The Federal Government has initiated a formal investigation into e-commerce platform Temu over concerns that its data handling practices may violate provisions of Nigeria’s Data Protection Act (NDPA).
The National Data Protection Commission (NDPC) confirmed that the probe will assess whether Temu’s collection, processing, storage, and cross-border transfer of personal data belonging to Nigerian users comply with the country’s data protection framework.
Regulatory Scrutiny Intensifies
According to the Commission, data processors acting on behalf of controllers without verifying their compliance status under the NDPA risk regulatory sanctions.
Babatunde Bamigboye, Head of Legal, Enforcement and Regulations at the NDPC, stated that all digital platforms operating within Nigeria — irrespective of country of origin — must strictly adhere to the Act.
He warned that non-compliance could attract enforcement actions, including financial penalties and other legal consequences as provided under the law.
Rising Concerns Over Data Sovereignty
The investigation comes amid growing regulatory scrutiny of foreign digital and e-commerce platforms operating in Nigeria, particularly regarding how user data is harvested, stored, and transferred across jurisdictions.
Industry stakeholders have expressed increasing concerns about data sovereignty, privacy risks, and the adequacy of safeguards protecting Nigerians’ personal information.
Temu is reported to handle data for approximately 12.7 million users in Nigeria and about 70 million daily active users globally. As of the time of reporting, the company had not issued an official response to the NDPC’s directive.
Enforcement and Compliance
The NDPC reiterated that the NDPA imposes clear obligations on data controllers and processors, including requirements for lawful processing, transparency, accountability, and adequate protection of personal information.
The Commission emphasized that its enforcement measures are aimed at strengthening trust in Nigeria’s digital economy while safeguarding citizens from potential privacy breaches.
Regulatory analysts note that the outcome of the investigation could establish a benchmark for how Nigeria engages global technology platforms and enforces compliance within its rapidly expanding digital and e-commerce ecosystem.
