With the enactment of the Start-Up Act and technology taking its place in the central stage of digital innovations, utilization of personal data as a fuel to drive innovative products and processes is expected to be on the increase. In view of this expected surge in personal data utilization, there is also the need to protect data from unlawful processing by Data Controllers and Administrators . Heralding this development, the Nigeria Data Protection Bureau (“NDPB” or the Bureau”) was established and charged with the responsibility of enforcing the Nigeria Data Protection Regulation 2019 (“the NDPR or the Regulation”), an obligation previous undertaken by the Nigeria Information Technology Development Agency (“NITDA”). In view of this responsibility, the NDPB recently issued a compliance notice that established the National Data Protection Adequacy Programme (the "NaDPAP") with a list of compliance obligations expected of organizations and establishments that are Data Controllers and Data Administrators (“the Compliance Notice”).