The company’s response follows reports that the NDPC had commenced an investigation into the platform’s data processing activities to ensure compliance with the Nigeria Data Protection Act (NDPA) 2023.

In an official statement made available to Techeconomy and aimed at providing clarity on its regulatory standing, Temu emphasized its commitment to local and international data protection standards.

The company confirmed that it is already in communication with the Commission to resolve any outstanding concerns.

“At Temu, protecting user privacy and data security is a top priority. We are committed to complying with applicable laws and regulations in our data practices,” the statement read.

Temu further confirmed its active participation in the process, stating:

“We can confirm that Temu has received the inquiry and is engaging with the Commission. We will continue to engage in open and constructive dialogue with the NDPC to address any questions or concerns.”

The Regulatory Context

The NDPC, led by Dr. Vincent Olatunji, the national commissioner  has recently intensified its oversight of foreign digital platforms operating within Nigeria.

The commission’s mandate is to ensure that the personal data of Nigerian citizens, ranging from contact details to financial information, is collected, stored, and processed in a transparent and secure manner.

For e-commerce platforms like Temu, which handle massive volumes of consumer data, regulatory alignment is critical for maintaining operational licenses and consumer trust in Africa’s largest economy.

Market Implications

Temu’s proactive confirmation of its engagement with the NDPC is seen by industry analysts as a strategic move to de-escalate potential regulatory friction.

In recent years, Nigeria has shown a no-nonsense approach to big tech compliance, as seen in previous engagements with platforms like X (formerly Twitter) and various fintech entities.

By opting for constructive dialogue, Temu appears to be positioning itself as a compliant player, looking to secure its long-term interests in a market where digital retail is projected to grow significantly by 2026.

For the Nigerian tech ecosystem, this development highlights the growing influence of the NDPC. Investors and foreign firms must now factor in Data Compliance Costs as a non-negotiable part of their entry strategy.

Temu’s willingness to engage openly could serve as a blueprint for other international retailers looking to navigate Nigeria’s evolving regulatory landscape without disrupting their growth trajectory.

Cybercrime will cost the global economy an estimated $10.5 trillion this year. Phishing attacks have surged over 4000% since 2022, cloud intrusions are up 75%, and only 4% of organisations feel confident in the security of their connected devices. 

Meanwhile, 66% of companies believe AI and machine learning will impact the sustainability of cybersecurity, but less than 40% have the systems in place to assess the risks of those very tools.

The threat is beyond technical; it’s human. The cybersecurity workforce gap has widened to over 4.1 million unfilled roles globally, and Africa alone faces a shortage of more than 3.5 million skilled professionals. 

In Nigeria, over 68,000 cybersecurity roles are vacant, an issue worsened by migration and insufficient training pipelines.

The situation is compounded by digital illiteracy in the country, regulatory gaps, and a talent exodus driven by the ongoing Japa wave. However, despite this challenge, a guard of cybersecurity leaders are not relenting.

These ten personalities are building companies that secure mobile payments and smart homes, they’re impacting policy frameworks, training armies of young professionals, and leading cross-border collaborations. 

This list is a look into the minds ensuring the global cybersecurity revolution in 2025. Be it Lagos, London, or Nairobi, their impact is unmistakable, cutting across sectors, banking, energy, e-commerce, public safety and continents.

Let’s meet the top ten personalities, not limited to these, driving cybersecurity resilience in 2025.

.

1. Confidence Staveley: The Relatable Cybersecurity Leader

Beyond a cybersecurity expert, Confidence Staveley is a movement. Her name has become synonymous with resilience, inclusion, and strategy in Nigeria’s digital security sector. 

Staveley is the founder of CyberSafe Foundation and MerkleFence, leading with conviction and vision; building secure-by-design systems and empowering the next generation of African cybersecurity professionals.

Her journey spans over a decade of building secure products, embedding security deep into development lifecycles, and leading high-performing teams across continents. She’s both a theorist and a doer, integrating automated security into CI/CD pipelines, publishing the bestselling book API Security for White Hat Hackers, and delivering results, raising the bar.

Through CyberGirls Fellowship, Africa’s largest female-focused cybersecurity training initiative, Confidence opens doors for young women who might otherwise be excluded from the tech revolution. She mentors, she teaches, and she amplifies voices that matter.

Her recognition includes SC Media’s Women in IT Security Power Player, Cybersecurity Woman of the World, and Top 40 Global Thought Leader in Security and Safety, among others. Her superpower isn’t just the certifications or accolades, but her ability to make security human, accessible, and empowering. When she says she’s “The Relatable CyberSecurity Leader,” it’s not just branding, it’s truth.

2. Professor Obadare Peter Adewale: Nigeria’s First Cybersecurity Professor and Visionary Technopreneur

Professor Obadare Peter Adewale is a name you’ll find etched into Nigeria’s cybersecurity history. A pioneer and one of the continent’s most credentialled cybersecurity leaders, Obadare combines academia, entrepreneurship, and policy advocacy with unmatched precision.

As the Chief Visionary Officer of Digital Encode, Obadare has spent over two decades helping institutions navigate the highly technical and rapidly changing cybersecurity ecosystem. His expertise spans penetration testing, risk management, GRC (Governance, Risk, and Compliance), digital forensics, and AI governance. 

He holds elite global credentials and fellowships, including with the British Computer Society, Forbes Technology Council, and as Africa’s first EC-Council Licensed Pen Tester.

In 2024, he was appointed Nigeria’s first Professor of Practice in Cybersecurity, a role that bridges the gap between classroom theory and industry reality. Through this position at Miva Open University, he brings real-world exposure into academia, helping produce a new generation of industry-ready professionals.

His work on AI governance at the Centre for Artificial Intelligence Governance, combined with certifications from Oxford, Harvard, and MIT, stressed his relentless pursuit of innovation and relevance. 

From designing ISO-compliant security architectures to mentoring C-level executives, Obadare is not just part of the cybersecurity revolution; he helped start it.

His current projects, including AI risk management frameworks and digital sovereignty initiatives, have implications far beyond Nigeria. They position him as a global authority on digital trust and national cyber resilience. In Obadare, Nigeria has a cybersecurity leader and a visionary building bridges to the future.

3. Peter Ejiofor: Building Resilience from the Ground Up

Peter Ejiofor is the embodiment of locally-grown innovation in Nigeria’s cybersecurity ecosystem. As CEO of Ethnos IT Solutions, he has created one of the most respected indigenous cybersecurity firms on the continent, rooted in technical excellence, community engagement, and strategic foresight.

Ejiofor’s career spans two decades of enterprise-level cybersecurity architecture, particularly in financial services and telecoms. But what sets him apart is his focus on making cybersecurity accessible and affordable, especially for small and medium enterprises (SMEs), the most vulnerable segment in Nigeria’s digital economy.

Under his leadership, Ethnos developed Aquila, an AI-driven mobile app that scans and secures devices for SMEs, and Castellum, a next-gen encryption framework tailored for African businesses. These tools are not theoretical, they’re already changing how companies approach security.

Beyond tools, Ejiofor invests in talent. Through the Ethnos Cybersecurity Academy, he trains beginners and career switchers, providing them with hands-on, practical skills that go beyond theory. 

His commitment to demystifying cybersecurity has led to real impact, clients prepared for compliance audits, SMEs winning contracts thanks to improved security posture, and graduates joining elite security teams.

He’s also a respected certified ISO/IEC 27001 auditor and senior pen tester, and a member of leading African cybersecurity associations. When Zenith Bank showcased Aquila and Castellum at its Tech Fair, it went beyond a product launch to show how local expertise can deliver world-class solutions.

4. Innocent Paul Ojo: Building Cybersecurity Where IT Meets OT

Few professionals navigate as fluidly between IT and operational technology (OT) environments as Innocent Paul Ojo. A rare blend of strategist, analyst, and researcher, Innocent brings together real-world execution and academic rigour into one streamlined career focused on securing systems where the digital converges with the physical.

As the founder of CoreDefense, Innocent is redefining how cybersecurity is approached holistically and contextually. Whether it’s securing smart factories, industrial control systems, or fintech APIs, he’s known for designing and implementing end-to-end security architectures that go far beyond baseline protections.

At Persimmon Homes, he worked closely with OT stakeholders to improve the cybersecurity posture of smart factory assets. From hardening programmable logic controllers (PLCs) and securing building automation systems to deploying network segmentation, asset visibility tools like Nozomi Networks, and SIEM integrations using Splunk, Innocent helped reduce detection and incident triage time by over 60%. His approach: fusing security-by-design with deep visibility across the operational stack.

But it’s not just the technologies he uses, Wireshark, Ghidra, PE-bear, Burp Suite, OWASP ZAP, Microsoft Defender for Endpoint, Azure Lighthouse, Kali Linux, and Tenable Nessus, it’s how he uses them that distinguishes his work. His detailed work in threat modelling, subdomain takeover testing, firmware analysis, and network protocol dissection has earned him trust in highly regulated sectors such as healthcare, fintech, and industrial manufacturing.

Innocent brings clarity to complexity, aligning controls with frameworks like NIST CSF, ISO 27001, and DORA, ensuring governance and compliance objectives are met with technical precision and strategic foresight.

Certified by ISC2 and CompTIA, Innocent’s work reflects a force-multiplier mindset, fusing technical excellence with leadership and execution.

Whether volunteering with the Centre for Cyber Safety and Education, mentoring emerging talent, or performing red team-style assessments at fintech platforms like CreditCliq, Innocent demonstrates an unwavering commitment to uplifting the cybersecurity community while building secure, resilient systems.

He’s not just participating in the cybersecurity revolution; he’s helping engineer its foundation, particularly where traditional infrastructure meets cloud-native and cyber-physical systems.

5. Timmy Iwoni: The Cross-Sector Engineer Turning Cybersecurity Into Solutions

Timmy Iwoni is a cybersecurity expert and a builder—of systems, teams, and companies. He is CEO of Reconnaissance Technologies, where he leads one of Nigeria’s fastest-growing tech firms at the cutting edge of digital defence, artificial intelligence, and fintech infrastructure.

What makes Timmy’s journey commendable is his ability to move seamlessly across sectors. He’s as comfortable talking about AI-powered CRMs like Nebula as he is explaining penetration testing protocols. Under his leadership, Reconnaissance launched secure platforms like AgoPay and Fricana Mart, products that merge security-first fintech and e-commerce into everyday solutions.

Trained in Computer Engineering (JAIN College, India) and Chemical Engineering (FUT Yola), Timmy blends analytical rigour with technical depth. His early years managing IT infrastructure at BOSIP Enterprises and later leading software development at ISF Technologies, India, shaped a mindset focused on resilience, optimisation, and usability.

His secret? A vision that scales. Timmy doesn’t isolate cybersecurity from innovation; he integrates it, embedding security into product design and cloud systems from day one. His work helps SMEs and corporates alike avoid vulnerabilities without sacrificing performance.

Timmy is part of a new generation of cybersecurity leaders in Nigeria: problem solvers and solution builders, rooted in code, powered by strategy, and driven by purpose.

6. Abdulqudus Isa: Driving Cybersecurity Transformation

Abdulqudus Isa is a leading voice in cybersecurity, renowned for bridging the gap between cyber risk strategy and real-world implementation.

With a strong background in Cybersecurity, Risk Management, Governance, and IT Audit, Abdulqudus has been instrumental in helping organizations build resilient digital infrastructures, particularly within regulated industries like banking, insurance, fintech, and energy.

At KPMG Nigeria, Abdulqudus Isa served within the Cyber and Privacy Advisory unit, helping clients navigate the complexities of digital transformation while staying secure and compliant.

His work ranged across: Cybersecurity Assessments & Audits; ISO 27001 and NIST Compliance Implementation; IT General Controls (ITGC) Testing; Cloud and Application Security Reviews; Business Continuity and Disaster Recovery Planning, and .Vulnerability and Threat Management Frameworks

His KPMG experience positioned him as a trusted advisor to large corporations seeking guidance on end-to-end cyber risk governance and digital trust.

Abdulqudus holds multiple industry-recognized certifications and has deep technical fluency in frameworks such as: ISO 27001; NIST CSF; PCI-DSS; SWIFT Customer Security Programme (CSP), and Microsoft Security tools & environments.

He also holds a degree in Engineering and has consistently upskilled across cybersecurity trends including cloud security, penetration testing, and risk analysis.

With a deep understanding of attacker tactics and evolving threat landscapes, Abdulqudus Isa represents a new generation of cybersecurity professionals who combine policy-level governance with frontline threat intelligence. He is known for crafting proactive strategies that help organizations predict, prevent, and respond to cybersecurity threats.

His influence is felt across boardrooms and operational security teams alike, as he drives awareness, compliance, and resilience in the face of increasingly sophisticated cyber risks.

7. Dr. Basil Udotai: The Strategist Who Wrote Nigeria’s Cybersecurity Playbook

When the conversation turns to the architects of Nigeria’s cybersecurity framework, Dr. Basil Udotai is impossible to overlook. He is a huge part of the digital security conversation and helped write its earliest chapters.

As the pioneer Director of Cybersecurity at Nigeria’s Office of the National Security Adviser (ONSA), Dr. Udotai was key in establishing the very Directorate for Cybersecurity, an office now central to Nigeria’s defence against digital threats. 

His legal background, paired with deep policy insight, gave him a unique ability to design protections and entire governance structures for national cybersecurity.

Before entering the policy arena, Dr. Udotai was General Counsel and Legal Adviser at NITDA, where he helped drive the implementation of the National IT Policy. This dual fluency, in law and technology, is rare, making him one of the most trusted advisors in Nigeria’s cyber policy circles.

Today, as Managing Partner at Technology Advisors LLP, he consults for both government and enterprise clients, shaping digital transformation and compliance strategies across industries. His legal precision makes him a go-to figure for navigating cybercrime laws, data protection regulations, and emerging tech risks.

Dr. Udotai is a key voice at international conferences, including the National Cybersecurity Conference 2025, where his contributions to Nigeria’s digital resilience strategy were widely acknowledged.

His legacy is in laying the foundation. While others manage cyber risk, Dr. Basil Udotai helped define what that risk means for a nation. Beyond being a part of Nigeria’s cybersecurity revolution, he was there at its inception.

8. Dr. Vincent Olatunji: Bridging Data Protection and Cybersecurity for National Impact

Dr. Vincent Olatunji, as the National Commissioner and CEO of the Nigeria Data Protection Commission (NDPC), leads a mission that sits at the heart of Nigeria’s digital trust: protecting data in the complex cyber space.

While his mandate centres on data protection, the overlap with cybersecurity is direct and undeniable. Under his leadership, the NDPC has moved beyond bureaucratic compliance and into active transformation, launching the Virtual Privacy Academy, conducting sector-wide regulatory audits, and enforcing policies in healthcare, oil and gas, and hospitality.

But Dr. Olatunji’s impact is not confined to national borders. In April 2025, he was appointed Chair of the Anglophone Countries Committee within NADPA, tasked with coordinating data privacy strategies across English-speaking African nations. That role gives him a direct hand in shaping policies that affect over 1.4 billion people.

His global credentials are also solid. He participated in a cybersecurity study tour of Estonia, widely regarded as a pioneer in national digital infrastructure. The experience influenced his approach to cross-border data governance and the localisation of international best practices.

Under his watch, Nigeria has created a Digital Sovereignty Framework, aligned itself with global privacy standards, and taken an active role in the governance of emerging technologies.

Dr. Olatunji is not a traditional cybersecurity practitioner, but in 2025, cybersecurity is no longer just about firewalls and encryption; it’s about trust, transparency, and control. Few embody this transformation better than he.

9. Dr. David Isiavwe: Securing Nigeria’s Financial Systems, One Layer at a Time

In Nigeria’s financial sector, where billions are moved digitally every day, Dr. David Isiavwe is one of the most trusted minds working behind the scenes to ensure everything runs safely and securely.

President of the Information Security Society of Africa – Nigeria (ISSAN), Dr. Isiavwe leads capacity building, public-private collaboration, and financial sector readiness. His organisation has hosted some of the most impactful cybersecurity conferences in the region, including the Q1 2025 Cybersecurity Roundtable, which tackled real-world issues like identity access management in zero-trust environments.

Beyond advocacy, Dr. Isiavwe wears a different hat as Executive Director of Operations and IT at Nova Bank. With past roles at Ecobank, UBA Africa, and Union Bank, his perspective is unmatched when it comes to the fusion of banking operations and digital risk management.

His academic credentials only reinforce his standing. He holds a PhD in Accounting, is a CISSP, a CGEIT, and a Fellow of the Institute of Chartered Accountants of Nigeria. His training at Harvard, Oxford, MIT, and Boston University speaks volumes about his commitment to global best practices.

Dr. Isiavwe is also a loud voice in the talent retention debate. At the 2024 ISSAN Cybersecurity Conference, he called for curriculum reform, competitive incentives, and continuous learning pathways to retain Nigeria’s top cyber talent.

10. Olufemi Ake: Bolstering Cybersecurity Through Education and Strategy

If Nigeria is serious about closing its widening cybersecurity talent gap, it needs more leaders like Olufemi Ake, a professional who combines technical insight with a deep passion for education, policy, and youth empowerment.

He’s the Managing Director of ESET West Africa, who oversees operations in key Anglophone markets such as Nigeria and Ghana. But his impact runs deeper than business development. He has worked tirelessly to embed cybersecurity awareness into institutions and communities that were once far removed from the conversation.

What truly sets Ake apart, however, is his work in academia and curriculum reform. He’s played a huge role in developing cybersecurity training frameworks adopted by Nigerian universities and professional bodies. His advocacy has led to structured education pathways that didn’t exist a decade ago, helping hundreds of professionals earn globally relevant credentials and enter critical security roles.

Ake has also lent his expertise to government policymaking, advising on issues ranging from digital identity and cybercrime legislation to cloud compliance and cross-border data regulation. 

Through hackathons, CTF competitions, and NITDA-backed bootcamps, Ake has created training and mentorship opportunities that give Nigerian youth a stake in the cybersecurity industry. He speaks often, and with urgency, about the 68,000+ unfilled cybersecurity jobs across the country, and the need to develop home-grown talent fast.

He is also part of regional alliances like the African Union Cybersecurity Experts Group, where he helps shape continental policy on cyber norms, shared threat intelligence, and digital inclusion.

Under the theme ‘Future-Forward – Harnessing the Power of Youth, Innovation, and Technology for National Economic Growth’, key discussions revolved around fostering a robust digital economy, enhancing digital citizenship, and ensuring inclusive growth across all sectors.

The LFC 2025 kicked off with a strong message from Dr. Bayero Agabi, president of DigiVation Network, who underscored the conference’s theme as perfectly encapsulating “the spirit of innovation, progress, and collective endeavours that define Nigerians.”

Dr. Agabi also issued a cautionary note on digital citizenship, stating that “Online Cyber Responsibility is a must to protect intellectual property rights among other concerns.

He stressed that upholding national values, respecting cultural norms, and protecting national security are integral to responsible online behaviour.

Malam Kashifu Inuwa, director-general of the National Information Technology Development Agency (NITDA), delivered a powerful keynote address, asserting that Nigeria’s true wealth lies not in natural resources, but in its human capital, particularly within “classrooms, co-working spaces, and innovation hubs.

Speaking at the LFC 2025 through Dr. Aristotle Onumo, director of Stakeholder Management & Partnerships, the DG emphasized that the future belongs to nations with tech-ready youth.

He cited the remarkable achievement of Nigerian startups, which attracted over $1.2 billion in venture capital funding in 2024, showcasing the “audacity to dream, to build, to reimagime” prevalent among young Nigerians.

The importance of a robust national identity system as a catalyst for growth was highlighted by Engineer Abisoye Coker-Odusote, DG/CEO of the National Identity Management Commission (NIMC).

Represented by Prince Ajibade Ayeni Omobalufon, she stated that identity is the key to opening doors, breaking barriers, and creating pathways to future growth and development.

The NIMC’s partnership with the Nigerian Education Loan Fund (NELFUND) and the creation of job opportunities through the NIMC Entrepreneurship System were cited as tangible examples of how digital identity is empowering youth.

Further solidifying the government’s commitment to digital transformation, Professor Ibrahim Adeyanju, managing director/CEO of Galaxy Backbone, shared an ambitious vision for Nigeria’s digital infrastructure.

Speaking through Victor Imonieroh, he announced the expansion of their high-speed fiber optic network to over 5,000 kilometers and a groundbreaking partnership with NIGCOMSAT to extend connectivity to all 774 local government areas. “Our vision is clear,” he concluded. “A Nigeria where the youth are empowered by innovation, where technology is the bedrock of inclusive economic development, and where collaboration drives progress.”

Dr. Muhammad Sirajo Aliyu, president of the Nigeria Computer Society (NCS), represented by Dr. Charles Onyeukwu, deputy national president, advocated strongly for greater empowerment of young people to counteract the “japa syndrome” – the increasing emigration of skilled professionals.

He urged for collective efforts to provide “meaningful avenues for the young people to express their dreams” within Nigeria.

Addressing critical issues of digital access and economic viability, Dr. Yele Okeremi, founder of Precise Financial Systems (PFS), represented by Mr. Babajide Alaka, stressed the need for “equitable access” to technology.

He pointed out the stark disparity in internet access, largely concentrated in major urban centers, and called for “deliberate investment in rural connectivity, community-based tech hubs, digital literacy programs in local languages, and inclusive policies that close the urban-rural gap.”

Dr. Tola Yusuf, co-founder of Infratel Africa, amplified the call for connecting underserved areas, highlighting that approximately “23 million people are still unconnected in Nigeria.”

He argued that intentional policies are needed to make investments in rural connectivity viable for telecom operators, emphasizing its crucial role in retaining young talent and fostering local entrepreneurship.

The conference also featured a significant announcement from the Nigeria Data Protection Commission (NDPC).

Dr. Vincent Olatunji, National Commissioner, represented by Ibukunoluwa Owa, at the LFC 2025 unveiled a series of youth-focused initiatives, including a localized National Data Protection Certification Programme that has already trained nearly 500 Nigerians.

“Data protection is not just about security—it’s about empowerment,” Owa stated, highlighting the massive employment opportunities for certified Data Protection Officers. The NDPC also launched Data Privacy Clubs in Universities, Secondary School Outreach programs, and a Virtual Privacy Academy, underscoring its commitment to creating a “safe, respectful, and secure” digital environment for young Nigerians.

Adding to the diverse perspectives, Dr. Olushola Odusanya, director general of the National Centre for Technology Management (NACETEM), represented by Mrs. Iret Oyefuga, deputy director at NACETEM affirmed the management’s commitment to “promoting research, technology, and innovation in Nigeria for sustainable development.”

He expressed optimism that collective efforts would drive economic growth and improve lives.

Finally, Arco Worldwide Services Limited, represented by David Ofoluwa, senior business development executive, made a compelling case for investing in drone innovation and youth empowerment, positioning Nigeria at the forefront of the Fourth Industrial Revolution.

The Lagos Future Conference (LFC) 2025 served as a vital platform for robust discussions, highlighting both the immense potential and the critical challenges facing Nigeria’s digital future.

The consensus among stakeholders was clear: a collaborative, responsible, and inclusive approach is paramount to translating the nation’s technological aspirations into tangible economic growth and a brighter future for all its citizens.

The award through the Global Privacy Assembly recognises an individual’s outstanding leadership and exceptional efforts in fostering international collaboration.

This nomination highlights Dr Vincent’s commitment to driving innovation, expanding global partnerships, and promoting a collaborative approach within the data privacy and protection ecosystem.

Under the visionary leadership of Dr Vincent, the Data Privacy ecosystem in Nigeria has witnessed a remarkable growth through key milestones such as deepening the knowledge of data protection and privacy in all public and private institutions, judicial recognition of adequacy principle in cross-border data transfer, playing key roles in regional and global data privacy ecosystem, commencement of bilateral cooperation with other jurisdictions, licensing of data protection compliance organisations, commencement of national data protection certification process, among others.

Dr Vincent’s strategic and innovative initiatives has been instrumental in forging strong international partnerships,  driving sustainable growth, fostering a culture of collaboration which has not only propelled the NDPC to new heights but also set a benchmark for international cooperation and industry standards.

The Giovanni Buttarelli Award celebrates leaders who have demonstrated exceptional leadership and/or promoted collaboration at a regional or international level in the field of data privacy and protection. Nominees are evaluated based on their contributions to projects that has led to the development of innovative concepts or practices, which have significantly impacted the thinking in the international data protection and privacy community, partnerships, and initiatives that enhance global cooperation and development.

In his response to his nomination, Dr Vincent Olatunji expressed his gratitude and emphasised on the importance of collective effort in achieving global progress.

“I am deeply honored to be nominated for the Giovanni Buttarelli Award 2024”, said Dr Olatunji. “This recognition is a testament to the hard work and dedication of our entire team at NDPC. It underscores the power of collaboration and the remarkable outcomes we can achieve when we work together across borders. I am excited to continue our journey, driving innovation and fostering partnerships that make a positive impact globally,” he said.

===

The Office of the Head of the Civil Service of the Federation under Dr. Folasade Yemi-Esan has issued a Guideline on Personal Information Technology Devices (PITeD) Provision and Usage in Ministries, Departments and Agencies (MDAs).

This was disclosed in a statement signed by Babatunde Bamigboye, Head, Legal Enforcement and Regulations at Nigeria Data Protection Bureau (NDBP).

The Guideline, according to Bamigboye, seeks, among others, to “foster strict adherence to government policies and global best practice in respect of data protection; provide clarity on the legitimate uses required on the part of users and the consequences of breaching the provisions of the Guideline”.

In order to reinforce data privacy and protection practices in MDAs, Part X of the Guideline provides inter alia:-

1. Each MDA shall ensure that the usage of PITeD is consistent with Nigeria Data Protection Regulation and any regulatory instrument on data privacy and protection in Nigeria.
2. The measures to be taken by each MDA for the purpose of data protection and accountability shall include but not limited to the following:
3. Designation or appointment of a suitable officer within the MDA as a Data Protection Officer (DPO).
4. Development of a Data Protection Policy in line with Nigeria Data Protection Regulation (NDPR) and other applicable regulatory instruments on data privacy and protection.

• Forwarding of the contact details of the data protection officer to the Office of the Head of Service and the Nigeria Data Protection
  Bureau.

“It will be recalled that the Secretary to the Government of the Federation, Mr. Boss Mustapha, recently issued a service-wide circular directing MDAs to comply with the provisions of the NDPR.

“The Nigeria Data Protection Bureau National Commissioner, Dr. Vincent Olatunji, has lauded the Head of the Civil Service of the Federation for taking this bold and strategic measure.

“The Bureau sees this effort by the Federal Government as another clear demonstration of commitment to fundamental rights and freedoms which are often impacted by data processing.

“In view of this encouraging development in the public sector, the National Commissioner has approved an extension of time for data controllers and data processors to comply with the earlier notice on National Data Protection Adequacy Programme (NaDPAP) Whitelist.

“The deadline for the submission of details of Data Protection Officers/Contacts, among others, has now been shifted to 20th of January, 2023.

“Data Controllers and Processors who submitted before the deadline of November 25th, 2022 have been awarded full marks of 10 points under Accountability Metrics and Responsiveness to Regulatory Processes. This represents 10% of the total number of scores to be awarded in order to be eligible for inclusion on the NaDPAP Whitelist.

“The Bureau will also evaluate data controllers and data processors on other performance metrics including but not limited to Implementation of NDPR Compliant Privacy Policy; Sensitization of Data Subjects on Data Subjects Rights; Filing of Annual Compliance Audit Returns and Globally Acceptable Information Security Certifications”.

Dr. Vincent Olatunji, the National Commissioner/CEO, NDPB, in his welcome remarks during the signing ceremony at NDPB Headquarters on Friday, 28^th August 2022, expressed his optimism about the objectives of the MoU and the enforcement mechanism for consumer rights and data protection.

He noted that the MoU will serve as a model in promoting an ecosystem of cooperation among regulatory authorities. The National Commissioner further commended FCCPC Executive Vice Chairman, Barr. Babatunde Irukera for his altruism and commitment towards consumer rights and competitive trade practices in Nigeria.

In his remarks, the FCCPC Executive Vice-Chairman expressed delight in the momentum that data protection has gained in the country since the establishment of the Bureau by President Muhammadu Buhari, GCFR. He highlighted that the institutional possibilities of the MoU in leveraging data governance for sustainable development are compelling. The Executive VC pledged the full support of FCCPC to NDPB through the implementation of the MoU. 

Both agencies established a Joint Technical and Enforcement Committee and agree among others “to use their best endeavors in the exercise of their respective powers to enforce and ensure compliance with any mutually agreed decisions, actions, orders, recommendations or understandings arising from any effort, initiative, or investigation that is subject of this  MoU or any mutual cooperation/collaborations by Parties.”

The MoU will, ultimately, foster:- prompt resolution of complaints, capacity building, awareness among consumers/data subjects and information sharing between the two agencies.

Dr. Olatunji also commended data controllers and data processors that have complied with the recently issued Compliance Notice within a very short time. He noted that this is a clear evidence that many data controllers and processors in Nigeria are becoming more and more transparent and accountable in their dealings with data subjects.

This is part of the national effort towards ensuring that no one is left behind in the implementation of National Digital Economy Policy and Strategy (NDEPS).  

With the signing of the MoU, the National Commissioner called on all organizations who collect personal data/records/information on citizens – irrespective of age or gender – to avoid grave legal and reputational consequences by complying with the provisions of the Nigeria Data Protection Regulation (NDPR) 2019.

Details of compliance processes are contained in the recent Newsletter VOL.1/ NDPB/CN/ 1/22 posted on the website of the Bureau.

Mr. Babatunde Bamigboye, the Legal, Enforcement & Regulations Lead at NDPB confirmed the development in a statement made available to TechEconomy.ng.

According to Bamigboye, the complaint against Phillips Consulting is in connection with the activities of online lending platforms who (allegedly) willfully breach the privacy of citizens whilst the investigation of UBA PLC., pertains to allegations of infringement on the governing principles of data protection.

“It will be recalled that the NDPR mandates organizations to carry out due diligence before engaging in any data processing. This is to ensure that parties are accountable for any infringement on fundamental rights and freedoms of data subjects.

“The Bureau warns all data controllers and processors to eschew all forms of data processing that are detrimental to citizens as well as the economy and security of the country”, the statement added.

Mr. Tunde Balogun, CEO of DSPL, in a statement today in Lagos, said both the creation of the Nigeria Data Protection Bureau (NDPB) to manage Nigeria’s burgeoning data protection industry and the appointment of Olatunji, a veteran public sector administrator, will help to positively accelerate required development of the nascent data sector.

“Government has initiated profound, practical steps to administer the steady growth of the data industry while the march towards legislation through an Act of Parliament is still progressively on course. This is highly commendable on the part of President Buhari and the Minister of Communications and Digital Economy, Prof Isa Ali Ibrahim Pantami.

“We expect operators and other stakeholders to critically look at how to leverage the new window for opportunities and collaborations,” said Balogun.

Earlier today, the ministry in statement released in the Abuja announced that, “the NDPB has been established in line with global best practice and will focus on data protection and privacy for the country, among others.

The statement further reads: “The successful implementation of the National Digital Economy Policy and Strategy (NDEPS) for a Digital Nigeria has significantly increased the adoption of data platforms and accelerated the datafication of our society. This has increased the importance of having an institution that focuses on data protection and privacy.

“Furthermore, the issuance of the Nigeria Data Protection Regulation (NDPR) in January 2019, as a subsidiary legislation to the National Information Technology Development Agency (NITDA) Act 2007, has increased awareness about the need for data protection and privacy. The Bureau will be responsible for consolidating the gains of the NDPR and supporting the process for the development of a primary legislation for data protection and privacy.”

“President Buhari also approves the recommendation of the Minister of Communications and Digital Economy, Professor Pantami, for Dr. Vincent Olatunji to serve as the National Commissioner/Chief Executive Officer of the Bureau. Dr. Olatunji hails from Ekiti State and, at the time of his appointment, was the Director of the eGovernment Development and Regulations Department at NITDA. The appointment takes effect immediately.”

Olatunji hails from Ekiti State and, at the time of his appointment, was the Director of the e-Government Development and Regulations Department at National Information Technology Development Agency (NITDA). The department was responsible for NDPR related issues and the had oversight responsibilities over all DCPOs.

DSPL is one of  Nigeria’s top DPCOs with a firm grip in both public and private sectors. DSPL has provided NDPR compliant services and trainings for Oyo and Plateau governments.

In Plateau,, central Nigeria, it has helped to guide the Plateau State Internal Revenue Service (PSIRS) to meet the NDPR compliance requirements and has offered extensive training suites for about eight ministries, departments and agencies (MDAs) in Oyo state.

It currently has the intellectual proprietary right on the NDPR Compliant Visitors’ Book which was recently unveiled in Abuja by the NITDA.