The rapid digital transformation of government services in Nigeria has created a significant gap between technological adoption and the fundamental protection of individual digital rights. In Katsina State, a troubling pattern has emerged where sensitive personal information is harvested through official channels without the basic transparency of a publicly accessible privacy policy. Residents visiting the primary state website or the Internal Revenue Service portal are currently prompted to submit highly confidential details, including full names, active phone numbers, verified email addresses, and Tax Identification Numbers. This collection process occurs in a regulatory vacuum, as neither platform provides a clear statement explaining how this data is stored or who might have access to it. The lack of these disclosures is not merely a technical oversight but a systemic failure that leaves thousands of citizens vulnerable to identity theft and unauthorized surveillance. Without a legal framework visible to the user, the state operates in a manner that disregards the implicit trust required for modern digital governance.
Legal Noncompliance and Regulatory Violations
This absence of a formal privacy statement constitutes a direct violation of the Nigeria Data Protection Act of 2023, which remains the cornerstone of digital privacy in the country. Under Section 27 of the Act, any public institution serving as a data controller is legally bound to provide transparent and intelligible information regarding its processing activities. Furthermore, the state government appears to be in breach of the National Information Technology Development Agency standards for government websites. These guidelines specifically mandate that all .gov.ng domains must incorporate a prominent policy detailing how information is utilized and under what conditions it may be disclosed to third parties. By neglecting these mandatory requirements, the administration has sidestepped established safety protocols intended to ensure legal accountability. This situation creates a dangerous precedent where state power is leveraged to accumulate mass data without the friction of regulatory oversight, effectively stripping residents of their right to informed consent in their digital interactions with the local government.
Necessary Reforms for Digital Accountability
Addressing this crisis in digital governance requires an immediate suspension of data collection until a comprehensive privacy framework is integrated into all state-run platforms. Legal experts and civil rights advocates must push for a mandatory audit of current storage practices to determine if the information already collected has been compromised or shared with unauthorized third-party vendors. Moving forward, the Katsina State Government should establish a dedicated data protection office to oversee compliance with national laws and to provide a clear channel for residents to inquire about their personal records. Transparency is not an optional feature of a digital economy; it is the fundamental infrastructure that prevents the abuse of power. Future digital initiatives must prioritize the implementation of encryption standards and clear retention schedules that limit how long sensitive tax and identity data remains on government servers. By adopting these rigorous standards, the state could transform its current liability into a model for secure and ethical digital administration, ensuring that the march toward modernization does not come at the expense of citizen safety.
