Temu Faces Regulatory Heat In Nigeria As Nigeria Data Protection Commission (NDPC) Launches Investigation Over Alleged Data Privacy Violations.

Nigeria's National Data Protection Commission (NDPC) has launched an investigation into Temu, a Chinese-owned e-commerce platform, over concerns of data privacy breaches. The probe, ordered by NDPC Chief Vincent Olatunji, focuses on Temu's data processing practices, including online surveillance, opaque handling, cross-border transfers, and possible breaches of data-minimisation rules. With approximately 12.7 million Nigerian users and 70 million daily active users globally, Temu's data handling has raised red flags. The commission warns that processors could be held liable for non-compliance, following a recent fine of ₦766 million ($565,990) imposed on Multichoice Nigeria for breaching data-protection rules.

Vincent Olatunji, NDPC's national commissioner and CEO, revealed that preliminary findings suggest Temu may have breached Nigeria's data protection laws. The alleged breaches include online surveillance, lack of transparency and accountability, data minimisation issues, duty of care concerns, and cross-border transfer of personal data.

The stakes are high, given Temu's massive user base - approximately 12.7 million Nigerians and 70 million daily users worldwide. The NDPC is taking the investigation seriously, emphasizing the importance of data protection in Nigeria.

The commission has warned that data processors operating on behalf of controllers who fail to comply with the NDPA may face legal consequences. This probe demonstrates NDPC's commitment to enforcing data protection laws and holding platforms accountable for mishandling user data.

Babatunde Bamigboye, Head of Legal, Enforcement & Regulations at NDPC, emphasized that strict compliance with data protection laws is a must, warning that non-compliance may lead to formal enforcement actions. The investigation into Temu is part of a larger review of foreign e-commerce platforms and their data handling practices, particularly when it comes to cross-border data transfers.

Temu has not responded to the NDPC's directive yet. The probe highlights Nigeria's efforts to regulate data protection and ensure companies prioritize user data security.