The Nigeria Data Protection Commission (NDPC) has intensified enforcement under the Nigeria Data Protection Act (NDPA) and the General Application & Implementation Directive (GAID). Over 1,300 organisations have recently received 21-day compliance notices. Healthcare facilities are now on the high-priority list due to the sensitive nature of patient information.
GAID (General Application & Implementation Directive) is the NDPC’s official enforcement framework under the NDPA. It requires all organisations to demonstrate continuous, verifiable compliance through:
• Regular audits
• Ongoing staff training
• Documented data protection processes
• Active monitoring and breach-response readiness
Healthcare providers must show that patient data is protected every day—not only during inspections.
Healthcare facilities process the most sensitive categories of personal data—patient medical records, diagnostics, lab results, insurance submissions, biometrics, and staff HR files.
This places hospitals among the highest-risk sectors under NDPA enforcement.
Penalties for Non-Compliance: 2% of Revenue or ₦10M Minimum
₦50m revenue
₦10m fine
₦200m revenue
₦10m fine
₦1bn revenue
₦20m fine
₦5bn revenue
₦100m fine
NDPC enforcement examples include penalties of ₦555.8m (2024) and ₦766.2m (2025)
- Annual privacy audit (with continuous monitoring)
- Ongoing staff data protection training
- Designated Data Protection Officer (DPO)
- Approved data protection & privacy policies
- Evidence of secure data handling
- Data retention & deletion processes
- DCPMI registration (where applicable)
Failure to demonstrate compliance may lead to penalties or enforcement actions.
Complete GAID audit in 5 days
Continuous compliance monitoring
Staff training for all departments
All required policies & documentation
Shareable NDPA compliance certificate
12-month compliance support
Free NDPA Readiness Assessment — Today Only
Our compliance specialist will review your facility and give you a simple next-step plan.
Speak with our agent to schedule your assessment