Nigeria’s data protection regulator has launched a formal investigation into Chinese-owned e-commerce platform Temu over suspected violations of the country’s data protection laws.
In a press release dated February 16, the Nigeria Data Protection Commission (NDPC) said its National Commissioner and Chief Executive Officer, Vincent Olatunji, authorised the probe following mounting concerns over the company’s data processing practices.
“The investigation of Temu was triggered by concerns around online surveillance through personal data processing, accountability, data minimisation requirement, transparency, duty of care and cross-border data transfer,” the statement read in part.
The Commission said Temu processes the personal data of an estimated 12.7 million Nigerian users, while serving about 70 million daily active users globally. The scale of those operations, the regulator noted, raises serious questions about how Nigerians’ personal data are collected, stored, transferred and protected.
The NDPC also signalled possible liability for third-party processors working with the platform.
“The National Commissioner warned that processors who engage in processing activities on behalf of data controllers without verifying their compliance with the NDP Act may be liable under the NDP Act,” the Commission added.
The probe exposes the fast-growing marketplace to sanctions in one of Africa’s largest digital markets. A statement from the company said: “At Temu, protecting user privacy and data security is a top priority. We are committed to complying with applicable laws and regulations in our data practices. We will continue to engage in open and constructive dialogue with the NDPC to address any questions or concerns.”.
Global Scrutiny
The probe comes amid intensifying global scrutiny of the platform, which is owned by Nasdaq-listed PDD Holdings. Temu has expanded rapidly in Nigeria through an app-driven marketplace offering steep discounts on fashion, electronics and household goods, gaining traction among price-sensitive consumers.
Nigeria, Africa’s most populous country, is one of the continent’s fastest-growing digital economies. Millions rely daily on mobile apps, fintech services and e-commerce platforms, often with limited visibility into how their personal information is used or shared.
The investigation marks the latest regulatory challenge for Temu worldwide. The company has faced investigations, lawsuits and regulatory actions across multiple jurisdictions over data privacy, product safety, labour standards and competition concerns.
In October 2024, the European Commission opened formal proceedings against Temu and in July 2025 issued preliminary findings accusing the company of failing to prevent the sale of illegal, unsafe or counterfeit goods on its platform. A 2023 report by the US House Select Committee also highlighted an “extremely high risk” that products sold on Temu are made with forced labour. Authorities in Germany, South Korea, South Africa and Brazil have similarly scrutinised the company’s operations.
Nigeria’s regulator has previously demonstrated its willingness to impose heavy penalties for data breaches. Last year, the NDPC fined Multichoice Nigeria 766 million naira for violating data protection rules.
Editor’s Note: This report has been updated with a comment from Temu.
Discover more from Pluboard
Subscribe to get the latest posts sent to your email.