Digital Policy Alert logo

Nigeria: Internet Code of Practice including cybersecurity regulation enters into force

Policy overview

Description

Internet Code of Practice including cybersecurity regulation enters into force

On 13 August 2026, the Internet Code of Practice, including cybersecurity regulation, enters into force. The Code requires internet access service providers to implement the cybersecurity framework issued by the Commission as the operational baselin…

Scope

Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
infrastructure provider: internet and telecom services
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body

Complete timeline of this policy change

Hide details
2025-10-09
in consultation

On 9 October 2025, the Nigerian Communications Commission (NCC) opened a consultation on the Draft …

2025-10-31
processing consultation

On 31 October 2025, the Nigerian Communications Commission (NCC) closes the consultation on the Dra…

2026-02-13
adopted

On 13 February 2026, the Communications Commission adopted the Internet Code of Practice, including…

2026-05-15
in grace period

On 15 May 2026, the Internet Code of Practice, including cybersecurity regulation, enters into forc…

2026-08-13
in force

On 13 August 2026, the Internet Code of Practice, including cybersecurity regulation, enters into f…