The Federal Government has launched an investigation into the data processing activities of global e-commerce platform Temu over alleged violations of the Nigeria Data Protection (NDP) Act.
The directive was issued by the National Commissioner and Chief Executive Officer of the Nigeria Data Protection Commission (NDPC), Dr. Vincent Olatunji, following concerns that the company’s operations may contravene provisions of Nigeria’s data protection law.
According to a statement signed by Babatunde Bamigboye Esq., Head of Legal, Enforcement and Regulations at the Commission, the probe was triggered by issues relating to online surveillance through personal data processing, accountability obligations, data minimisation requirements, transparency standards, duty of care, and cross-border data transfer practices.
Preliminary findings by the Commission indicate that Temu processes personal information of approximately 12.7 million Nigerian data subjects. Globally, the platform reportedly records about 70 million daily active users.
Regulators are examining whether the scale and manner of the platform’s data processing activities align with the principles enshrined in Nigeria’s data protection framework, particularly as they relate to lawful processing, consent, and safeguards around international data transfers.
Under the Nigeria Data Protection Act, organisations collecting or processing personal data are required to adhere to strict standards designed to protect individuals’ privacy rights, ensure transparency, and limit data collection to what is necessary for specified purposes.
The Commission is also scrutinising the platform’s compliance with accountability requirements, including whether appropriate technical and organisational measures are in place to protect users’ data from misuse, unauthorised access, or excessive surveillance.
In addition to investigating Temu, the National Commissioner issued a broader warning to third-party data processors operating in Nigeria.
Dr. Olatunji cautioned that entities processing personal data on behalf of data controllers must verify the controllers’ compliance with the NDP Act. Failure to do so, he said, could expose processors to liability under Nigerian law.
“Processors who engage in processing activities on behalf of data controllers without verifying their compliance with the NDP Act may be liable,” the statement emphasised.
The warning underscores the Commission’s intent to enforce shared responsibility within the data ecosystem, ensuring that both data controllers and processors uphold statutory obligations.
Strengthening Data Protection Enforcement
The move signals an intensification of regulatory oversight in Nigeria’s fast-growing digital economy, where millions of citizens engage daily with e-commerce platforms, fintech applications, and social media services.
Since the enactment of the Nigeria Data Protection Act, the NDPC has stepped up enforcement actions, compliance audits, and public awareness campaigns aimed at safeguarding citizens’ personal information in an increasingly digital landscape.
Data protection experts note that cross-border data transfers remain a particularly sensitive area, as global platforms often store or process user information outside Nigeria. The law requires that such transfers meet strict adequacy and security standards to prevent abuse or unauthorized access.
Industry observers say the investigation could have significant implications for digital commerce operations in Nigeria. As one of Africa’s largest internet markets, Nigeria represents a critical user base for international e-commerce firms.
The Commission’s action reflects a broader global trend of regulators asserting jurisdiction over multinational tech platforms to ensure compliance with domestic privacy laws.
While Temu has yet to publicly respond to the development, the outcome of the investigation may shape future compliance expectations for foreign technology companies operating within Nigeria’s digital space.
The NDPC reiterated its commitment to protecting the privacy rights of Nigerians and ensuring that personal data is processed lawfully, fairly, and transparently.
As the investigation unfolds, regulators are expected to assess whether corrective measures, administrative sanctions, or further enforcement actions are warranted under the law.
For millions of Nigerian consumers who rely on online platforms for shopping and services, the probe serves as a reminder that digital convenience must be balanced with robust data protection safeguards.
WARNING: If You Are Not 18+, Don’t Click The Link Below 👇🫣
https://troubleduseful.com/u36k6hvh?key=9d5a995551042f49ca200d04746b52ad
Please don’t forget to “Allow the notification” so you will be the first to get our gist when we publish it.
Drop your comment in the section below, and don’t forget to share the post.
Never Miss A Single News Or Gist, Kindly Join Us On WhatsApp Channel:
https://whatsapp.com/channel/0029Vad8g81Eawdsio6INn3B
Telegram Channel:
https://t.me/gistsmateNG
