Detailed overview
Nigeria does not currently have a single horizontal AI Act. Its AI framework is based on the National AI Strategy, data-protection law, digital-economy policy, sectoral rules and regulatory development.
National AI Strategy
Nigeria's National Artificial Intelligence Strategy sets a national direction for responsible, ethical and inclusive AI innovation. Its goals include economic growth, competitiveness, social development, inclusion, adoption across sectors, responsible AI and effective governance.
The strategy is not itself a licensing regime or a full AI statute. It provides policy direction for AI infrastructure, skills, ecosystem development, research, innovation, responsible use and public-private cooperation.
Nigeria Data Protection Act + GAID 2025
Where AI processes personal data, Nigeria's data-protection framework applies. The Nigeria Data Protection Commission has issued the Nigeria Data Protection Act General Application and Implementation Directive 2025, which explains core data-protection principles such as fairness, lawfulness, transparency, purpose limitation, data minimisation, storage limitation, accuracy, confidentiality, integrity, availability and accountability.
AI systems involving profiling, automated recommendations, identity verification, credit scoring, employment screening, healthcare, education, public services or consumer services may require lawful basis analysis, transparency, data-subject rights management, security safeguards and data-protection impact assessment where risks are high.
Penalties
Nigeria does not currently have one AI-specific penalty table. Penalties arise under the underlying law breached, especially data protection, consumer protection, financial regulation, healthcare regulation, employment law, cybersecurity, telecommunications or criminal law.