On April 25, 2025, a delegation from Clarensec paid a courtesy visit to the Nigerian Data Protection Commission (NDPC) to share our vision for improving the security of health information systems across Nigeria. Our founder, Dr. John Umoru, delivered a presentation titled "Safeguarding Health Data in Nigeria’s Growing Digital Ecosystem” to the Honorable Commissioner, Dr. Vincent Olatunji who was represented by the head of Innovation, Mrs. Adaobi Nwankwo.
Why This Visit Matters
Electronic Medical Records (EMRs) have transformed healthcare delivery in Nigeria, enabling faster diagnoses, reducing paperwork, and improving coordination. With over 40,000 health facilities and more than 500 public and private hospitals now adopting EMR platforms, the digital shift is well underway. However, one critical issue remains largely unaddressed: the security of the data being collected.
Too many hospitals still operate without secure authentication, proper backups, or vulnerability assessments. This puts millions of Nigerians at risk of data breaches, identity theft, and even targeted medical fraud. Our visit to the NDPC was about changing that narrative—by making patient privacy a national priority.
What We Shared
During the presentation, we outlined:
- The current state of EMR adoption in Nigeria and the growing risks associated with insecure systems.
- Real-world examples of how ransomware can shut down hospital operations and compromise patient care.
- How weak health data protection undermines national security, public trust, and healthcare infrastructure.
We emphasized that health data is no longer just sensitive information, it is critical infrastructure. Like energy grids or financial networks, the compromise of EMRs can have far-reaching consequences.
How Clarensec is Responding
At Clarensec, we are bridging the gap between digital adoption and data protection by offering:
- Penetration testing to simulate attacks before they happen.
- Red team assessments to uncover real-world vulnerabilities.
- Compliance audits tailored for hospitals and healthcare systems.
- Training and support to help health providers meet both NDPA and international standards.
Our approach is hands-on, collaborative, and specifically designed for the healthcare sector.
Looking Ahead
Our partnership with the NDPC marks a step toward stronger collaboration between regulators and cybersecurity professionals. Securing health data isn't optional—it’s a strategic imperative for Nigeria's digital future. Without immediate intervention, the threats to patient privacy, national security, and public health will continue to grow.
We’re grateful to the NDPC for welcoming our team and engaging in meaningful dialogue about the future of data protection in Nigeria’s healthcare system. We look forward to continued partnership and progress.
