Business

Nigeria records $21bn capital inflows in 2025

  • 12th February 2026

Collaboration key to boosting Africa’s energy sector –

  • 12th February 2026
Foreign shipping firms must obey tax laws- FIRS

Technology key to implementing new tax laws —

  • 12th February 2026
Discos to resume meter deployment - IKEDC

Bills without customer ID now invalid – Ikeja

  • 12th February 2026

Contact Info

Some Populer Post

Nigeria records $21bn capital inflows in 2025

Business
WhatsApp rolls out voice note transcription feature in India

WhatsApp accuses Russia of blocking app for indigenous service

Mobile phones

US House rejects Trump’s tariffs on Canada despite threats

featured Finance
Elon Musk’s xAI launches Grok 4 with $300 subscription plan

Brazil orders X to halt Grok’s explicit image generation

Technology
  • Home
  • NDPC issues 21-day compliance notice…

NDPC issues 21-day compliance notice to banks, Gaming operators

Nigerian data agency to impose heavy violations in 2025

The Nigeria Data Protection Commission has issued a 21-day compliance notice to banks, insurance firms, pension companies, gaming operators, and insurance brokers suspected of breaching the Nigeria Data Protection Act, 2023.

According to the commission, the notice is part of a sector-by-sector review aimed at enforcing the law, which took effect last year to protect citizens’ data rights and enhance Nigeria’s role in the global digital economy.

“The Nigeria Data Protection Commission, in furtherance of its mandate under the Nigeria Data Protection Act, 2023, has commenced a sector-by-sector investigation of organisations suspected of non-compliance with the provisions of the Act,” the commission said in a statement on Sunday.

The statement, signed by Babatunde Bamigboye, Head of Legal, Enforcement, and Regulations at the NDPC, noted that the notice was issued under sections 5(i), 6(a), 6(c), 46(3), and 47(1)–(2) of the Act. It added that the list of affected organisations will be published in national newspapers on Monday, August 25, 2025.

“These organisations are required to, within 21 days of issuance, provide the following: evidence of filing NDP Act Compliance Audit Returns for 2024, evidence of designation or appointment of a Data Protection Officer, summary of technical and organisational measures for data protection within the organisation, and evidence of registration as a Data Controller or Processor of Major Importance,” the statement read.

The commission warned that organisations failing to comply with the notice could face significant regulatory sanctions.

“Failure to comply with this compliance notice may result in enforcement actions, including the issuance of an Enforcement Order, administrative fines, and/or criminal prosecution in accordance with the NDP Act, 2023,” the statement read.

It said the NDP Act was enacted to “safeguard the fundamental rights, freedoms, and interests of data subjects as guaranteed under the Constitution of the Federal Republic of Nigeria, 1999,” while also providing a legal framework to ensure Nigeria’s “trusted and beneficial participation in regional and global economies through responsible use of personal data.”

The commission has shown its commitment to enforcing the law by imposing substantial penalties on violators. Multichoice Nigeria was recently fined N766.2 million for what the commission described as intrusive, unfair, unnecessary, and disproportionate data practices, including the illegal cross-border transfer of subscriber information.

Tagged:

Sign Up for Our Newsletter

Subscribe to our newsletter to get our newest articles instantly!

Email Us: [email protected]

ambusinessng @2025. All Rights Reserved.

Facebook-f Pinterest-p Youtube Instagram Linkedin-in