The Nigeria Data Protection Commission is investigating the data processing activities of e-commerce platform Temu for alleged non-compliance with the Nigeria Data Protection Act.
NDPC’s head of legal enforcement and regulations, Babatunde Bamigboye, in a statement on Monday, said, “The NDPC National Commissioner/CEO, Dr Vincent Olatunji, has ordered an immediate investigation of the data processing activities of Temu, which may be in violation of the Nigerian Data Protection Act (NDP Act), 2023.
“The investigation into Temu was triggered by concerns around online surveillance through personal data processing, accountability, data minimisation requirements, transparency, duty of care and cross-border data transfer.”
According to NDPC, investigations showed that the e-commerce platform processed the personal information of 12.7 million data subjects in Nigeria and 70 million daily active users globally.
Additionally, the commission warned processors engaged in processing activities on behalf of data controllers who have not verified their compliance with the NDP Act that they may be found liable.
