- The NDPC revealed that it is investigating Zenith, GTB, Fidelity, Leadway Insurance, Babcock University, and others for alleged data breaches.
- The NDPC boss, Olatunji, said the investigation of these organizations came following complaints from data subjects.
- Olatunji said the new mandate of the FCCPC required loan organizations to seek compliance and clearance from NDPC before granting approval to online lenders.
The Nigeria Data Protection Commission (NDPC) says it is currently investigating 3 deposit money banks, one university, and other suspects over the alleged data breach.
The commission listed Zenith, Fidelity, Guarantee Trust Banks, Babcock University, and Leadway Insurance, among others for the suspected infraction.
According to a statement issued by the commission’s Head of Media, Mr. Itunu Dosekun, on Thursday in Abuja, this was made known by the National Commissioner of NDPC, Dr Vincent Olatunji.
Unlawful data processing complaints
Olatunji said the investigation of these organizations came following complaints from data subjects, explaining that with the new Nigerian Data Protection Act (NDPA), the commission had been empowered with a legal framework to address issues of citizens’ data breach.
- He said, “In the last few weeks, the NDPC has received complaints bothering on unlawful data processing, unauthorized access to personal data, and violation of data subjects’ rights.
- “Under Part 10 of the newly-signed NDPA Act 2023, a data controller with a turnover of N200 billion yearly may pay as high as N2 billion, which represents two percent of the gross revenue.
- “Not only that, offenders also risk up to a one-year jail term.
- “We are currently investigating Guarantee Trust Bank, Fidelity, Unity, Zenith banks, Leadway Insurance and Babcock University, among others, for a data breach.’’
Online money-lending banks to seek clearance from NDPC
Olatunji said that many micro-finance banks are yet to align their operations with the requirements of data privacy and protection.
He further revealed that loaning organizations would face the law with the new mandate of the Federal Competition and Consumer Protection Commission (FCCPC).
Olatunji said the mandate required loan organizations to seek compliance and clearance from NDPC before granting approval to online lenders.
The NDPC National Commissioner said,
- “The commission is investigating over 400 complaints in the online lending sector.
- “Soko Loan is already working on a come back to the digital lending market, but yet to be approved.’’
He, however, said that the commission was engaging in serious sensitisation exercise to ensure that data controllers understood the implications of data breaches, noting that it prioritizes awareness more than the scorched earth enforcement process.
What you should know
- Recall that on June 14, 2023, President Bola Tinubu had assented to the passage of the Nigeria Data Protection Bill, 2023 into law.
- The Nigeria Data Protection Bill which had been proposed by former President Muhammadu Buhari a few months back seeks to provide a legal framework for the protection of personal information and the practice of data protection in Nigeria.
- It also establishes the Nigeria Data Protection Commission headed which will be headed by a National Commissioner with the responsibility of regulating the processing of personal information.
- In a related development, the Federal Government had on March 11, 2022, through its joint committee investigating rights violations and unfair practices shut down some illegal online money-lending banks for not registering with the Corporate Affairs Commission (CAC) and engaging in activities against the rights of Nigerian consumers.
- These online banks charged interest rates that violate the ethics of how lending is done and were involved in naming and shaming which is a violation of people’s privacy concerning how these lenders recover loans, among other violations.
- The FCCPC had issued a regulatory and registration framework for digital lending as they worked on a more comprehensive framework to guide the operations of digital lenders in Nigeria.
- The 2 major issues the FCCPC sought to address with this framework are unethical interest rates and violation of consumer privacy and other unethical lending practices perpetrated by unchecked digital lenders.
These unscrupulous online money lenders had put many Nigeria borrowers on high blood pressure treshold of deaths and must be properly regulated to avoid them damaging the Nigerian economy.
So, it’s the so-called “unscrupulous online money lenders” who are at fault, and not the Nigerians who borrow money probably with little or no means or intentions of repaying?
Typical Nigerian mentality. Obviously some Nigerians do not grasp the elementary reality that lenders do not print money but use other people’s money/deposits to make these loans. SMH
This is a welcome development. Data protection is key to the thriving of data economy.
this should be given a top- priority. Data Breach is the order of the day in Nigeria. social media such whatsapp, telegram, facebook,youtube,tiktok etc has become porous for hackers to mirror all chats, messages,emails,calls, even clone other organizations data privacy which is very wrong.
I wish Nigeria Data Protection Commission could empower Forensic Guard Nigeria to patner with other Public Investigating unit, Military survelliance and other Intelligence agencies to look into this act for safe Nigerians from data breach by the unknown hackers.