Compliance Requirement: The NDPA regulation requires that Data Controllers and Data Processors
- Engage a Data Protection Compliance Organization (DPCO) to perform a Data Protection Audit and file a report with NDPC within the stipulated timeline.
- Suppose you collect and process personal information of more than 200 Nigerians in 6 months. In that case, you are MANDATED to register with the NDPC following Section 5(d) of the Nigeria Data Protection Act of 2023. Failure to comply with the registration requirements constitutes an offense punishable by law. It is illegal to process personal data without proper registration.
- Designate a Data Protection Officer responsible for driving NDPR compliance initiatives within the organization.
- Ensure continuous capacity building and training for Data Protection Officer and other personnel processing personal data.
- Document and publish a data protection policy in line with the requirements of the Data Protection Act.
Our Services
IET is licensed as a Data Protection Compliance Organization (DPCO) to provide Data Protection Services in Nigeria. With our expertise, we are well positioned to assist your organization with your Data Protection Compliance needs.
Our services in the data protection compliance space include:
Registration of Data Controllers and Processors of Major Importance
Registration of Data Controllers and Processors of Major Importance : If you are an entity or individual whether resident in Nigeria or not but in your operations; collect and process personal information of more than 200 Nigerians within 6 months, you are 𝐌𝐀𝐍𝐃𝐀𝐓𝐄𝐃 to register with the NDPC in accordance with Section 5(d) of the Nigeria Data Protection Act of 2023. We make this process seamless and provide advisory.
Remediation Plan Implementation
Following a comprehensive audit, we work closely with your team to implement necessary changes and enhancements to ensure swift compliance with data protection regulations.
Audit
services
We identify and prioritize areas of non-compliance and develop targeted action plans to address each non-compliant aspect, including necessary policy and process updates with a thorough review of data optimization, processing activities, including collection, storage, sharing, and retention, as aligned with NDPA principles. We document and file audits with the Commission.
Training, Skills Acquisition & Capacity Building
We believe in empowering your team to become proficient in data protection practices. Our training programs cover a spectrum of topics, equipping your staff with the knowledge and skills needed to uphold and sustain robust data security measures.
Special Services
We develop tools for security, compliance, and verification to make the Internet a safer place. Trusted by thousands of organizations, our solutions ensure security, meet compliance requirements and facilitate entry into new markets.
DPIA (Data Protection Impact Assessment)
Conducting thorough DPIAs to assess and mitigate risks associated with processing personal data, ensuring your operations align with regulatory expectations.
DPO as a Service
Provision of Data Protection Officer services, offering ongoing guidance, oversight, and expertise to support your company in maintaining compliance.
Technical Policies, Notices, Schedules, Procedures, Standards, Design & Implementation
Crafting and implementing a comprehensive set of technical policies, notices, schedules, procedures, and standards tailored to your business needs, ensuring a structured and secure data environment