Nigeria fines Meta $220million over privacy breaches

The Federal Competition and Consumer Protection Commission of Nigeria (FCCPC) has fined Meta, the parent company of Facebook and WhatsApp, $220 million for multiple breaches of privacy laws.

In a statement issued on Friday, July 19, the FCCPC laid out the conclusions of its 38-month joint investigation with the Nigeria Data Protection Commission into Meta's data practices in Nigeria.

The regulators found that Meta engaged in "multiple and repeated, as well as continuing infringements" of Nigerian privacy and consumer protection laws.

Specifically, Meta was found to have appropriated personal data from Nigerian users without consent, treated them in a "discriminatory and disparate" manner compared to users in other countries, and forced "unscrupulous, exploitative, and non-compliant privacy policies."

The statement from Ag. Executive Vice Chairman Dr. Adamu Abdullahi quotes the investigation finding Meta guilty of "denying Nigerian data subjects the right to self-determine; unauthorized transfer and sharing of Nigerian data-subjects personal data, including cross- border storage in violation of then, and now prevailing law; discrimination and disparate treatment; abuse of dominance; and tying and bundling."

The $220 million fine, one of the largest for data protection infractions globally, is aimed at ensuring Meta's compliance with Nigerian laws going forward.

The FCCPC said Meta was provided "every opportunity" over three years to respond to evidence but failed to adequately address its conduct.

The penalty and compliance order demonstrate the agencies’ commitment "to protect the privacy of Nigerians under the Constitution and all data protection laws and regulations."