The Nigeria Data Protection Commission (NDPC) has launched an investigation into global e-commerce platform Temuover alleged violations of Nigeria’s data protection laws.
The Commission’s National Commissioner and Chief Executive Officer, Vincent Olatunji, ordered an immediate probe into the company’s data processing practices following concerns that they may contravene provisions of the Nigeria Data Protection Act.
According to the NDPC, the action was prompted by issues relating to possible online surveillance linked to personal data processing, as well as concerns about accountability, compliance with data minimisation principles, transparency obligations, duty of care, and the management of cross-border data transfers.
Preliminary findings indicate that Temu operates as a major e-commerce platform handling the personal data of an estimated 12.7 million users in Nigeria, while recording about 70 million daily active users worldwide.
The Commission also cautioned third-party data processors that organisations handling data on behalf of controllers without verifying their compliance with the Data Protection Act could face liability under Nigerian law.
The NDPC said the investigation is part of its statutory mandate to safeguard the privacy rights of Nigerians and ensure that companies operating within the country adhere strictly to established data protection standards.