Home » NITDA » NITDA hits ESL with new N5m fine, to oversee ESL for 6 months
e-Nigeria digital economy nitda GITEX 2020 Digital Nigeria

NITDA hits ESL with new N5m fine, to oversee ESL for 6 months

NITDA says it has fined Electronic Settlement Limited N5 million for data protection breach and has also placed the company under a six-month information technology oversight by the Agency. ESL has taken full responsibility


IT News Nigeria:

The National Information Technology Development Agency (NITDA) has announced a N5 million fine on Electronic Settlement Limited for data protection breach and 6 months information technology oversight on the company.

This is according to a release signed today by Mrs Hadiza Umar, Head, Corporate Affairs and External Relations at NITDA.

It added that this was following conclusion of its investigation process on the personal data breach by Electronic Settlement Limited.

“The investigative process involved an analysis of the company’s applications and websites; visit to the company’s office in Lagos, review of its technical documents as submitted to the Agency and interrogation of its officials by NITDA investigation team in Abuja. At the end of the process, we have established that there was a data breach involving the company.
The statement also revealed that in compliance with the NDPR and the need to prevent a repeat of this unfortunate breach, NITDA has directed as follows:

  1. Electronic Settlement Limited shall be under a six-month information technology oversight by NITDA. The oversight shall involve oversight of implementation of prescribed security controls and processes.
  2. That a clear data security and governance document is drawn up between the Electronic Settlement Limited and all its Information Technology services vendors identifying roles, responsibilities and processes involved in securing and protecting personal data.
  3. That the company conduct regular NDPR training for all staff, publish and implement appropriate policies as required by the NDPR.
  4. Submit 2020/2021 regulatory audit as required by Article 4.1.6 of the NDPR, conducted by a Data Protection Compliance Organization (DPCO) as licensed by NITDA.
  5. Conduct Data Protection Impact Assessment on some data intensive applications and products.
  6. Payment of the sum of Five million Naira only (5, 000, 000. 00) as fine in line with the requirements of the NDPR.
    NITDA said it is therefore using this opportunity to encourage every data controller and processor to embark on necessary measures to protect personal data. The Agency has graciously approved the extension of time to file the annual audit report to 30th June, 2021. We further reaffirm our continued commitment to implementing the NDPR vigorously and providing periodic updates to the public with regards to our activities and investigations in discharge of our mandate.
READ ALSO  NITDA Calls for Applications into the Nigeria COVID-19 Innovative Challenge
nitda kashifu Digital Nigeria
NITDA DG, Kashifu Inuwa

Leave a Reply

Your email address will not be published. Required fields are marked *



Check Also

NITDA DG reveals new ways to achieve digital transformation

NITDA DG says to achieve digital ...


NITDA reveals new policies implementation to harness Digital Ecosystem

NITDA says it is implementing key ...

Economic Diversification central to prosperity – DG NITDA

The Director General, National Information Technology ...


NITDA Sets new Deadline for Filing Data Audit Reports

NITDA has set March 15 2021 ...

NITDA, Nigeria Army forge new Research and Development alliance

NITDA says it is forming strategic ...