What will constitute a breach of the Nigerian Data Protection Law?

What will constitute a breach of the Nigerian Data Protection Law?

September 23, 2019

The use of Data and the extent of Data abuse is becoming a sensitive topic in today’s technological world. Everyone wants to feel a sense of security when giving their data to a data processor.

A data controller can be in breach of the Data Protection Act where the data of another person is transferred without consent of the person to a third party. A data controller is ordinarily prohibited by the law from transferring the data of another person to a third party without consent. This also means that where consent was gotten to transfer a particular data to a third party, it does not give the data controller power to transfer same to another party other than the person the consent was given for and if the data controller must do so he must seek the consent again from the data owner.

Also, where a data was taken for one purpose but used for another purpose. For instance, if you register your details in the bank for the opening of an account and your bank decides to use your details without your consent to register you in an online dating app, they can be said to be in breach of data protection.

A situation where the data collected is not adequate and accurate, so much so that it affects the data owner can be dangerous. An example is a situation where one individual’s data is mixed up with someone else’s data, and that other person has a criminal record or imagine being denied access to use your ATM card just because the name on the Debit/Credit card and Account name do not match. This is also why the law went further to state that data must not be prejudiced to the dignity of a human person and data must not be collected under duress.

Where data is taken and stored for more than the period it is required, an example here would be data taken for research purpose. it should be destroyed after the research has been completed although it depends on the kind of research.

Again, where the data controller fails to secure the data from all foreseeable hazards and breaches like data theft, cyber-attack, viral attack etc. This is important because of the trend in cybercrime, the stealing of personal data by internet fraudsters, etc.

Finally, where a data controller fails in his duty of care to protect a data in his possession, he is said to be in breach of the Data Protection Act.

 

 

 

The information in this blog post (“post”) is provided for general informational purposes only, no information contained in this post should be construed as legal advice, nor is it intended to be a substitute for legal counsel on any subject matter. No reader of this post should act or refrain from acting on the basis of any information included in, or accessible through this post without seeking the appropriate legal or professional advice from the particular facts and circumstances at issue from a lawyer. This post is protected by intellectual property law and regulations. It may however be shared using appropriate sharing tools provided that our authorship is always acknowledged and this Disclaimer Notice attached

More Articles

Search

Connect With Us

Got any questions?

If you are having any questions, please feel free to ask.

Send us an email

Frequently Asked

  • When are Annual Returns due for filing?

    A company’s first Annual Returns are due for filing after 18 months of its inception, subsequently it should be filed annually as the name implies. The filing dates could differ for each company depending on their financial year end but must be filed not later than 42 days after its Annual General Meeting.

    The Annual Returns for Business Names is due not later than the 30th of June each year except in the year the business was registered.
  • What’s the difference between a business name and an LLC?

    • A business name is a sole proprietorship, usually owned and managed by one individual only. Legally, the sole proprietor and his business are one. It simply means an individual trading with an alias. The sole proprietor is personally liable for all business related obligations.

    • A limited liability company on the other hand is a separate business entity from the individuals that hold its shares and act as directors. Legally, it’s a separate business entity and a person on its own who can transact business, own property separate from its owners and can sue or be sued. 
  • Why is mutual assent important in a contract?

    This is one of the key elements of a contract because is shows the meeting of the minds of both parties
  • Is there a penalty for late renewal of registration of products with NAFDAC?

    Yes, there is a late renewal fee, which is dependent on the category of the product.
  • What is personal data?

    This is any information that can be used to identify an identifiable human person such passport photograph.
  • Why should I protect an industrial design?
    1. It gives commercial value to the owner.
    2. It protects the owner of the design from imitation of the design..
    3. It constitutes an asset of the company and it helps in fair return on investment.
  • Do I have to physically drop off my product sample at NAFDAC office?

    No, you can choose to have it sent to NAFDAC office
  • Can my kids be shareholders in my company?

    Yes your kids can hold shares in your company but there must be a minimum of two adult shareholders before kids can be included.
  • Does a trademark search automatically reserve my trademark name?

    No, a trademark search does not automatically reserve that which is sought to be trademarked. A search ascertains whether that which is sought to be trademarked is available or violates any existing trademark.
All FAQs
Call Us Now on +234 901 719 0079 Chat on WhatsApp