As the filing of data protection audits by Data Controllers nears the 30th of June deadline, the National Information Technology Development Agency (NITDA) in pursuant of its powers under the NITDA Act, on the 18th of May 2020 has issued the Guidelines for the Management of Personal Data by Public Institutions.
Taxaide Technologies Limited (Taxtech), a NITDA-licensed Data Protection Compliance Organization (DPCO) and an ISO 27001:2013 certified organisation in a media briefing session emphasized the need for Public Institutions to take the subject of Data Protection more seriously.
Mr. Oyeyemi Oke, Partner, Data Protection Compliance Services, Taxtech, while addressing journalists stated that it was imperative to take the conversation of data protection beyond just private organizations. He emphasized that Public Institutions are custodians of an immense volume of data and without due processes in place, there are higher chances of data breach and abuse of privacy of the Data Subjects.
READ ALSO: Banks, Fintechs, Telcos, others may lose 2% annual revenue to data breach – NITDA
“The NDPR has provided a means to ensure the data of Nigerian citizens and all persons living within Nigeria are protected and the regulations must be adhered to by all and sundry if we are to achieve the highest standards of data privacy as a nation. There should be no sacred cows whether in the private or public sector,” Oke added.
Data Controllers are required to engage the services of DPCOs to assist with the compliance process of filing their Statutory Annual Data Protection Audit with NITDA or risk the penalty of N10 million or 2% of their global revenues, whichever is greater in the event of a data breach.
READ MORE: Facebook loses $25 billion amid data breach scandal
The NDPR aims to safeguard the right of natural persons to data privacy, foster safe conduct of transactions involving exchange of personal data and prevent manipulations of personal data. It imposes numerous compliance obligations on data controllers and processors in their collection and processing of personal data of natural persons.
The scope of data controllers and processors includes banks, financial institutions, telecommunication companies, payment companies, internet and IT companies, ministries, departments and agencies of Federal and State Governments, electoral bodies, data management companies and the Corporate Affairs Commission among others.
—————————————————————————————————————————————-
About Taxaide Technologies Limited
Taxaide Technologies Limited (Taxtech) is a technology development company specializing in Software Development Services, Data Protection Compliance Services and Cybersecurity Services.
These services are expressed in the form of:
(i) Products developed and deployed in-house to aid its processes,
(ii) Projects undertaken for clients to aid their processes, and
(iii) Integrations of its solutions with other third party applications or solutions.