The Nexus between NDPR Compliance and Cybersecurity Effectiveness: An Empirical Study of Nigerian Organizations

Articles in Press

Document Type : Original article

Authors

1 Centre for Cyberspace Studies, Nasarawa State Universities, Keffi, Nigeria.

2 Department of Statistics, Nasarawa State University, Keffi, Nigeria

3 Department of Computer Science, Nasarawa State University, Keffi, Nigeria

4 Department of Physics, Nasarawa State University, Keffi, Nigeria

Abstract

Background: As data breaches and cyberattacks increase, understanding how regulatory compliance impacts cybersecurity performance is critical.
Aims: This study explores the relationship between compliance with the Nigeria Data Protection Regulation (NDPR) and the effectiveness of cybersecurity measures in Nigerian organizations.
Methodology: Using an empirical approach, data were collected from 30 organizations across sectors such as Financial Services, Telecommunications, Health, Education, and SMEs. Key variables analyzed include NDPR compliance rate, employee training, investment in cybersecurity infrastructure, and their effect on cybersecurity effectiveness indicators such as incident reduction, system uptime, and employee awareness.
Findings: The findings reveal a strong positive correlation between NDPR compliance and cybersecurity effectiveness. Organizations with higher compliance rates experienced a significant reduction in cybersecurity incidents, improved system resilience, and heightened employee awareness. Investment in cybersecurity infrastructure and regular employee training emerged as critical factors influencing these outcomes. Financial Services and Telecommunications sectors demonstrated the highest levels of compliance and effectiveness, while SMEs and the Public Sector faced significant barriers, including inadequate budgets and technological gaps.
Conclusion: This study highlights the pivotal role of NDPR compliance in strengthening organizational cybersecurity frameworks. It underscores the need for sector-specific strategies, increased investment, and enhanced regulatory enforcement to bridge compliance gaps. Policymakers and organizational leaders are encouraged to prioritize compliance initiatives as a pathway to improved cybersecurity effectiveness, ensuring data protection and resilience against evolving cyber threats.

Keywords

Main Subjects

References

1st Attorneys. (2023). “Cybercrime and data protection in Nigeria: legal implications and safeguarding measures”. https://1stattorneys.com/articles/2023/08/01/cybercrime-and-data-protection-in-nigeria-legal-implications-and-safeguarding-measures/.
AANoIP. (2024). “Keeping up with the dynamics: How has Nigeria fared in data protection so far?”.
Adeleke, O.A. & Oloyede, T.A. (2020). “Data privacy and cybersecurity in Nigeria: An evaluation of the Nigeria Data Protection Regulation (NDPR)”. African Journal of Law and ICT. 6(2): 45-60.
AOC Solicitors. (2024). “Safeguarding data: The importance of data protection in Nigeria”. https://aocsolicitors.com.ng/safeguarding-data-the-importance-of-data-protection-in-nigeria/.
Agbedo, C.U. (2023). “Protecting Nigerians from data breaches”. BusinessDay NG. https://businessday.ng/opinion/article/protecting-nigerians-from-data-breaches/.
Chaman Law Firm. (2024a). “Cyber law and data protection in Nigerian agricultural technology innovations”. https://chamanlawfirm.com/cyber-law-and-data-protection/.
Chaman Law Firm. (2024b). “Data privacy laws in Nigeria: 9 compliance requirements and challenges”. https://www.chamanlawfirm.com/data-privacy-laws-in-nigeria-9-complia/.
Chaoui, M. (2024). “The NDPR and its transformative impact on the Nigerian market”. Atlas One Cyber. https://www.atlasonecyber.com/insights/the-ndpr-and-its-transformative-impact-on-the-nigerian-market-a-deep-dive.
Creswell, J.W. & Creswell, J.D. (2018). Research Design: Qualitative, Quantitative, and Mixed Methods Approaches. 5th ed. SAGE Publications. https://doi.org/10.1016/C2014-0-03514-8.
Mondaq. (2020). “Understanding Nigerian data protection compliance requirements and managing breach”. https://www.mondaq.com/nigeria/data-protection/984628/understanding-nigerian-data-protection-compliance-requirements-and-managing-breach.
NITDA: National Information Technology Development Agency. (2019). Nigeria Data Protection Regulation (NDPR). https://nitda.gov.ng/wp-content/uploads/2020/11/NigeriaDataProtectionRegulation11.pdf.
Okoye, C.O. & Chukwuma, L.I. (2022). “Challenges of data privacy compliance among Nigerian SMEs”. Journal of African Business and Technology. 11(1): 82-98.
Oni, F.O. (2021). “Data protection compliance as a cybersecurity strategy: Insights from Nigeria”. Journal of Information Security and Privacy. 5(3): 120-136.
Reuters. (2024). “Nigerian data agency fines Fidelity Bank for breaches”. https://www.reuters.com/business/finance/nigerian-data-agency-fines-fidelity-bank-breaches-2024-08-22/.
Rosewood Legal. (2024). “The impact of cybersecurity regulations on corporate compliance practices in Nigeria”. https://rosewoodlegal.com/the-impact-of-cybersecurity-regulations-on-corporate-compliance-practices-in-nigeria/.
Saunders, M.; Lewis, P. & Thornhill, A. (2019). Research Methods for Business Students. 8th ed. Pearson Education.
Taber, K.S. (2018). “The use of Cronbach’s alpha when developing and reporting research instruments in science education”. Research in Science Education. 48(6): 1273-1296. https://doi.org/10.1007/s11165-016-9602-2.
Journal of Cyberspace Studies

Articles in Press, Accepted Manuscript
Available Online from 21 July 2025

Files

History

  • Receive Date: 28 May 2025
  • Revise Date: 28 June 2025
  • Accept Date: 14 July 2025
  • First Publish Date: 21 July 2025
  • Publish Date: 21 July 2025

Share

How to cite

Statistics