Nigeria Data Protection Commission has confirmed it is investigating a reported data breach involving Remita Payment Services Ltd., Sterling Bank, and other related organizations.

A statement from Babatunde Bamigboye explained that a formal Notice of Investigation has been served to the companies involved. “Relevant parties and individuals have been supplying information to address the incident,” the statement added.

The NDPC clarified that the investigation aims to ensure personal data is properly protected through adequate technical and organizational measures.

It also noted that the inquiry will look into the types of personal data involved, the scope of the alleged breach, potential risks to data subjects, and any mitigation measures already taken if the breach is confirmed.

Moreover, the Commission’s National Commissioner/CEO, Dr. Vincent Olatunji, stated that organizations using digital payment systems without meeting the required technical and organizational standards under the Nigeria Data Protection Act, 2023 (NDP Act) will also face scrutiny, as part of efforts to maintain a secure data ecosystem.