The National Identity Management Commission (NIMC) has debunked allegations of the exposure of sensitive data of Nigerian citizens as it concerns the Commission amongst many other data-collecting agencies.
In a statement signed by Kayode Adegoke, Head of Corporate Communications, NIMC said, “The Commission at this moment, assures the public that the data of Nigerians has not been compromised, and the Commission have not authorised any website or entity to sell or misuse the National Identification Number (NIN) amongst all the identities stated in the report.”
NIMC names rogue websites…
“The following websites: idfinder.com.ng; Verify. Ng/sign in, championtech.com.ng, trustyonline.com, and anyverify.com are data harvesters not authorised by NIMC to access or manage sensitive data. NIMC urges the public to disregard any claims or services these websites offer and should not give their data as they are potentially fraudulent and data provided by the public on such websites are gathered and stored to build the data services they illegally provide.”
Tax: FG mulls harmonisation of NIN, TIN to access information
Protective measures taken
The NIMC statement also said “Consequently, the public should know that the Commission has taken robust measures to safeguard the nation’s database from cyber threats- a secure, world-class, full-proof database is in place. The commission’s infrastructure meets the stringent ISO 27001:2013 Information Security Management System Standard, with annual recertification and strict compliance with the Nigerian Data Protection Law.
“Furthermore, NIMC advises Nigerians to avoid giving their data to unauthorised and phishing sites. This poses the danger of data harvesting and comprises individual data. The Commission reaffirms its commitment to upholding ethical standards in data protection in line with federal government directives and data privacy regulations. Moreover, licensed partners or vendors are not authorised to scan or store NIN slips but to verify NINs through approved channels.”
Commitment to security
NIMC assured on its commitment to security and said “The Commission is currently working closely with security operatives to apprehend these elements masquerading as online vendors, and they will be made to face the full wrath of the law.”
The Commission “urges the public to remain vigilant against false information and rely on verified sources for accurate updates. The Commission remains committed to providing secure and reliable identity management and upholding the highest level of security for systems and databases, which are critical national assets.”
Why Is Data Security Important?
According to Fortinet, there are many reasons why data security is important to organizations in all industries all over the world. Organizations are legally obliged to protect customer and user data from being lost or stolen and ending up in the wrong hands. For example, industry and state regulations like the California Consumer Privacy Act (CCPA), the European Union’s General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act (HIPAA), and the Payment Card Industry Data Security Standard (PCI DSS) outline organizations’ legal obligations to protect data.
Data cybersecurity is also crucial to preventing the reputational risk that accompanies a data breach. A high-profile hack or loss of data can result in customers losing trust in an organization and taking their business to a competitor. This also runs the risk of serious financial losses, along with fines, legal payments, and damage repair in case sensitive data is lost.
