NIMC warns of websites harvesting data of Nigerians
The National Identity Management Commission (NIMC) has warned Nigerians against the activities of some unauthorised websites harvesting people’s data The websites are idfinder.com.ng, Verify.ng, championtech.com.ng, trustyonline.com, and anyverify.com. The NIMC gave the warning in a statement signed by Kayode Adegoke, its head of corporate communications, on Saturday. On June 20, Paradigm Initiative, a pan-African social enterprise, raised alarm over its discovery of the sale of national identification numbers (NINs), bank verification numbers (BVNs), and other personal data of Nigerians on a website for as low as N100. According to the organisation, a website known as ‘AnyVerify.com.ng’ was discovered to be involved in the commercial distribution of personal and private data of Nigerians. Paradigm Initiative added that several unauthorised websites are claiming to hold and provide access to sensitive personal and financial data of Nigerian citizens “for as little as 100 Naira”. “This alarming development presents a major breach of the fundamental rights to privacy, a breach of data privacy rights, and poses significant risks to individuals and the national economy,” the firm said. Reacting to the report, the commission said AnyVerify.com.ng and other aforementioned websites are data harvesters and unauthorised to access or manage sensitive data. The agency also denied the exposure of sensitive data of Nigerians “as alleged and reported”. “The commission, at this moment, assures the public that the data of Nigerians has not been compromised, and the Commission have not authorised any website or entity to sell or misuse the National Identification Number (NIN) amongst all the identities stated in the report,” NIMC said. “NIMC urges the public to disregard any claims or services these websites offer and should not give their data as they are potentially fraudulent and data provided by the public on such websites are gathered and stored to build the data services they illegally provide. “Consequently, the public should know that the commission has taken robust measures to safeguard the nation’s database from cyber threats- a secure, world-class, full-proof database is in place. “The commission’s infrastructure meets the stringent ISO 27001:2013 information security management system standard, with annual recertification and strict compliance with the Nigerian Data Protection Law.” NIMC also advised Nigerians to avoid giving their data to unauthorised and phishing sites, stressing that licensed partners or vendors are not authorised to scan or store NIN slips but to verify them through approved channels. “This poses the danger of data harvesting and comprises individual data,” the commission added. The Commission reaffirms its commitment to upholding ethical standards in data protection in line with federal government directives and data privacy regulations.” NIMC also said it is currently working closely with security operatives to apprehend elements masquerading as online vendors, and make them face the full wrath of the law. The agency urged the public to remain vigilant against false information and rely on verified sources for accurate updates.