The National Data Protection Commission (NDPC) has imposed a record fine of N555.8 million on Fidelity Bank Plc for violating customer data privacy regulations.
This fine is the largest ever issued by the NDPC and represents 0.1 percent of the bankโs annual gross revenue for 2023.
Vincent Olatunji, the NDPCโs National Commissioner, disclosed the fine during a Validation Workshop on the Nigeria Data Protection Actโs General Application and Implementation Directive.
READ ALSO: Diezaniโs associate acquitted of $1.6bn fraud
Olatunji stated that Fidelity Bank had breached both the Nigeria Data Protection Regulation (NDPR) of 2019 and the Nigeria Data Protection (NDP) Act of 2023.
Olatunji elaborated on the circumstances, noting, โThe penalty was aggravated due to the bankโs lack of cooperation and dismissive attitude during the investigation.โ
He highlighted the critical nature of data protection compliance and explained that penalties for non-compliance could range from N10 million to up to two percent of an organizationโs gross earnings.
He further remarked, โSince we began enforcing data protection regulations, this is the most significant penalty weโve issued. Fidelity Bankโs violations were serious, and despite working with them since April 2023 to address these issues, their arrogance ultimately led us to impose the full penalty.โ
The Commission has given Fidelity Bank 14 days to pay the fine upon receiving the notice. This sanction reflects the NDPCโs commitment to upholding data protection laws and holding organizations accountable for protecting customer data.
