The Nigeria Data Protection Commission (NDPC) has commenced an investigation into an alleged data breach involving the Corporate Affairs Commission (CAC).
Gatekeepers News reports that the Commission said the probe is being carried out under Section 46(3) of the Nigeria Data Protection Act, 2023 (NDP Act), highlighting the need to preserve trust and integrity in Nigeria’s digital and economic ecosystem.
NDPC expressed concern over the evolving tactics of cyber threat actors, noting that malicious actors are constantly developing new methods to breach the security systems of critical national databases.
“The investigation of the instant case will, inter alia, cover the procedures and outcomes of Access Control Mechanisms, Data Privacy Impact Assessments, Vulnerability Assessment and Penetration Testing (VAPT), as well as due diligence on third-party data processors,” the Commission stated.
Despite the development, the NDPC reassured the public that the country’s data protection frameworks remain robust, both technologically and institutionally. It added that the increasing use of data-driven services reflects sustained public confidence in Nigeria’s digital infrastructure.
