TechPression

Tag: Data Protection

  • Kenya to host NADPA conference on data protection

    Kenya to host NADPA conference on data protection

    Kenya is set to host the NADPA conference from May 7 to 9, 2024, providing a pivotal platform for knowledge exchange and collaboration among African data protection authorities. 

    The conference, organised by the Network of African Data Protection Authorities (NADPA), serves as a vital forum for privacy and data protection authorities from different regions to convene and discuss pressing issues in the field.

    With the rapid digitisation of economies across the continent, data protection and privacy have become increasingly paramount. The conference aims to address emerging challenges and opportunities in data protection while fostering cooperation among member countries.

    Read also: Explore Tech’s most significant event at GITEX Africa 2024 Live – the ultimate Startup show

    Kenya‘s Plans for the NADPA Conference

    The event will feature panel discussions, workshops, and keynote presentations covering various topics, including regulatory frameworks, enforcement mechanisms, emerging technologies, and cross-border data transfers. Participants can share insights, best practices, and lessons learned from their respective jurisdictions, contributing to developing comprehensive and effective data protection policies.

    The significance of hosting the conference in Nairobi, Kenya’s vibrant capital city, cannot be overstated. Nairobi has emerged as a leading hub for technology and innovation in Africa, attracting startups, multinational corporations, and tech sector investments. By hosting the NADPA conference, Kenya reaffirms its commitment to promoting data protection and privacy rights while showcasing its position as a leader in the digital economy.

    Role of Media and Data Commissioner

    Principal Secretary at the State Department for Information and Communications Technology (ICT), John Tanui, emphasised Kenya’s readiness to host the conference and its dedication to advancing data protection initiatives on the continent. He highlighted the importance of collaboration among data protection authorities in addressing shared challenges and ensuring the responsible use of data across borders.

    Tanui said, “Participants can look forward to delving into the nuances of data protection trends across various African countries, gaining insights into best practices, and fostering partnerships to advance data protection initiatives on the continent,” Tanui added. 

    Read also: USTDA’s grant enhances Kenyan Internet Infrastructure development

    In addition to addressing regulatory challenges, the conference will explore the role of technology in enhancing data protection measures. Topics such as artificial intelligence, blockchain, and cybersecurity will be discussed, highlighting the opportunities and risks associated with emerging technologies in the context of data privacy.

    Overall, the NADPA conference presents a unique opportunity for African data protection authorities to collaborate, innovate, and strengthen their efforts to safeguard data privacy rights in an increasingly digital world. As Kenya prepares to host this landmark event, all eyes are on Nairobi as it takes centre stage in shaping the future of data protection in Africa.

  • NIMC charges FEPs for Inclusion, data protection

    NIMC charges FEPs for Inclusion, data protection

    The National Identity Management Commission (NIMC) plays a pivotal role in Nigeria’s efforts towards comprehensive identity management and data protection.

     In recent times, the NIMC has intensified efforts to ensure the inclusion of all eligible individuals into its database while also emphasising the importance of data protection. This article delves into the charges levied by NIMC on Foreign Enrollment Partners (FEPs) for inclusion initiatives and the significance of robust data protection measures.

    Read also: NIMC unveils self-service, identify cards solutions for Nigerians 

    Charges Imposed by NIMC on FEPs

    NIMC has implemented a fee structure for FEPs involved in the enrollment of foreign nationals and persons of Nigerian descent in the National Identity Database. These charges are aimed at ensuring sustainable funding for identity management initiatives and enhancing the efficiency of enrollment processes. FEPs are required to pay licensing fees, enrollment fees per individual, and annual maintenance fees to NIMC.

    FEPs are mandated to pay licensing fees to obtain the necessary authorization to carry out enrollment activities on behalf of NIMC. These fees contribute to the administrative costs associated with regulating and monitoring the activities of FEPs. Additionally, licensing fees serve as a means for NIMC to assess the credibility and capacity of FEPs to uphold data protection standards.

    Enrollment Fees per Individual: FEPs are charged enrollment fees for each individual registered in the National Identity Database through their services. This fee structure ensures that FEPs bear a proportionate cost based on the volume of enrollments they facilitate. It also incentivizes FEPs to streamline their operations and prioritize the inclusion of eligible individuals efficiently.

    Annual Maintenance Fees: NIMC imposes annual maintenance fees on FEPs to sustain ongoing support and maintenance of the infrastructure and systems utilized for identity enrollment and verification. These fees contribute to the upkeep of databases, software updates, and technical support services provided to FEPs. By imposing annual maintenance fees, NIMC ensures the continued functionality and security of identity management systems.

    Data protection is a fundamental aspect of identity management, particularly in the digital age where personal information is increasingly vulnerable to breaches and misuse. NIMC recognizes the critical importance of safeguarding the privacy and security of individuals’ identity data within the National Identity Database. Here are key considerations regarding data protection:

     NIMC upholds strict confidentiality measures to prevent unauthorized access to individuals’ identity information. Encryption, access controls, and audit trails are implemented to ensure that only authorized personnel can retrieve or modify data within the National Identity Database.

    IntegrityMaintaining the integrity of identity data is essential to prevent tampering or unauthorized alterations. NIMC employs data validation techniques and checksums to verify the accuracy and consistency of information stored in the database. Any suspicious activity or data discrepancies are promptly investigated and rectified.

    NIMC adheres to relevant data protection laws and regulations to uphold the rights of individuals and ensure the lawful processing of personal data. FEPs are required to comply with stringent data protection standards and undergo regular audits to assess their adherence to compliance requirements. Non-compliance may result in penalties or revocation of licensing privileges.

    In conclusion, NIMC’s imposition of charges on FEPs for inclusion initiatives and emphasis on data protection underscores its commitment to advancing identity management practices in Nigeria while safeguarding individuals’ privacy and security. By establishing a robust regulatory framework and promoting collaboration with stakeholders, NIMC strives to foster trust and confidence in the National Identity Database as a cornerstone of national development.

  • Data Protection Stakeholders to speak at ‘PrivCon Nigeria 2023’

    Data Protection Stakeholders to speak at ‘PrivCon Nigeria 2023’

    The Law Firm of Olumide Babalola LP will organise the first edition of her annual privacy and data protection conference, “PrivCon Nigeria,” on March 22, 2023, at the AGIP hall in the Muson Centre in Lagos, Nigeria. The conference will centre on privacy and data security concerns.

    The theme of the conference is “Building Foundations of Privacy and Data Protection Practice for Nigerian Business Community: Stakeholders Role-Playing,” and it will focus on stakeholders in the Nigerian business community. It promises to be a ground-breaking event in which privacy specialists and industry stakeholders will meet, network, and share ideas on a wide range of issues affecting privacy and data protection law and practise in Nigeria.

    Read also: Data Privacy and Protection receive more adoption in Africa

    PrivCon Nigeria setting for 2023

    There are going to be a lot of speakers at the event, including the Honorable Justice Ibironke Harrison, who is a judge at the High Court of Lagos State; Uche Val Obi, who is a Senior Advocate of Nigeria; Prof. Simisola Akintola, who is the Dean of the Faculty of Law at the University of Ibadan; Fejiro Hanu Agboje, who is the CEO of Patricia, which is an e-commerce platform; Babatunde (you can view the whole roster of presenters on the website)

    Data breaches in Nigeria, their prevention and damage control, sensitive personal data and extra level of protection, and privacy score card in Nigeria are some of the topical issues that will be discussed by stakeholders at the conference. Other important topics include the transfer of data across international borders; the roles of data protection officers; and the success indicators for their work.

    The event is being generously supported by Templars Law Firm, Alliance Law Firm, Olisa Agbakoba Legal, Complilearn of Singapore, Ao2Law, Data Protection Awareness Initiative, Lawpavillion electronic law report, Famsville Solicitors, Oguntoye & Oguntoye, DPO Placement & Consultancy Limited, Stakeholders in Blockchain Technology Association of Nigeria, and Digital Rights Lawyers Initiative, amongst other organisations.

    The issues with Privacy and Data protection

    The protection of personal data is of the utmost significance because it is an essential component of safeguarding the life, integrity, and human dignity of customers; despite efforts to ensure security, there are still certain obstacles to overcome.

    Rapid technology improvements pose several privacy and data protection issues. Technology makes life easier, but it also collects and processes a lot of personal data quickly. The Internet of Things allows people to measure their physical activity with wearable fitness monitors, turn on the heat or electricity before they get home, and remotely unlock their doors for visitors.

    Another set of issues arises from technology outpacing the law. Many states have data protection laws, however, some are not updated to reflect technological advances. New technology laws are difficult. Most regulations are silent on whether a human driver is required for self-driving automobiles.

    Botswana: A new data protection law takes effect.

    Data ethics—beyond legal compliance—presents additional hurdles. Today’s data-driven world requires ethical data processing. Algorithmic biases can reinforce social and cultural biases and lead to discrimination. Several national immigration systems incorporate automated decision-making, predictive policing for security, and biometric recognition software at border crossings. Ethically, such projects must be fair, transparent, unbiased and based on strong legal systems.

    Despite global regulatory efforts, much needs to be done. If they haven’t already, states should ratify Convention 108 to show they value privacy and data protection. To secure the personal data of all citizens, including migrants, comprehensive national data protection legislation and an independent data protection authority are necessary.

    Finally, data protection and privacy are tied to migrant dignity and the right to privacy, autonomy, and control over personal data. Protecting migrant privacy and data is part of the solution.

    The first edition of Privacy and Data Protection Conference is a good initiative towards security of data and privacy. Free participation in PrivCon Nigeria is available onsite as well as online; however, those interested must register at the website www.privconnigeria.org.

  • Nigeria Data Protection Bureau creation a blessing or a curse

    Nigeria Data Protection Bureau creation a blessing or a curse

    All over Africa and the world, many public and private bodies have migrated their respective businesses and other information systems online.

    Nigeria is not exempted as Information solutions in both the private and public sectors now drive service delivery in the country through digital systems. This has increased the importance of having an institution that focuses on data protection and privacy.
    NDPR (Nigeria Data Protection Regulation)

    The Nigeria Data Protection Regulation (NDPR) of 2019, as a subsidiary legislation to the National Information Technology Development Agency (NITDA) Act 2007, has increased awareness about the need for data protection and privacy.

    The NDPR was issued by the National Information Technology Development Agency (NITDA). The NDPR makes provision for the rights of data subjects, the obligations of data controllers and data processors, transfer of data to a foreign territory among others.
    NDPB (Nigeria Data Protection Bureau)

    Upon the request of the Minister of Communication and digital economy Prof. Isa Ali Ibrahim (Pantami) President Muhammadu Buhari has approved the establishment of the Nigeria Data Protection Bureau (NDPB).

    The Bureau will be responsible for consolidating the gains of the NDPR (Nigeria Data Protection Regulation) and supporting the process for the development of primary legislation for data protection and privacy.

    It is hoped that this move by the Nigerian government would be the starting point of its embrace of tech start-ups as policies it implemented in the past few years have directly strangled the growth of Tech start-ups in the country.
    Infrastructure Deficit Kills Tech Start-ups in Nigeria.

    In June 2018, Omotola Onifade, a software developer who graduated from a private university in Ogun State, left the shores of Nigeria for Canada to start an online grocery delivery start-up.

    He had tried to launch a similar start-up in Lagos in 2015 but it failed after less than a year of operation. He said multiple challenges, including poor electricity to keep the groceries fresh at all times, logistical problems, and high running expenses swept the business off its feet.

    Factors that Weaken Nigerian Tech Sector

    Despite the significant moves made by the government many weaknesses still plague the Tech sector. Among them are that:

    • Few targets have been set by the government for Nigeria’s tech sector development.
    • Nigerian regulations lag behind in addressing digital challenges and framing the ICT and tech entrepreneurship domain in the country.
    • Where objectives have been indicated, the activities to reach them are poorly formulated.
    • There is little evidence of local innovation and development of technology
    • No national programs have been charged with popularizing technology or creating a favourable environment for related research.
    • No real effort has gone into developing a national system for scientific and technologic activities, although access to such a system is a prerequisite for technology development.
    • Nigeria’s reputation of policy volatility has created a risk-averse attitude from potential investors in the tech space, both locally and internationally.

    Federal Government of Nigeria Strangling the Development of the Tech Sector.
    On the 5th of February 2021, a directive issued by the Central Bank of Nigeria (CBN) announced a ban on the exchange of cryptocurrency, going further by asking banks to immediately close accounts that had exchanged cryptocurrency.

    Although the CBN justified its directive by citing a high risk of fraud in the crypto market, John Colston, Chief Marketing Officer of Yellow Card Financial, a popular crypto exchange platform with 50 percent of Nigerian users, says, “there are many tools and software in the market that can be used to track and audit vast amounts of chain crypto data, making it almost impossible to successfully get away with crypto fraud.”

    Some months after the crypto ban, the government took several further measures which experts say may endanger the growth of Nigeria’s Fintech scene.
    In April 2021, the government stopped Fintech from offering Bank Verification Numbers – a security measure against money laundering, fraud, and other forms of corruption – as a service.

    In the same month, the Securities and Exchange Commission of Nigeria (SEC) warned Nigerians against investment technology platforms such as Bamboo and Chaka that allow users to trade in foreign stocks.

    The government has presented these policies as a way to strengthen the nation’s economy, but there are lingering questions about whether the government is cracking down on a sector that played a key role in recent anti-government protests.

    Conclusion

    Nigerian regulations lag behind in addressing digital challenges and framing the ICT and tech entrepreneurship domain in the country. The main reason for this is that tech start-ups are quite recent and authorities with executive powers are not all informed enough to steer the right discussions.

    The lack of clarity and established implementation guidelines are other challenges. Unilateral, and impulsive regulations by the Lagos State Government in the past two years have adversely affected tech companies such as Gokada and Uber to mention a few.
    Collaboration, engagement, and consultation with the tech community is imperative if the Tech sector in Nigeria is to experience real growth.