The Nigeria Data Protection Commission (NDPC) has recently published a Guidance Notice on the filing of Data Protection Compliance Audit Returns (CAR). In view of the new cycle of CAR filing, which will commence in 2024, the guidance notice provides Data Controllers and Data Processors with the opportunity to demonstrate accountability and also comply with one of the compliance metrics required to be included on the National Data Protection Programme (NaDPAP) Whitelist.
The guidance notice touches on six (6) main points, these are:
- Reliance on the Nigeria Data Protection Regulation
(NDPR) for Filing CAR:
The notice reiterates that the NDPR still subsists and has advised Data Controllers and Processors to rely on the provisions of the NDPR in filing their CAR. Specifically, the provisions of Article 4.1 (5 and 7), which provide for the conduct and filing of audit reports annually. - The Role of Data Compliance Organisations
(DPCO):
It advises DPCOs to offer practical trainings to Data Protection Officers (DPOs), the trainings will entitle DPOs to Continuous Professional Development credits. It further mandates DPCO's to notify clients and prospective clients of the Guidance Notice.
Click Here To Download And Read The Full Article
Contributor - Emmanuel Ido – Associate
The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.
