Log in
Nigeria Data Protection Act Β· NDPA Compliance

The fastest way to complete your audit
and be fully NDPA compliant.

The NDPA sets out exactly what every Nigerian organisation must do. Auditer gives you the platform to do all of it β€” audit, privacy management, and staff training β€” in one place.

01
Step one
Annual Audit
Your biggest NDPA obligation. Required every year. Tedious to complete β€” unless you use Auditer.
⚠ Fines up to 2% gross revenue
02
Step two
Privacy Requirements
ROPA, DSARs, breach logs, vendor agreements, cookie consent β€” all your ongoing NDPA obligations, in one box.
72-hr breach reporting
03
Step three
Staff Training
NDPA requires documented staff awareness training. Our one-stop training kit handles it β€” tracked to every individual.
88% of breaches: human error
50+
Organisations active
5.0
Average client rating
2% revenue
NDPA fine we help you avoid

NDPA compliance
isn't a one-time event.
It's three ongoing obligations.

Most organisations file their annual audit and consider themselves done. The NDPC doesn't. Between filings, you're still required to manage data subject requests, maintain vendor agreements, log incidents, and prove your staff have been trained. Auditer covers all of it.

01
Annual Audit & NDPC Filing
The cornerstone of NDPA compliance. Required every calendar year. Auditer makes a traditionally complex, weeks-long process completable in 72 hours β€” with personalised policies, not templates.
02
Ongoing Privacy Requirements
ROPA, DSARs, DPIAs, LIAs, cookie consent, vendor DPAs, breach logs β€” the NDPA requires all of these year-round. Auditer keeps everything in one organised workspace so nothing slips.
03
Documented Staff Training
The NDPA mandates awareness training for staff handling personal data. You need to prove it happened β€” per person, with dates, with certificates. Our built-in LMS gives you exactly that.
01
Step one of your NDPA compliance
Annual Audit

The big one. Required every year.
Auditer makes it seamless.

The annual audit is every Nigerian organisation's primary NDPA obligation β€” yet it's notoriously tedious. Mapping your data flows, drafting policies, gathering evidence, filing with the NDPC. Auditer turns a 6-week headache into a structured, fully digital process you can complete in 72 hours.

⚑
Done in 72 hoursvs. 6+ weeks with traditional approaches
✍️
Bespoke policiesWritten for your organisation β€” not copy-pasted templates
πŸ’»
Fully digitalNo site visits, no manual paperwork, no back-and-forth
⚠️What happens if you skip it
The Nigeria Data Protection Commission requires annual audit submissions from data controllers and processors. Miss the deadline, submit incomplete records, or fail to file altogether β€” and you face fines of up to 2% of annual gross revenue. That's not a hypothetical. The NDPC has begun enforcement action.
See how audits work →
Annual Audit Β· 2025
NDPA Annual Audit
Golden Bank Ltd Β· Submission due in 47 days
In progress
Overall completion68%
βœ…Organisational profile β€” completedDone
βœ…Data mapping & ROPA β€” completedDone
βœ…Privacy policy review β€” completedDone
πŸ”„Staff training evidence β€” 61% uploadedIn progress
⏳Vendor & partner agreements β€” 4 pendingPending
πŸ”΄Breach log review β€” action requiredAction needed
On track: Your audit is progressing ahead of schedule. Complete the remaining 3 sections to file on time.
Privacy Requirements
Compliance Overview
Golden Bank Ltd Β· Updated just now
2 actions needed
πŸ—‚οΈ
ROPA
71% complete Β· 6 activities need review
πŸ”—
Vendors & Partners
4 missing DPAs Β· action required
πŸ“¬
DSARs
2 open Β· 1 due in 3 days
πŸͺ
Cookie Consent
Active Β· Consent log current
πŸ””
Breach Log
0 open incidents
πŸ“„
Privacy Policy
Current Β· Review in 60 days
Urgent: DSAR from O. Nwachukwu β€” 3 days remaining to respond. Open request →
02
Step two of your NDPA compliance
Privacy Requirements

All your NDPA obligations
in one organised workspace.

Filing your annual audit is just the start. The NDPA creates obligations that run every day of the year β€” and most organisations are unknowingly in breach between audits. Auditer brings every requirement into a single, clear workspace so nothing falls through the cracks.

πŸ“‹
ROPA built inRecord of Processing Activities, maintained and always audit-ready
πŸ“¬
DSAR trackerNever miss a data subject request β€” deadlines tracked automatically
πŸ”—
Vendor DPA registerTrack every third-party processor and their agreement status
⚠️The risk of treating NDPA as once-a-year
A data subject request left unanswered is a violation from day 31. A breach not logged within 72 hours is a separate offence. A vendor processing your customers' data without a signed DPA is live liability. These obligations don't pause between audits β€” and the NDPC doesn't treat "we weren't tracking it" as a defence.
03
Step three of your NDPA compliance
Staff Training

NDPA-mandated training,
with a one-stop kit that does it all.

The NDPA requires organisations to ensure staff who handle personal data are trained and aware of their responsibilities. Auditer's built-in LMS handles the entire process β€” structured modules, self-paced completion, and automatically issued certificates stored as audit evidence.

πŸŽ“
Built-in LMSStructured modules covering NDPA, data handling, and breach response
πŸ“œ
Auto-issued certificatesCompletion certificates generated instantly, stored for audit evidence
πŸ‘οΈ
Per-person visibilityKnow exactly who's completed training and who hasn't β€” by name
⚠️Why "we ran a session" isn't enough
Stanford research attributes 88% of data breaches to human error. When an incident occurs and the NDPC asks for training records, a one-off session without documented attendance, dates, or individual completion evidence won't satisfy their requirements. You need per-person, dated, auditable proof β€” and that's exactly what Auditer provides.
Staff Training Β· Awareness
Training Overview
42 staff members Β· Last updated today
12 overdue
26
Completed
4
In progress
12
Overdue
EI
Emeka IbeModule 3 of 3 Β· Certified
βœ“ Done
BO
B. UthmanModule 1 of 3 Β· Overdue 12d
Overdue
AO
A. OkonkwoNot started Β· Overdue 8d
Overdue
FA
F. AdeyemiModule 2 of 3 Β· In progress
Active
Reminder sent: 12 staff have received automated overdue training nudges this week.
What clients say

Trusted by regulated organisations
across Nigeria.

β˜…β˜…β˜…β˜…β˜…
I have collaborated with DPCOs utilising tools such as Excel, which accomplished the task. Others have overly complex dashboards that add friction. Regfyl strikes the right balance between structured, efficient, and aligned with operations. This was a practical, well-executed engagement that delivered value.
🏦
Roqqu Nigeria Limited
April 2026
5.0Overall
5.0Timeliness
5.0Clarity
5.0Support
β˜…β˜…β˜…β˜…β˜…
The experience using Auditer was fantastic.
πŸ›οΈ
9JaPay Microfinance Bank Limited
March 2026
5.0Overall
5.0Timeliness
5.0Clarity
5.0Support
Start your NDPA compliance today

Three steps to full compliance.
One platform to get there.

Join 50+ Nigerian organisations that handle audit, privacy requirements, and staff training in one place β€” without the spreadsheets.

Log in to your account