Nigerian Authorities by means of the Nationwide Info Expertise Growth Company, NITDA, has reminded all knowledge controllers and processors within the nation that the deadline for the submitting of their annual knowledge audit report stays fifteenth March, 2021.
The Director-Normal of NITDA, Abdullahi Inuwa, warned that non-filing of the report is a punishable offence which the company is about to completely implement this 12 months.
This was contained within the DG’s opening speech on the Nationwide Privateness Week 2021 press convention and the revealing of the week’s actions.
The press convention, in line with the DG was supposed to replace Nigerians on the place NITDA is when it comes to the Information Safety Regulation implementation and its projections for 2021.
Recall that the company had issued a draft Information Safety Guideline since 2013, with the target of offering a primary regulation to information using knowledge within the digital house.
Nonetheless, when the EU GDPR was issued in 2016, the then Director Normal of NITDA, Dr. Isa Ali Ibrahim Pantami, constituted a staff to evaluation the draft guideline within the gentle of worldwide developments and in addition to supply Nigerians with a practicable regulation for its implementation.
The staff made a few sensible suggestions and obtained essential help from regulation corporations, GDPR consultants and a few multinationals that made inputs by means of the NITDA Rule Making course of.
After exhausting the consultative course of, the Company issued the Nigeria Information Safety Regulation (NDPR) on twenty fifth January, 2019.
The NDPR, is designed to fulfill the worldwide, particularly GDPR rules on knowledge safety, and in addition gives distinctive and modern implementation frameworks that has made it a degree of reference in Africa and past.
The DG mentioned that following the issuance of the regulation, NITDA has taken various steps in step with its implementation technique.
In line with him, this steps embody: “Sustained Public Consciousness.
He mentioned NITDA just isn’t oblivious of the knowledge deficit of most Nigerians as regards the difficulty of information safety.
“We realized that wielding the large stick with out sufficient consciousness would result in apathy and, or revolt. Thus, our first job was to embark on sequence of public consciousness campaigns.
“We achieved large media consciousness between Might and October 2019. To this point, we’re the primary nation in Africa to dedicate a complete week to public consciousness on knowledge privateness safety.
“Our first privateness week held from twenty third – twenty eighth January, 2020, and frequently, we situation press statements and opinions. As a corporation, our officers have made shows in over 105 occasions, workshops and seminars since 2019.
“Additionally, we have now handled 1,200 questions, request for clarification and different enquiries from the general public on the difficulty of information safety.
“By our dynamic Implementation Committee, we have now organized Media Executives’ coaching and workshops for Information Safety Compliance Organizations (DPCO), Information Safety Officers, Information Breach Investigation Group (DBIT), Police Enforcement Group, and choose NITDA workers, in-house workshop for main multinationals, Regulators and trade associations.
“Implementation Construction NITDA has created a novel implementation construction for the NDPR. In contrast to the GDPR and different legal guidelines, NDPR creates a set of licensees who’ve confirmed experience in knowledge safety implementation.
“These DPCOs are licensed to supply knowledge safety compliance, audit, coaching and associated providers to all Information Controllers and Processors. To this point, we have now licensed seventy DPCOs and have obtained many extra functions that are presently being handled.
“This technique has recorded compliance from many organizations than could possibly be imagined. As an illustration, our audit experiences for the interval 2019-2020 exhibits the share of compliance among the many variety of submitting entities.
These sectors contains: Monetary Providers – 35%, Quick Transferring Shopper Items – 14%, Power – 10%
Consultancy – 9%, ICT – 8%, Transport and logistics – 5%, Others – 19%.
”Nonetheless, with the route we’re transferring on NDPR audit compliance submitting, we’re very glad that we have now set out in the appropriate means.
“Our technique of licensing DPCOs is yielding bounteous fruits as Nigeria now has extra knowledge safety specialists per capita than another African nation.
“Our survey additionally reveals that wealth is being generated by means of the DPCO scheme. Curiously, this aligns with President’s Muhammadu Buhari’s imaginative and prescient to diversify the economic system, create sustainable jobs and develop the digital economic system.
“Other than the compliance focus, we have now additionally inaugurated the Information Breach Investigation Group (DBIT). This staff is made up of IT Professionals, Legal professionals and the Police Drive.
“Their project is to analyze allegations of breach and make suggestions of actions to be taken on every case, by means of the Implementation Committee.
The Police staff can also be empowered to ask, arrest, interrogate and prosecute erring offenders.
“NITDA, by means of the help of its father or mother Ministry, has carried out quite a bit to offer authorized and political credence to the NDPR. Part 6(c) of the NITDA Act 2007 mandates the Company to develop tips for digital governance and monitor using digital knowledge interchange and different types of digital communication transactions as a substitute for paper-based strategies in authorities, commerce, schooling, the non-public and public sectors, labour, and different fields, the place using digital communication might enhance the alternate of information and knowledge.
“Right here, NITDA’s technique is to create a workable, credible implementation course of that will help the Nationwide Meeting in its quest to move a Information Safety Invoice.
“We’re proud to say the NDPR implementation has probably the most strong consultative course of in our current historical past as a nation. This autochthonous strategy has deepened the NDPR greater than we might have imagined.
“Allow me to make clear some strategic steps being taken by NITDA to proceed the strengthening of the NDPR implementation in Nigeria.
“In March 2020, NITDA, on the advice of the Honourable Minister of Communications and Digital Financial system was chosen as a member of the Technical Working Group on Information Safety Legal guidelines Harmonization and Localization in Africa hosted by the African Union Fee with help from the European Union Fee. Nigeria was appointed because the Vice Chair of this essential group.
“The boldness reposed in us by the African and European Unions has been justified by our experiential, collegial and mental inputs to the method which has endeared us to our sister nations. The import of that is that, NITDA has begun to open the doorways for our non-public sector gamers to enterprise to different nations to copy the average success we have now achieved up to now.
“One among our DPCOs organized the first Africa Information Safety Conclave that had audio system and attendees from throughout Africa and past.
“In December 2020, NITDA was appointed as full member of the Frequent Thread Community (CTN). CTN is a community of Commonwealth nations’ knowledge safety authorities. The CTN is hosted by the UK Info Commissioner’s Workplace.
“This strategic alliance would supply wanted help in capability improvement, mentoring, and cross border enforcement. The influence of this improvement might be amazingly limitless.
Whereas we await the passage of the Information Safety Invoice, NITDA will proceed to put essential constructions to deepen knowledge safety implementation in Nigeria.
“In gentle of the above, allow me to current a few of our visions for 12 months 2021 as follows: Growth of sectorial implementation toolkits – The target right here is to get sector stakeholders to agree on a single, workable template for compliance of their sector.
“Standardization of NDPR programs and trainings – We will have interaction vigorous and skilled Nigerian based mostly establishments that will assist us standardize and accredit knowledge safety and knowledge safety coaching and certification. We hope to develop a multi-billion naira sector that will create 1000’s of jobs for trainers, content material suppliers and different professionals.
“We’re additionally going to rejig our enforcement mechanism to enhance compliance. COVID-19 slowed down our enforcement imaginative and prescient in 2020, however we’re going to redouble our efforts on this route as knowledge safety has grow to be a pivot for the continued progress of the digital economic system.
“Like each different noble job, the implementation of the NDPR has been confronted with some challenges. As an illustration, our publicity and consciousness nonetheless wants extra enchancment. We are going to work extra with you, the media to upscale our efforts.
“One other situation is capability. Whereas we have now a number of very devoted workers, we nonetheless want a whole lot of capability improvement and cross-breeding of concepts. We hope to get extra partnership and help this 12 months with a purpose to fill this hole.
“Enforcement is one other bitter level. Our present efforts at enforcement is salutary however not practically sufficient. We’re contemplating all choices to make sure we don’t kill companies, whereas additionally guaranteeing companies don’t kill Nigerians by means of wanton abuse of their knowledge.
“I need to use this chance to remind all knowledge controllers and processors that the deadline for the submitting of their annual knowledge audit report is fifteenth March, 2021. Non-filing is a punishable offence, and we’re set to completely implement this provision this 12 months.”