The Nigeria Data Protection Commission (NDPC) has launched the Meta-Supported Initiatives for Data Protection (M-SIDP), a strategic programme aimed at strengthening data privacy awareness, regulatory compliance and institutional capacity across Nigeria’s digital ecosystem.
The initiative follows the conclusion of regulatory proceedings involving Meta Platforms Inc., the parent company of Facebook, Instagram and WhatsApp, over concerns relating to the processing of personal data belonging to Nigerian users. The matter was resolved in 2025 through a court-approved settlement.
Under the agreement, Meta committed to supporting a two-year programme of public-facing data protection measures designed to advance the objectives of the Nigeria Data Protection Act (NDP Act) 2023, the General Application and Implementation Directive (GAID), and the NDPC Strategic Roadmap and Action Plan (SRAP) 2023–2027.
Announcing the initiative, the Commission said the programme would strengthen safeguards for data subjects while promoting responsible data processing practices among organisations operating in Nigeria.
According to a statement signed by the Head of the NDPC Media Unit, Itunu Dosekun, the programme will focus on governance, research and development, safety and sustainability mechanisms for technology ecosystems, capacity building for Data Protection Officers (DPOs) and Data Protection Compliance Organisations (DPCOs), as well as public awareness campaigns targeted at vulnerable groups.
The Commission stated, “As part of the settlement, Meta committed to supporting a two-year programme of public-facing data protection measures that aligns with the objectives of the Nigeria Data Protection Act, 2023 (NDP Act), the NDP Act General Application and Implementation Directive (GAID) and the NDPC Strategic Roadmap and Action Plan (SRAP) 2023–2027.”
The NDPC stressed that the settlement does not limit its regulatory authority.
“Nothing in this settlement limits the Commission’s independent statutory powers as we continue to exercise our regulatory mandate in relation to data processing activities in Nigeria, in accordance with the NDP Act and other applicable laws,” it stated.
The development comes amid rising global scrutiny of technology companies over data privacy practices, with regulators in regions including the European Union and the United States tightening enforcement against breaches and non-compliance.
Nigeria has also intensified efforts to strengthen its privacy framework following the enactment of the Nigeria Data Protection Act in 2023, which established the NDPC as an independent regulator empowered to monitor compliance, investigate violations and impose sanctions.
Industry experts warn that increasing digital adoption across banking, telecommunications, e-commerce, healthcare and public services has heightened risks of identity theft, cybercrime and unauthorised data sharing.
The NDPC has in recent years stepped up enforcement actions against organisations that violate data protection rules, while also expanding accreditation for Data Protection Compliance Organisations and training for privacy professionals.
The Meta-supported initiative is expected to address gaps in public awareness and technical capacity, while also supporting research and policy development on emerging issues such as artificial intelligence, cross-border data transfers and platform governance.
The Commission said it would provide periodic updates on the implementation of the programme and called on stakeholders to support efforts to build a secure, transparent and accountable privacy ecosystem in Nigeria.
We’ve got the edge. Get real-time reports, breaking scoops, and exclusive angles delivered straight to your phone. Don’t settle for stale news. Join LEADERSHIP NEWS on WhatsApp for 24/7 updates →
Join Our WhatsApp Channel
