The National Information Technology Development Agency, NITDA, says the Nigeria Communications Commission, NCC’s recent data regulation on telecommunications companies are in line with the Nigerian Data Protection Regulation, NDPR.
The Director-General of NITDA, Kashifu Inuwa stated this reacting to a publication titled: “New NCC Directive will push telecoms to violate the NDPR’ on October 18”.
The statement signed by Director General, he said that the NCC’s directive is to ensure that the telecommunication companies store and make available recordings of communications carried out over their network.
According to him, such directive is in line with the provisions of the NDPR.
Mr Kashifu said: “The right to privacy, which the NDPR seeks to protect, is established by Section 37 of the 1999 Constitution as amended. It emphasises that in a democratic society, there is right to privacy protection subject to justifiable law for public safety and order.”
“The provisions of the NDPR are in agreement with the European Union General Data Protection Regulation (GDPR) which focuses on prevention of threats to public security.”
“NDPR provides multiple bases for processing of personal data, while all data processing must be founded on legitimate interest, consent of data subject, legal interest, and contract of parties, public interest and vital interest of the data subject. The NCC’s directive is predicated on legitimacy and public interest,” Director-General of NITDA said.
He stressed that the Nigerian Government, under the leadership of the current Minister of Communications Dr. Isa Pantami, is committed to protecting citizens’ data, increase opportunities and improve the ease of doing businesses in the IT sector.
Mr. Kashifu also said that NCC was among other relevant stakeholders working hard to implement the NDPR, as there is a consensus that the Regulation, is at the moment the country’s most comprehensive law on data protection.
The Director-General explained that the move was because “there is an ongoing ‘consensus that the regulation is the country’s most comprehensive law on data protection”.
NDPR was established in January 2019 to ensure privacy data protection and avoid violations by data providers, among other requirements.