The National Assembly has begun moves to review and strengthen the National Data Protection Act (2023) in response to emerging cyber threats and rapid technological changes.
The review is aimed at ensuring that Nigeria’s data governance framework remains relevant amid advances in Artificial Intelligence (AI) and global cybercrime trends.
Chairman of the Senate Committee on ICT and Cyber Security, Afolabi Salisu, disclosed this on Tuesday at the opening of a three-day workshop on Data Protection Awareness for the Joint National Assembly Committee on ICT in Abuja.
The workshop was organised by the Nigeria Data Protection Commission in collaboration with Ampersand Development Partners.
Salisu said the review had become necessary following new global developments, including the rise of Artificial Intelligence and the United Nations Convention on Cyber Crimes.
He noted that there is now a strong link between data governance and cybercrime, making it important for Nigeria to strengthen its legal framework.
“We need to ensure the security of our country, particularly in the cyberspace and our data governance as well as technology advancement like AI,” he said.
The senator stressed that lawmakers must be well-informed in data privacy issues to effectively draft and amend relevant laws.
“You cannot legislate in an area that you are not sufficiently knowledgeable in,” he added.
According to him, the workshop will help legislators better understand modern data protection principles and assess the effectiveness of the current law three years after its enactment.
He said the review process would also compare Nigeria’s framework with global standards and emerging best practices.
“At the end of this exercise, we would be able to come up with a roadmap and a timeline to review the National Data Protection Act,” he said.
Salisu also urged Nigerians to be more conscious of their personal data, warning that many free digital services often come at the cost of users’ information.
He noted that several applications and free WiFi services collect user data without many people fully understanding the implications.
Also speaking, Chairman of the House Committee on ICT and Cyber Security, Stanley Olajide, described data as a critical national asset in today’s digital economy.
He said Nigeria’s future economic strength would depend more on data than crude oil.
“Whatever data that we have is our sovereign wealth; it is something that belongs to us. How do we protect it?” he said.
Olajide stressed the need for strong legal frameworks to ensure that individuals, companies or foreign entities are held accountable for breaches involving Nigerian data.
He compared data sovereignty concerns to global practices, noting that countries such as the United States have strict data laws governing information stored within their jurisdiction.
“In the U.S., they have their data law. If you put anything in their cloud, it’s owned by the United States,” he said.
He added that Nigeria must ensure that data generated within its territory is properly protected under national laws.
The lawmaker said strengthening data protection legislation would also boost investor confidence and support the country’s digital economy ambitions.
