At Banwo & Ighodalo, our Data Protection & Privacy Practice is dedicated to helping businesses navigate Nigeria’s dynamic data protection regime with confidence and legal clarity. We provide strategic counsel on compliance, risk management, and regulatory obligations, guided by the provisions of the Nigeria Data Protection Act (NDPA) and other applicable frameworks.

As a licensed Data Protection Compliance Organisation (DPCO), we support public, private, and multinational entities across diverse sectors in developing and strengthening their data governance structures. Our services include conducting audits, drafting and reviewing policies, assessing risk exposure, and ensuring timely and accurate reporting to the Nigerian Data Protection Commission (NDPC).

We offer end-to-end advisory, including:

• Data Protection Impact Assessments (DPIAs)
• Legitimate Interest Assessment (LIAs)
• Risk Assessments
• Data breach notifications and report
• Staff training and awareness programmes
• Contractual documentation and third-party arrangements
• Representation before regulatory bodies
• Preparation and submission of annual data protection audit reports
• Legal advisory and support with DPCO and NDPC registration processes

Additionally, we provide tailored legal compliance support for industry-specific regulatory requirements, such as those affecting digital lending platforms under FCCPC oversight and sector specific cybersecurity regulations/requirements.

Combining deep legal expertise with a nuanced understanding of sector-specific risks, our team delivers practical, scalable, and forward-looking solutions that help clients foster trust, ensure compliance, and manage personal data responsibly.