EMMANUEL PETER ADAYEHI
1. Neutral Incident Description
May 2026 Incident: Alleged Online Disclosure of Voter Registration Details
On May 20, 2026, a social media account using the handle @LereOlayinka posted images that appeared to show voter registration details associated with Nigerian actor Emeka Ike. The posts were circulated on Instagram and reported by Arise News on May 21, 2026.
As of May 27, 2026, no official statement confirming the authenticity of the images, the source of the data, or the identity of the account operator had been published on the websites of the Independent National Electoral Commission, the Nigeria Police Force, or the Department of State Services.
Civil society organizations cited by Premium Times on May 21, 2026 described the alleged posts as a matter potentially falling under the Nigeria Data Protection Act 2023 and the _Cybercrimes Act 2015 On May 22, 2026, Arise News broadcast comments attributed to Prof. Pat Utomi calling for an audit of INEC data access protocols.
All references to individuals and events remain allegations. No determination of fact, liability, or breach has been made by a court or regulator as of this writing. This summary is based solely on publicly reported media coverage and is subject to official investigation.
Insert full URL + http://archive.is link + access date
Insert http://INEC.gov.ng search result screenshot dated May 27, 2026
Insert Premium Times URL + archive link
Insert Arise News YouTube/clip timestamp + URL
2. Policy Brief: Recommendations*
Frame as “systems reform,” not “punish X person”
Issue: Potential unauthorized disclosure of voter register data highlights gaps in access controls and breach notification ahead of the 2027 General Elections.
Legal Standard:
1. NDPA 2023, Sec. 24: Personal data requires a lawful basis for processing.
2. NDPA 2023, Sec. 40: Data controllers must notify the Nigeria Data Protection Commission of breaches within 72 hours.
3. Cybercrimes Act 2015, Sec. 38: Unauthorized access to computer data is an offence.
4. _Electoral Act 2022, Sec. 9(5)_: INEC has custody of the voter register and must protect its integrity.
Observed Gap: INEC Guidelines for Access to the National Register of Voters, 2022 limits access to accredited staff with 2FA. There is no publicly available policy detailing: a) quarterly audits of access logs, b) mandatory breach notification to affected data subjects, or c) third-party access by non-INEC personnel.
Recommendations for INEC, NDPC, and National Assembly:
Action Owner Legal Basis Deadline
1. Publish a redacted quarterly access log for the voter register showing role-based access counts, not individual names INEC Chairman NDPA 2023 Sec. 40; FOI Act 2011 July 30, 2026
2. Conduct an independent audit of all INEC backend accounts with voter register access. Submit report to NASS Committees on INEC & ICT NDPC + certified auditor NDPA 2023 Sec. 33; Electoral Act 2022 Sec. 6 Sept 30, 2026
3. Issue a public guideline clarifying whether political appointees or aides may access INEC databases and under what MOU INEC + OSGF NDPA 2023 Sec. 24; Public Service Rules Aug 15, 2026
4. Activate NDPC’s complaint portal for affected data subjects to file Sec. 38 claims related to electoral data NDPC NDPA 2023 Sec. 38 Immediate
Escalation Path for Data Subject: Any Nigerian whose voter data is allegedly disclosed without consent may:
1. File a complaint with NDPC via https://ndpc.gov.ng/complaints
2. Petition the IGP under Cybercrimes Act 2015, Sec. 38
3. Seek redress via Federal High Court under NDPA 2023, Sec. 39
3. What to do before you send this anywhere
Stay safe. In Nigeria, “truth” is a defense to defamation.