
The 8th edition of the Network of African Data Protection Authorities (NADPA-RAPDP) Conference and Annual General Meeting (AGM) took place in Abuja, Nigeria, from 6–8 May 2025.
The event hosted some of the brightest minds in the cybersecurity industry, including Regulators, GRC professionals, and others committed to protecting data across the continent.
Present at the event was the Hon. Minister of Communications, Innovation and Digital Economy of Nigeria, Dr. Bosun Tijani, who delivered the opening remarks. He also launched the Virtual Privacy Academy—an initiative designed to educate the public on data protection and privacy in Nigeria.
Other notable dignitaries at the event included:
- Dr. Vincent Olatunji, National Commissioner/CEO of the Nigeria Data Protection Commission
- Ousmane Thiongane, President of the Commission for the Protection of Personal Data, Senegal
- Kassit Immaculate, Data Protection Commissioner of Kenya
- Luciano Hounkponou, President of the Personal Data Protection Authority, Benin Republic
- Inga Stefanowicz, Head of Section, Green and Digital Economy, EU Delegation to Nigeria and ECOWAS
- Gideon Adekile, General Manager, Information Security, MTN Nigeria
- Toulu Akerele, Global Data Protection Officer and ISMS Manager, Paystack
- Stefano Fratta, Vice President, Global Engagement and Privacy Policy, Meta
Discussions focused on: The benefits and challenges of a harmonized regulatory framework, strategies to build consumer and investor confidence in Africa’s digital economy and the opportunities and privacy implications of open-source artificial intelligence (AI).
According to The State of Data Protection Laws in Africa report by Yellow Card, Africa had 39 countries with Data Protection laws in 2024, with 34 out of the 39 having established regulatory authorities.
Africa continues to face discrimination when it comes to data protection compliance from global companies. For instance, Meta threatened to leave Nigeria after the country imposed a hefty fine of over $220 million for violating Nigeria’s data protection law. Similarly, South Africa reported discriminatory practices towards the Protection of Personal Information Act (POPIA) from WhatsApp, the parent company of Meta.
The event was something the continent needed — a gathering where data protection issues facing the continent are addressed.
Key Takeaways from the Event
Omotunde Funmilayo, an attendee of the event, shared these lessons from the gathering:
1. Urgent Need for Regional Collaboration: There is an urgent need for stronger collaboration among African nations and the possibility of creating a unified framework that respects regional differences but is applicable across the continent.
2. Time to Prioritize Innovation Over Imitation: Many of Africa’s digital frameworks are adopted from other continents. While this isn’t inherently wrong, the pace of technological growth in Africa requires homegrown solutions that ensure consistent privacy standards across the continent.
3. Launch of the Virtual Privacy Academy: This exciting new initiative, set to begin on July 1, 2025, is designed to educate the public on data protection and privacy. If you’re interested in becoming a Data Protection Officer (DPO), this is something to look out for.
4. Securing the Digital Economy: The digital economy cannot thrive unless data is secured. As one of the primary drivers of global revenue, securing data must be a top priority to unlock its full potential.
5. Data at the Core of the Fourth Industrial Revolution: Data is undoubtedly central to the Fourth Industrial Revolution, shaping industries and economies worldwide.
6. AI is Here to Stay: The rise of AI presents both incredible opportunities and significant challenges. It is important to embrace its benefits while mitigating potential risks.