Fidelity Bank Data Breach: Nigerian Bank Denies Allegations and Contests Fine

The controversy surrounding Fidelity Bank Data Breach has reached new heights with the Nigerian bank vehemently denying any allegations of privacy violations. The institution, known for its market capitalization of ₦323 billion ($205 million), has challenged the ₦555.8 million fine imposed by the Nigerian Data Protection Commission (NDPC), insisting that they have not breached any data protection laws.

The conflict arose when a customer alleged that Fidelity Bank had utilized their personal information without consent to open an account in April 2023. Despite the NDPC finding evidence supporting the customer’s claim and issuing a fine, Fidelity Bank conducted an internal investigation, revealing no signs of a data breach and citing missing documentation for the incomplete account opening process.

Babatunde Bamigboye, from the NDPC, highlighted the bank’s mishandling of personal data, including the unauthorized processing through tools like cookies and the mobile app with over a million downloads. Fidelity Bank was also found to be using non-compliant third-party data processors, further complicating the situation.

Fidelity Bank refuted the allegations in a statement, emphasizing their commitment to data privacy and protection. The bank stated that they promptly blocked the account in question and ultimately closed it due to the missing documents, emphasizing that the account was never operational.

The ongoing dispute between Fidelity Bank and the NDPC carries significant implications for Nigeria’s banking sector and underscores the critical importance of data security and regulatory compliance in the digital age. The resolution of this case will undoubtedly shape the future of data privacy and protection practices in the country, urging all organizations to prioritize data security and adhere to applicable regulations to avoid similar legal pitfalls.