The Nigeria Data Protection Commission (NDPC) has initiated an investigation into the data processing operations of the Chinese e-commerce platform Temu, amid concerns of potential violations of the Nigeria Data Protection (NDP) Act.
Vincent Olatunji, the NDPC’s National Commissioner and Chief Executive Officer, issued the directive for an immediate review of Temu’s activities.
The announcement was made public through a statement signed by Babatunde Bamigboye, Head of Legal, Enforcement, and Regulations at the NDPC.
The investigation was prompted by allegations related to online surveillance practices that involve the processing of personal data.
The NDPC is particularly focusing on areas such as accountability, data minimization, transparency, duty of care, and the management of cross-border data transfers.
Preliminary findings indicate that Temu processes personal information for approximately 12.7 million individuals in Nigeria, while boasting around 70 million daily active users worldwide.
Olatunji also emphasized the importance of compliance with the NDP Act for data processors who handle information on behalf of data controllers.
He warned that those who neglect to confirm their clients’ adherence to the law may face legal liabilities under the Act.
This investigation underlines the NDPC’s commitment to protecting the personal data of Nigerian citizens and ensuring that companies operating within the country follow the established data protection regulations.
