The dawn of the Nigerian Data Protection Regulation (NDPR)[2] on 25th January 2019 sent waves across the various sectors of the Nigerian economy, creating awareness of data protection and privacy issues and an appreciation of the means of regulating the collection and processing of data in the process. The NDPR was established to regulate those who have access to and control people’s data. Prior to the NDPR, there existed provisions in a few laws which protected certain information or data from unlawful use.[3] However, unlike the NDPR, these provisions were ambiguous, inadequate, and ineffective in imposing sanctions and ensuring compliance in the event of a data breach. Thus, the introduction of the NDPR by the National Information Technology Development Agency (NITDA) was a well needed opium in data protection in Nigeria.