Why data protection, privacy matters to Nigeria’s digital economy

In today’s digital age, it is critical to understand and connect the dots to why data protection and privacy matters to Nigeria’s digital economy.

As Nigeria continues to evolve more into a digital economy, the need to safeguard personal information and ensure the responsible use of data has become a pressing concern.

This is so because data protection and privacy are essential components of a digital economy. However, as the country continues to grow and develop, it is crucial that we connect the dots between data protection and privacy.

In connecting the dots between data protection and privacy, stakeholders in the Nigerian data protection ecosystem converged on Lagos for the third edition of the PrivCon conference 2025, themed, ‘Cybersecurity and privacy in Nigeria: Connecting the dots.’

PrivCon, convened by Olamide Babalola, is a gathering of Nigeria’s privacy and data protection professionals.

However, for many of the professionals present at the 2025 PrivCon, the conversation is no longer why data protection and privacy should matter to Nigeria’s digital economy.

Rather, it is about collaboration between the private and public sector on the one hand, and the technical/legal on the other hand; to establish a robust data protection framework that safeguards personal information and promotes trust in Nigeria’s digital economy.

Jamila Akaaga Ade, head, Cybercrime Unit, Federal Ministry of Justice, said the office of the Attorney General is fully committed to ensuring that the laws related to cybercrime in Nigeria are robust, and that they are aligned to regional and international standards.

According to her, the Attorney-General of the Federation and minister of Justice, Lateef Fagbami, constituted a Joint Case team on Cybercrimes (JCCC), as part of his commitment to reform the legal system.

She disclosed that the minister is set to launch the JCCC, as a pilot program for inter-agency collaboration on cybercrime.

According to her, JCCC will bring together all the relevant actors in the criminal justice sector, including the Federal High Court, which currently has jurisdiction over cybercrime matters in Nigeria.

“And one of the things that we’re doing is the fact that we’ve understood that a lot of times it’s very important to carry along the legislative arm, because laws cannot be made from an uninformed position,” she said.

Lawal Pedro, Attorney-General & Commissioner for Justice, Lagos State, stated that digital privacy, though often perceived as a minor offence, is a silent but powerful economic threat.

“This year’s theme, cybersecurity and privacy in Nigeria: connecting the dots, is both timely and thought provoking, particularly in an era where technology shapes almost every aspect of our lives.”

According to him, the legal profession must take an active role, not only in prosecution, but also in shaping policies, advising businesses, and strengthening regulatory mechanisms to mitigate this threat.

Pedro, who was represented by Adebayo Abdul, stated that both public and private institutions have suffered severe breaches with critical data being compromised.

“In Nigeria, the rise in cybercrime presents a significant challenge with hacking, data breaches, financial fraud, and ransomware attacks becoming alarmingly frequent.”

According to the Lagos State commissioner for justice, cybersecurity breaches, digital privacy, and data protection concerns are no longer mere technical inconveniences, but pressing legal and economic challenges that demand urgent attention.

“Our goal was to build a Nigeria where digital security is not a privilege but a standard, where intellectual property is respected and where data is protected with the seriousness it deserves. Together, we must connect the dots and cross the path towards a safer and more resilient digital future.

“The stakes are never higher. Cybercriminals are exploiting vulnerabilities, data violence, and undermining intellectual property rights. And inadequate data protection leaves individuals and businesses exposed to significant risks.

“The question we must ask ourselves is whether these issues are truly separate or simply different manifestations of the same underlying problem. Cyber security is not just about firewalls and encryption. It is the foundation of a secure digital economy,” Pedro stated.

Great Ijomah, a GRC analyst and senior corporate attorney, Xcene Research, said Nigerian businesses and organisations must proactively align with data protection laws to remain competitive in the global digital economy, while preparing for stricter enforcement.

According to him, this means complying with the Nigeria Data Protection Act (NDPA), adopting privacy-by-design frameworks, and implementing SCCs, BCRs, and codes of conduct.

Additionally, he said companies should advocate for legal clarity that balances national security concerns with data privacy rights.

Speaking during a panel session on ‘Data Localisation vs. Cross Border Data Transfers: Striking a Balance in Nigeria’, Ijomah disclosed that Nigeria has made significant progress in data privacy regulation, aligning legislative framework with global standards.

Ijomah, with over a decade of experience in risk management and corporate compliance, said that the Nigeria Data Protection Act (NDPA) 2023 and related regulations provide a solid foundation comparable to international best practices, in relation to why data protection, privacy matters to Nigeria’s digital economy.

He said that strengthening judicial oversight, refining compliance mechanisms, and ensuring transparency in regulatory enforcement will be key to achieving a thriving, innovation-friendly digital landscape.

“Ultimately, Nigeria’s data protection ecosystem must not only meet international standards but also foster investor confidence and drive economic growth,” he said.

Peter Adewale Obadare, keynote speaker, said data protection is a subset of cybersecurity that is considered a technical issue, while data privacy is purely a legal issue. According to him, data protection is a journey, and not a destination.

Obadare, who is also the founder and chief visionary officer of Digital Encode Limited, said that cybersecurity is about securing data, while data privacy is about authorized access, which underscores why both data protection and privacy matter to growing Nigeria’s digital economy.

“But when data protection or cybersecurity is lost, your privacy is totally gone. So, connecting the dots means that we need the intersection between the technical and the legal.”

Taiwo O. Taiwo, a retired judge of the Federal High Court, advocated for compensation for victims of cybersecurity and privacy in Nigeria. He said that there must be a dichotomy between cybercrime and privacy of the individual.

“What I am saying is that in that Cybercrime Art and I think I cited it in my judgment; there is no compensation for the poor lady. Something has to be done about that.”