Nigeria: National Information Technology Development Agency adopted Nigeria Data Protection Regulation 2019 including data protection regulation

On 25 January 2019, the National Information Technology Development Agency (NITDA) issued the Nigeria Data Protection Regulation (NDPR). The NDPR defines the rights of data subjects regarding their personal data and sets responsibilities for data controllers and processors. The NDPR specifies that data subjects have the right to consent, access, rectify, and delete their personal data. It also provides mechanisms for data subjects to object to data processing and seek redress for violations. Furthermore, the NDPR mandates that data controllers ensure personal data is processed lawfully, fairly, and transparently.