Nigerian authorities have launched an official investigation into the popular e-commerce platform Temu amid allegations that the company violated data privacy laws and potentially compromised the personal information of millions of users across the country.
The probe was announced on 17 February 2026 by Nigeria’s National Information Technology Development Agency (NITDA), which said it is examining whether Temu’s data collection, storage and usage practices adhere to the nation’s data protection and privacy regulations.
The investigation follows complaints from users, civil society groups and digital rights advocates, who claim that the app collects excessive personal data without adequate consent and shares it with third-party entities without clear user notification. Authorities have said they will determine whether statutory safeguards were breached and whether there are legal grounds for enforcement actions, fines or sanctions.
What triggered the investigation?
Nigeria’s data protection framework empowers regulators to act when there are credible concerns about how companies handle user data. Recent reports indicated that users of Temu a widely used online shopping platform known for its low prices and rapid delivery services experienced questionable account activity, unsolicited marketing messages, and unclear data retention policies.
Complaints ranged from unexpected requests for sensitive information during account setup to concerns about location tracking, camera access, and contact list permissions that users may not have knowingly authorized. Privacy advocates have argued that such practices could expose users to identity theft, financial fraud and other risks.
The allegations prompted NITDA to open a formal investigation to assess whether Temu’s policies and practices comply with Nigeria’s Data Protection Regulation and other relevant digital rights laws.
Regulatory response and user protection
NITDA officials said that the investigation will involve:
- A detailed audit of Temu’s data handling and storage methods
- Review of the company’s consent mechanisms and privacy notices
- Assessment of whether user data is shared with third-party partners
- Verification of security measures used to safeguard sensitive information
If violations are confirmed, regulators could impose fines, require operational changes, or even suspend aspects of Temu’s services within Nigeria until the company demonstrates compliance.
A NITDA spokesperson emphasised that protecting citizens’ digital rights is a high priority, especially as more Nigerians rely on online platforms for shopping, communication and financial transactions.
Public and industry reactions
The probe has sparked significant discussion among Nigerian internet users, tech professionals and privacy advocates. Many users welcomed the investigation, saying it reflects growing awareness of digital rights and accountability for global tech platforms operating in Nigeria.
“It’s important that companies respect our data and privacy,” said one Lagos-based student who uses Temu regularly. “We should be able to trust platforms without worrying about where our personal information goes.”
Tech experts noted that the case highlights broader challenges in regulating fast-growing digital markets, where platforms often operate across borders and collect large volumes of user data. They argued that clear enforcement of data protection standards is essential to build user confidence and protect consumers in the digital economy.
Digital rights groups have called for transparency throughout the investigation and urged Temu to disclose detailed information about its data practice
Broader digital rights concerns
Nigeria, with one of the largest and most vibrant digital populations in Africa, has increasingly focused on data privacy, cybersecurity, and online consumer protection. Authorities have updated regulations and enforcement mechanisms in recent years to address concerns related to social media, fintech services and e-commerce platforms. The Temu investigation reinforces the notion that digital platforms must balance business growth with responsible data stewardship and respect for user autonomy. Civil society leaders say the outcome of this case could set important precedents for how multinational tech companies operate in Nigeria and how local privacy laws are enforced against large, global digital businesses
NITDA has pledged to complete the investigation within a set timeframe and to release findings publicly. Depending on the outcome, the agency could issue directives for Temu to change how it collects, stores and uses data or pursue penalties if non-compliance is confirmed. Users concerned about their data privacy are being encouraged to review their account settings, limit unnecessary permissions and report any suspicious activity to regulators.
As Nigeria’s digital landscape continues to expand, this investigation marks a significant moment in shaping how data privacy is enforced and how tech platforms engage with users in the country
