Nigeria Data Protection Commission Investigates Corporate Affairs Commission Data Breach
Analysis based on 12 articles · First reported Apr 17, 2026 · Last updated Apr 17, 2026
The data breach at the Nigeria===Corporate Affairs Commission and the subsequent investigation by the Nigeria===Nigeria Data Protection Commission could negatively impact investor confidence in Nigeria's digital economy. Increased regulatory scrutiny and advisories aim to strengthen data protection frameworks, potentially leading to higher compliance costs for businesses but fostering long-term trust.
The Nigeria===Nigeria Data Protection Commission (NDPC) has launched an investigation into an alleged data breach at the Nigeria===Corporate Affairs Commission (CAC), following claims that hackers may have accessed millions of corporate records. This probe, initiated under Section 46(3) of the Nigeria Data Protection Act, 2023, aims to determine the extent of the breach and reinforce data protection measures in Nigeria. The NDPC expressed concern over increasing cyber threats targeting critical national databases and interconnected systems. The investigation will cover access control mechanisms, data privacy impact assessments, vulnerability assessment and penetration testing, and due diligence on third-party data processors. The CAC confirmed a limited breach and is working with the Nigeria===National Information Technology Development Agency to assess the impact. This incident follows previous investigations by the NDPC into other entities like Remita Payment Services, Sterling Bank, and Temu, highlighting a broader effort to safeguard data security in Nigeria's digital landscape. The NDPC has also issued a regulatory advisory to all data controllers and processors, emphasizing the need for robust technical and organizational measures to protect personal data.
Set up alerts, explore entity relationships, search across thousands of events, and build custom intelligence feeds.
Open Dashboard