The Nigeria Data Protection Commission (NDPC) has reopened the registration for organisations interested in becoming data-protection compliance organisations (DPCOs). This decision is part of NDPC’s commitment to fostering a culture of accountability and transparency in data processing practices across Nigeria.
The registration portal, previously closed in 2023, has been revamped to accommodate new DPCO applicants. Through a robust public-private partnership model, NDPC licenses private organisations to monitor, audit and report on compliance by data controllers and data processors as per Section 33 of the Nigeria Data Protection Act, 2023.
This unique model, exclusive to Nigeria, has drawn attention from data protection authorities worldwide.
With an estimated 500,000 data controllers operating in Nigeria, the demand for DPCOs has never been higher. Currently, NDPC has licensed around 183 DPCOs, leaving significant room for additional partnerships.
Beyond regulatory compliance, NDPC envisions the registration of new DPCOs as a catalyst for nurturing a robust data protection culture in Nigeria. By promoting awareness, conducting audits, ensuring compliance and enhancing capacity-building initiatives, DPCOs contribute to safeguarding individuals’ privacy rights, fostering trust and confidence in the digital space and upholding legal and ethical standards in the data protection and privacy ecosystem.
A statement by the bureau’s acting head, legal, enforcement & regulations, Adamma Isamade encouraged prospective DPCOs to visit services.ndpc.gov.ng to begin the registration process.
