iv.
“Data” means characters, symbols and binary on which operations are
performed by a computer, which may be stored or transmitted in the form of
electronic signals, stored in any format or any device;
viii.
“Database” means a collection of data organized in a manner that allows
access, retrieval, deletion and processing of that data; it includes but not
limited to structured, unstructured, cached and file system type databases;
ix.
“Data Administrator “means a person or an organization that processes data
x.
“Data Controller” means a person who either alone, jointly with other persons
or in common with other persons or a statutory body determines the
purposes for and the manner in which Personal Data is processed or is to be
processed;
xi.
“Database Management System” means a software that allows a computer to
create a database; add, change or delete data in the database; allows data in
the database to be processed, sorted or retrieved;
xii.
“Data Portability” means the ability for data to be transferred easily from one
IT system or computer to another through a safe and secured means in a
standard format;
xiii.
“Data Protection Compliance Organization (DPCO)” means any entity duly
licensed by NITDA for the purpose of training, auditing, consulting and
rendering services and products for the purpose of compliance with this
Regulation or any foreign Data Protection Law or Regulation having effect in
Nigeria;
xiv.
“Data Subject” means any person, who can be identified, directly or indirectly,
by reference to an identification number or to one or more factors specific to
his physical, physiological, mental, economic, cultural or social identity;
xv.
“Data Subject Access Request” means the mechanism for an individual to
request a copy of their data under a formal process which may include
payment of a fee;
xvi.
“Filing system” means any structured set of Personal Data which are
accessible according to specific criteria, whether centralized, decentralized or
dispersed on a functional or geographical basis;
5
NIGERIA DATA PROTECTION REGULATION