NDPC to license more data protection compliance organisations
June 19, 2023
The National Data Protection Commission (NDPC) on Monday said it would be licensing more Certified Data Protection Compliance Organisations (DPCOs) to ensure data protection compliance in the country.
The National Commissioner, Dr Vincent Olatunji, said this at a news conference on the implementation processes of the Nigeria Data Protection Act 2023 (NDPA) in Abuja.
Olatunji explained that with the country’s population of over 200 million, it has barely 152 licencesd DPCOs, which the number is not commensurate to the populace.
He also said that by doing that, it will ensure that Tinubu’s target of creating one million jobs in the digital economy sector is realised.
“Measures are being put in place to create 500,000 jobs in the data protection ecosystem, this is 50 per cent of the job creation target for the sector.
“We will strengthen our regulatory frameworks for DPCOs and issue sector-specific guidelines particularly for financial and telecom sectors.
“The objective is to provide agile frameworks that address peculiar vulnerabilities, risks and opportunities on one hand, and on the other hand provide clear path for compliance.
“Considering the increase in the demand of compliance services, more DPCOs will be licensed, about 500 to 1000, to provide services and make the ecosystem competitive,’’ Olatunji said.
He, however, said that the licensing will be progressive following how the need arises.
He revealed that part of the other steps to be taken towards implementing NDPA included public awareness campaigns.
According to him, a lot of citizens lacked knowledge on the risks they are exposed to when they randomly divulge sensitive information about themselves.
He further said that awareness is the first step towards compliance, so they will rigorously engage in educating, empowering organisations, individuals on their roles, rights and responsibilities under the Act.
“We will be developing a standardised framework for implementation, ensuring consistency and clarity across all sectors.
“This will involve guidance notices on key provisions of the law particularly those that relate to lawful basis of data processing, data subjects’ rights, compliance audit returns and cross-border data transfer.
“We will improve capacity building opportunities for Data Protection Officers enrolled under the National Data Protection Adequacy Programme (NaDAP), thereby enhancing their ability to lead their organisations towards compliance.
“We will upscale the registration process for data controllers and data processors, simplifying compliance pathways and encouraging participation,’’ he said.
Olatunji added that they would introduce a definite calendar for filing annual Compliance Audit Returns.
He said: “Our target is January to December, so organisations will have opportunity to file within the first quarter of each.
“The current dispensation of compliance under Nigeria Data Protection Regulation (NDPR) will be completed and only those who are compliant will be eligible for inclusion on the NaDPAP Whitelist.’’
Olatunji said that organisations who do not comply to the requirements of the NDPA, stands the chance to be fined up to the tune of two per cent of their Gross Annual Income or in some cases their chief executives prosecuted.
He stated that the bureau within one year of its establishment before the NDPA realised over N200 million for the government and would do more with their institutionalisation.
“This is not just about following a new set of rules, but about embracing a new era of data protection where respect for personal data becomes an integral part of our national ethos.
“This development should not be a burden, but should be an exciting one to gain trust, build robust data protection structures and strengthen our standing in the global digital economy landscape,’’ he said.
With the NDPA, it institutionalised the Nigeria Data Protection Commission (NDPC) and replaced the Nigeria Data Protection Bureau (NDPB) established by former President Muhammadu Buhari in February 2022. (NAN)