The National Identity Management Commission (NIMC) has issued a stern warning to all licensed vendors and technical partners, ordering an immediate audit of their systems to prevent data breaches. The commission stated that any lapse exposing Nigerians' personal data would attract strict sanctions.
Partnership with NDPC
Earlier, NIMC announced a major collaboration with the Nigeria Data Protection Commission (NDPC) to train and certify nearly 4,000 staff on data protection compliance and best practices.
High-Level Engagement
The directive was issued in Abuja during a high-level meeting with representatives from the Office of the National Security Adviser (ONSA), security agencies, and Front-End Enrolment Partners (FEPs). Discussions focused on software compliance, cybersecurity, and operational standards within the national identity framework.
This development comes amid rising public concerns over insecurity, cybercrime, and identity-related fraud. There is increasing scrutiny of the National Identification Number (NIN) system's effectiveness as a tool for national security and service delivery.
DG's Warning
NIMC Director-General Dr. Abisoye Coker-Odusote emphasized that the commission would no longer tolerate vulnerabilities in its partner network. 'The protection of citizens relies on the NIN. It relies on identity,' she said, adding that the NIN serves as a gateway to essential services like healthcare, education, financial inclusion, telecommunications, and government programs.
She disclosed a growing wave of fraudulent websites, visa scams, and phishing platforms targeting Nigerians. 'There are a lot of illegal sites that have popped up in Nigeria around visa scams, illegal sites around NIN, and a lot of data-phishing happening across borders,' she warned.
Compliance Audits
Dr. Coker-Odusote directed that all vendors linked to NIMC infrastructure must undergo rigorous compliance audits to ensure full adherence to security and operational standards. 'We must ensure that your systems are audited for compliance to guarantee that you are delivering robust services to citizens on behalf of NIMC. Your systems must not allow room for manipulation, data-phishing, or compromise,' she stated.
She stressed that the commission would enforce strict penalties for non-compliant partners, noting that NIMC is both the custodian and enforcer of identity standards in Nigeria.
