The Nigeria Data Protection Regulation (NDPR) serves as the primary data protection framework in Nigeria, aiming to safeguard the privacy rights of individuals regarding the processing of their personal data. Implemented by the National Information Technology Development Agency (NITDA), the regulation mandates organizations to adhere to principles like lawful processing, data accuracy, limited data retention, and data security, ensuring that personal information is handled with the utmost care and responsibility.
Exium seamlessly integrates Security Access Service Edge (SASE) and Extended Detection and Response (XDR) functionalities, offering comprehensive security and networking through a single cloud-based platform. Recognizing the importance of data privacy regulations such as the NDPR, Exium is dedicated to adhering to these requirements to protect end users' data as specified by its customers.
Exium’s platform manages two main types of data: Configuration Data and Log Data.
|
Data Storage and Encryption |
Access Control |
Data Residency and Lifecycle Management |
|---|---|---|
| Stored securely in an Apache Cassandra database, Configuration Data comprises sensitive information such as customers' email addresses and workspace details. To comply with NDPR, all Configuration Data is encrypted both during transit and at rest, ensuring protection against unauthorized access. | Stringent access controls limit Configuration Data access to specific users within a customer's workspace, providing them with the ability to invite chosen users to manage the data securely. | Configuration Data is retained for a specified period to mitigate risk and can be deleted upon the customer’s request or when a workspace is no longer active. |
|
Encrypted Storage |
Vendor Collaboration |
Automatic Data Purging |
|---|---|---|
| Log Data, crucial for monitoring services, is encrypted in transit and at rest, akin to Configuration Data. | At times, Log Data might be stored with trusted vendors such as Google Cloud, under strict NDPR compliance. | Adhering to data minimization principles, Log Data is stored for a limited duration and automatically purged. |
Exium's Cybermesh is globally distributed to enhance platform reach and reliability. For Nigerian customers, specific data residency policies comply with NDPR:
|
Regional Data Storage |
Localized Compliance |
Reliable Accessibility |
|---|---|---|
| Data from customers in Nigeria is exclusively stored within the country, ensuring compliance with NDPR data residency requirements. | By utilizing regional data centers, Exium ensures data processing and storage adhere to local regulations, minimizing transfer-related risks and improving data protection. | This strategic distribution enhances service performance by processing and storing data closer to end users in Nigeria. |
Exium collects necessary personal data securely through channels like an admin console, email, phone, or integration with systems like Active Directory:
|
Purpose Limitation |
User Consent and Control |
|---|---|
| Personal data is strictly used for providing networking and security services, with no unauthorized sharing with third parties. | Customers must agree to Exium’s End User License Agreement (EULA) before utilizing the platform, ensuring informed consent in line with NDPR. |
Exium’s platform is built with privacy and security at its core, ensuring compliance with NDPR:
|
Encryption Practices |
Separation of Data |
Administrative Controls |
|---|---|---|
| All data, whether in transit or at rest, is encrypted to enhance security. | Exium creates segregated workspaces to prevent unauthorized data access or mixing, with automatic purging upon service termination. | The admin console enables management and modification of personal data while adhering to data protection laws. |
Exium’s unified SASE and XDR platform not only combines security and networking efficiency but also ensures compliance with NDPR data privacy requirements. By emphasizing encryption, access controls, and comprehensive data management practices, Exium empowers its customers to confidently navigate the complexities of data privacy while delivering reliable, efficient services. Through its data residency policies specific to Nigeria, Exium further underscores its commitment to protecting customer data and optimizing service performance and accessibility.