NITDA Unveils  NDPR Compliant Visitor’s Booklet

NITDA Unveils  NDPR Compliant Visitor’s Booklet

The National Information Technology Development Agency, NITDA has unveiled Nigeria Data Protection Regulation (NDPR) complaint visitors’ book in Abuja.

Launching the booklet at his a meeting with staff, the Director General NITDA, Mallam Kashifu Inuwa observed that many organisations in Nigeria are finding it difficult to comply with the basic requirements of the regulation due to financial constraints.

Inuwa disclosed that a recent study revealed that many public institutions and small business owners are still confused by the rules around data protection and privacy regulations.

“Disturbingly, out of 30 surveyed, 100% confirmed their paper visitors’ books are not confidential and do not protect the visitors’ personal data. Another 98% admitted they do not dispose of paper visitor books securely and confidentially – leaving the personal data of millions of employees and customers at risk,’’ he lamented.

He explained that when putting NDPR procedures in place, it’s very likely that many organisations did so with one big misconception that the new law only affects data collected online. The NDPR is technology-agnostic. It applies to all acts of personal data collection and processing, no matter how and where it takes place, visitor data, employee personal data, etc.

Inuwa submitted that the Data Services Protection Limited (DSPL) patented visitor’s book was selected amongst the most innovative NDPR product at 2021 Privacy Week organised by NITDA. The visitor’s book pages are duplicates and works by making personal details on the visitor’s book invisible on the first page while capturing the data on the duplicate page. This basic but ingenious visitor’s book is cheap in comparison with the expensive digital visitor’s management solutions.

He, however, noted that the visitors’ book is an addition to the processes of computing the visitors’ data electronically.

Kashifu observed that many organisations have migrated their respective businesses and other information systems online, thus become critical information infrastructure that must be safeguarded, regulated, and protected against atrocious breaches.

“Data protection applies to all transactions intended for the processing of Personal Data, notwithstanding how the data processing is being conducted or intended to be conducted in respect of natural persons in Nigeria’’, he said.

Among the highlights of the staff meeting was the presentation of a plaque of recognition to the staff of the quarter Mr. Peter Chucks Emakpor, a staff of the e-Government Training Center, Kubwa, Abuja, by the Director-General.