DATA PROTECTION LEGISLATION: WHICH WAY NIGERIA?
information technology thieves and safeguarding citizens’ right to privacy.
The urgent need for a data protection law in Nigeria at this time cannot be overemphasised. Enacting the law inter alia will boost confidence in the information technology industry; it will create opportunities for infotech entrepreneurs particularly in the areas of outsourcing and cloud computing and by extension, create jobs for unemployed youths.
The law must be all-inclusive such that it will set out the rules for data protection and privacy principles as well as rights of individuals and how those rights can be protected. In the same vein, it must provide for how individuals or organisations can seek redress whenever their rights are violated. Furthermore, there should be legitimate basis for individuals to determine how their personal data is being processed. If perceived to be against their interest, they should have a right to object.
A data protection agency should also be created as an offshoot of the law; this will be the regulatory authority similar to the role of the Data Protection Commission in the United Kingdom. The agency will be saddled with the responsibility of effective control and regulatory oversight, hence the body will ensure that personal data of citizens are treated and managed in accordance with data protection principles.
It behoves on the 8th National Assembly to settle down to serious business for which they were elected and with the input of experts in the industry, draft a comprehensive, functional and effective data protection legislation to take care of the information technology sector. Without this, Nigeria will be playing catch up with the rest of the world.