, the NDPC sees data protection not as red tape but as a strategic asset to attract global investors, partners and payment processors.
Onwe commended the Enugu State Gaming and Lotto Commission and its leadership. “Enugu State, by hosting this conference, is signalling that it wants to not just be a participant, but a model for responsible gaming innovation in Nigeria.”
He made a direct appeal to the Enugu State Government, “The NDPC is trying to establish partnerships with each state of the Federation. This is based on President Tinubu’s agenda of ensuring Nigeria’s digital economy comes into full bloom through the National Digital Economy Policy and Strategy framework.
“I want to beckon on the Executive Governor of Enugu State to get in touch so we can partner to ensure compliance, especially among key state MDAs.”
Before concluding, Onwe presented three documents to the organisers:
- The Nigeria Data Protection Act, 2023
- NDPC Annual Report
- The Nigeria Data Protection Strategic Roadmap and Action Plan (2023–2027)
“If we want a future where the Nigerian gaming industry thrives globally, we must build it on privacy, compliance and regulatory unity. In this digital age, trust is the new currency, and protecting the personal data of players, users and citizens is how we build that trust.”
