The National Identity Management Commission (NIMC) has firmly denied allegations of a data breach involving sensitive information about Nigerian citizens, despite the emergence of controversial websites like anyverify.com claiming to sell such data. The commission assures the public that their data remains secure and uncompromised.
RELATED: PIN reports major privacy breaches in Nigeria, exposing sensitive data and triggering urgent investigations
In a press statement released on Saturday and signed by Kayode Adegoke, Head of Corporate Communications, NIMC emphasized that no authorized websites or entities have been permitted to sell or misuse National Identification Numbers (NIN) or other identity information. The commission described these websites as unauthorized data harvesters.
This response follows an investigation by Paradigm Initiative Nigeria (PIN), a digital social enterprise, which revealed that websites including idfinder.com.ng, Verify.ng, championtech.com.ng, trustyonline.com, and anyverify.com are offering access to Nigerians’ private information for a fee. PIN highlighted the severe privacy and security risks posed by this alarming development.
Earlier this year, reports surfaced that expressverify was monetizing the recovery of NINs and personal information from Nigeria’s identity database. This prompted heightened scrutiny of NIMC licensees by the Nigeria Data Protection Commission after the website breached data protection protocols.
NIMC: Avoid potentially fraudulent and illegal data collectors
NIMC has warned the public to avoid these sites and refrain from providing any personal information, labeling these platforms as potentially fraudulent and illegal data collectors. The commission has implemented robust measures to protect the national database from cyber threats, adhering to stringent ISO 27001:2013 Information Security Management System standards and the Nigerian Data Protection Law.
Adegoke reassured Nigerians of the commission’s commitment to data security, urging caution against sharing personal data with unauthorized or phishing sites. He reiterated that licensed partners and vendors are only authorized to verify NINs through approved channels and are prohibited from scanning or storing NIN slips.
The commission announced ongoing collaborations with security agencies to apprehend individuals posing as online vendors, who will face legal consequences. NIMC also urged the public to stay vigilant against misinformation and rely on verified sources for accurate updates.
“NIMC remains committed to delivering secure and reliable identity management services, ensuring the highest level of security for its systems and databases, which are deemed critical national assets,” the statement concluded.