Digital Policy Alert logo

Nigeria: Nigeria Data Protection Commission published draft General Application and Implementation Directive 2024 (NDPC/NDPA-GAID/001/2024) including cross-border data transfer regulation

Policy overview

Description

Nigeria Data Protection Commission published draft General Application and Implementation Directive 2024 (NDPC/NDPA-GAID/001/2024) including cross-border data transfer regulation

On 31 May 2024, the Nigeria Data Protection Commission (NDPC) published the draft Nigeria Data Protection Act (NDPA) 2023 General Application and Implementation Directive (GAID) 2024 NDPC/NDPA-GAID/001/2024. According to the draft GAID, Data controllers and processors must assess the data protection laws and practices of the recipient country to ensure they meet the standards set by the NDPA. In cases where adequate protection is not assured, additional safeguards such as standard contractual clauses or binding corporate rules must be implemented. The NDPA also mandates notification to the NDPC for certain transfers.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cross-border data transfer regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
data protection authority

Complete timeline of this policy change

Hide details
2024-05-31
under deliberation

On 31 May 2024, the Nigeria Data Protection Commission (NDPC) published the draft Nigeria Data Prot…

2025-03-20
adopted

On 20 March 2025, the Nigeria Data Protection Commission (NDPC) adopted the Nigeria Data Protection…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.