PART ONE
1.1
OBJECTIVES OF THE REGULATION
The objectives of this Regulation are as follows:
a) to safeguard the rights of natural persons to data privacy;
b) to foster safe conduct for transactions involving the exchange of Personal Data;
c) to prevent manipulation of Personal Data; and
d) to ensure that Nigerian businesses remain competitive in international trade
through the safe-guards afforded by a just and equitable legal regulatory
framework on data protection and which is in tune with best practice.
1.2
SCOPE OF THE REGULATION
a) this Regulation applies to all transactions intended for the processing of Personal
Data, to the processing of Personal Data notwithstanding the means by which
the data processing is being conducted or intended to be conducted in respect of
natural persons in Nigeria;
b) this Regulation applies to natural persons residing in Nigeria or residing outside
Nigeria who are citizens of Nigeria;
c) this Regulation shall not operate to deny any Nigerian or any natural person the
privacy rights he is entitled to under any law, regulation, policy, contract for the
time being in force in Nigeria or in any foreign jurisdiction.
1.3
DEFINITIONS
In this Regulation, unless the context otherwise requires:
i.
“Act” means the National Information Technology Development Agency Act of
2007;
ii.
“Computer” means Information Technology systems and devices, networked
or not;
iii.
‘Consent’ of the Data Subject means any freely given, specific, informed and
unambiguous indication of the Data Subject's wishes by which he or she,
through a statement or a clear affirmative action, signifies agreement to the
processing of Personal Data relating to him or her;
4
NIGERIA DATA PROTECTION REGULATION