The Nigeria Data Protection Commission (NDPC) has initiated a sector-specific investigation into dozens of companies for potential violations of the Nigeria Data Protection Act (NDP Act, 2023). The probe focuses on prominent fintech and financial institutions, naming several well-known brands in the list released by NDPC. The public notice instructs all organizations on the schedule to submit documentary proof within 21 days that they have filed NDP Act compliance audit returns for 2024, appointed a Data Protection Officer (DPO), registered as a data controller or processor of major significance where required, and implemented adequate technical and organizational measures to protect personal data. The NDPC warns that non-compliance may lead to enforcement orders, administrative fines, or even criminal prosecution under the Act.