Regulatory Alerts2019-01-01
SEC Nigeria Data Privacy and Protection Policy
The Securities and Exchange Commission in Nigeria issued this policy to regulate the automatic and voluntary collection, processing, and secure storage of personal data from website visitors and service users. It requires explicit user consent for data processing, mandates technical safeguards like SSL/TLS encryption and firewalls, and restricts third-party disclosures unless legally required or contractually bound. Upon a data breach, the Commission must notify affected individuals via email or site alerts within seven business days and honor legally enforceable redress claims submitted with at least fourteen days written notice under the Nigerian Data Protection Regulation 2019.
Share