CHAPTER ONE

1.0 OBJECTIVES
The objectives of this Regulation are as follows:
a)

to safeguard the rights of natural persons to data privacy;

b)

to foster safe conduct of transactions involving the exchange of personal

data;
c)

to prevent manipulation of personal data and

d)

to ensure that Nigerian businesses remain competitive in international

trade; through the safeguards afforded by a just and equitable legal regulatory
framework on data protection and which regulatory framework is in tune with
global best practices
1.2 SCOPE OF THE REGULATION
a) this Regulation applies to all transactions intended for the processing of personal
data and to actual processing of personal data notwithstanding the means by
which the data processing is being conducted or intended to be conducted and in
respect of natural persons in Nigeria;
b) this Regulation applies to natural persons residing in Nigeria or residing outside
Nigeria but of Nigerian descent and
c) this Regulation shall not operate to deny any Nigerian or any natural person the
privacy rights he is entitled to under any law, regulation, policy, contract, for the
time being in force in Nigeria or in any foreign jurisdiction.
1.3 DEFINITIONS
In this Regulation, unless the context otherwise requires:
a) “Act” means the National Information Technology Development Agency Act of
2007;
b) “Computer” means Information Technology systems and devices, whether
networked or not;
c) ‘Consent’ of the data subject means any freely given, specific, informed and
unambiguous indication of the data subject's wishes by which he or she, by a
statement or by a clear affirmative action, signifies agreement to the processing
of personal data relating to him or her;
4

Select target paragraph3