NIMC reacts to report of breach of Nigeria’s identity database

The National Identity Management Commission (NIMC) has debunked claim of the country’s identity database being breached by hackers adding that the database is adequately secured and protected.

Director-General of NIMC, Engr. Aliyu Aziz in a statement released on Tuesday January 11, said its servers were not breached but are fully optimised at the highest international security levels as the custodian of the most important national database for Nigeria.

He said;

“Over the years, through painstaking efforts, NIMC has built a robust and credible system for Nigeria’s identity database. The Commission and its infrastructure are certified to the ISO 27001:2013 Information Security Management System Standard which are revalidated annually.”

Aziz said the NIMC MobileID application has no database within the app, nor does it store information in flat files. According to him, the commission has made this app available to the public to reduce and eliminate any delay or challenge(s) in accessing one’s NIN.

 

The NIMC DG added;

“The public should be aware that the possession of a NIN slip does not amount to access to the National Identity Database, but that the NIN slip is just a physical assertion of a person’s identity. Under the data protection regulations, no licensed partner/vendor is authorized to scan and store copies of individuals NIN slips but rather authenticate the NIN using the approved and authorized verification platforms/channels provided.

 

“As part of its policies to protect personally identifiable information stored in the National Identity Database, the public may recall that the Ministry of Communications and Digital Economy through NIMC launched the Tokenization features of the NIN verification service. This solution is to safeguard the personal data of individuals and ensure continuous user rights and privacy. ”

 

 

 

Leave a Reply