The National Information Technology Development Agency (NITDA), has called on stakeholders to strictly comply with the guidelines on the hosting of data.
This was contained in a statement by NITDA’s Director-General, Chief Information Technology Officer of Nigeria, Dr Isa Ali Ibrahim, which reads: “We would like to bring to the attention of Federal Public Institutions, IT Service Providers to the Federal Government and all data management firms doing business in Nigeria on the need for strict compliance with Section 14 of the Regulatory Guidelines for Nigerian Content Development in ICT.
“This section provides a framework for repatriation and hosting of all Nigerian Government data within the country.
“Prior to the operation and full implementation of the Regulatory Guidelines for Nigerian Content Development in ICT, a sizeable component of Government data was hosted outside Nigeria.
“The situation has now changed as NITDA’s compliance monitoring activity revealed that substantial data assets of the Federal Government are already hosted in Nigeria. These include the Government Integrated and Financial Management Information System (GIFMIS), Integrated Tax System (ITAS), Integrated Payroll and Personnel Information System (IPPIS), and more recently the Treasury Single Account (TSA) has been repatriated and is now hosted within the country in line with the Guidelines.
“We, however, wish to note that a small fraction of government data is still hosted outside Nigeria without the approval of the Agency. We understand that for some Federal Public Institutions, a consideration of cost and other technicalities may have affected the full repatriation of government data.
“In these cases, NITDA is to be notified promptly as Government has set measures in place to commence sanctioning of violators in line with the provisions of the NITDA Act 2007 and the other relevant laws in Nigeria. It should be noted that the Government, considers the data of government as national resources which must be stored in Nigeria and analyzed within existing regulations for improvement of governance and development of the country.
“Consequently, Data Centers and Cloud Service Providers operating in Nigeria are hereby advised to comply with requirements of information security management, global best practices, standards and NITDA’s directives on quality customer service.
“Furthermore, Data Hosting Service Providers are required to register their competencies and capabilities in line with the requirements of the Guidelines for Nigerian Content Development in ICT to ensure adequate oversight and compliance with all necessary standards to protect data of Nigerian citizens and Government.”