Nigeria’s Federal Competition and Consumer Protection Commission (FCCPC) has imposed a $220 million fine on Meta Platforms, the parent company of Facebook and WhatsApp, for violating data privacy laws.
The FCCPC stated that Meta’s data-sharing practices breached local consumer and data protection regulations, including the Federal Competition and Consumer Protection Act 2018 and the Nigeria Data Protection Regulation 2019. The commission’s acting Executive Chairman, Adamu Abdullahi, noted that Meta denied Nigerian users control over their data and shared data without their consent.
The FCCPC initiated its investigation in May 2021, based on evidence suggesting that Meta engaged in unauthorized data collection and discriminatory practices against Nigerian users. The investigation uncovered that Meta’s practices were invasive and abusive towards Nigerian data consumers, including cross-border storage of personal data without consent.
Meta was provided multiple opportunities to defend itself during the investigation. Despite engaging with the FCCPC and the Nigeria Data Protection Commission (NDPC), the final order mandated Meta to comply with prevailing laws and cease exploitative practices.
This fine comes in the wake of Nigeria’s new data privacy measures, including the Nigeria Data Protection Act enacted in June 2023. The Act establishes a comprehensive framework for personal data protection and creates the Nigeria Data Protection Commission as the regulatory body.
