The Nigeria Data Protection Commission (NDPC), says over 400 cases of privacy breaches involving digital lenders, popularly known as loan apps are being addressed at the systemic level.
The Commission in its Annual Report 2023 released recently, noted that its ongoing investigations have revealed that “loan apps are overly intrusive”.
This indicated that despite an April 2023 policy introduced by Google banning loan apps from accessing photos and contacts of users, the practice has continued.
Acknowledging that privacy breaches by loan apps are a systemic problem, the Commission said it is also adopting a systemic solution by working with other regulators and third-party platforms being used by the lenders.
“The Commission has now drafted the Nigeria Data Protection Act-General Application and Implementation Directive (NDPA-GAID) which addresses the abetment of data breaches, the need for data ethics and privacy by design and by default among others.
“Under abetment, the third-party platforms through which data privacy breaches take place will now be required to deny access to those who use their platforms for privacy breaches.
Earlier this year, Citizens’ Gavel, a consumer rights organization, lodged a formal complaint with FCCPC, urging immediate action against 30 unlicensed digital money lenders operating in Nigeria.
The group’s investigation, sparked by over 600 consumer complaints, identified these lenders as employing “crude, unprofessional, and illegal means” to collect debts, including defamation, cyberbullying, and even death threats.
It implored the FCCPC to collaborate with stakeholders such as the Central Bank of Nigeria (CBN) and the National Information Technology Development Agency (NITDA) to thoroughly address alleged abuse and unethical practices of unregistered and unlicensed digital money lenders in the country.
