Safeguarding Your Data: How We Protect and Secure Shareholder Information
Safeguarding Your Data: How We Protect and Secure Shareholder Information
November 12, 2025
Building Trust Through Responsible Data Stewardship
At Africa Prudential, we recognize that trust is earned through transparency and accountability. As your Registrar, we are privileged to manage shareholder and customer data and we take that responsibility seriously.
Our commitment goes beyond compliance. Guided by the Nigeria Data Protection Act (NDPA) 2023 and the General Administrative and Implementation Directive (GAID) of the Nigeria Data Protection Commission (NDPC), we have built a framework that ensures your data remains safe, private, and secure at all times.
Our Data Protection Principles
We anchor our privacy approach on three non-negotiable pillars:
Lawfulness & Transparency: We process data for legitimate business and regulatory purposes only.
Data Minimization & Accuracy: We collect only what’s necessary and ensure it remains up to date.
Accountability: We take ownership of how your data is managed and continually improve our controls.
How We Keep Your Data Secure
Our data protection practices are built on a risk-based framework and strengthened by international standards — ISO 27001 for Information Security and ISO 22301 for Business Continuity Management. These standards ensure that your data is safeguarded under both normal and disruptive circumstances.
Secure Data Handling: Your personal and financial information; including names, addresses, bank details, and BVNs is encrypted in storage and during transmission. Access is strictly role-based and monitored.
Continuous Risk Assessment: As part of our Enterprise Risk Management structure, we continuously identify and evaluate risks to data privacy, cybersecurity, and operational resilience.
Business Continuity and Disaster Recovery (ISO 22301): We maintain a certified Business Continuity and Disaster Recovery framework, ensuring uninterrupted shareholder services.
Incident Response and Information Security (ISO 27001): Our ISO 27001 certification reinforces our readiness to respond swiftly to incidents and breaches.
Third-Party Data Processing Controls: When third parties handle shareholder data on our behalf, we ensure Data Processing Agreements (DPAs) are in place.
Empowering You — The Data Subject
You have full control over your data. Under the NDPA, you can:
1. Access your personal data.
2. Request corrections to inaccuracies.
3. Withdraw consent where applicable.
4. Request deletion when data is no longer required.
You can exercise these rights at any time by reaching out to our Data Protection Office.
A Risk-Based, Integrated Approach to Privacy
At Africa Prudential, our Data Protection Officer (DPO) also serves as the Head of Enterprise Risk Management, ensuring that every privacy and security decision is guided by a risk-based approach. This integration enables us to view data protection not in isolation but as part of the broader risk and governance structure. Our DPO works closely with IT Security and Business Continuity teams to ensure that risks are identified early, controls are effective, and responses are coordinated.
A Culture of Privacy, Not Just Compliance
We believe privacy should live in our culture, not just our policies. Every staff member, vendor, and data champion undergoes continuous training on data handling, confidentiality, and ethical responsibility.
Continuous Improvement and Assurance
Compliance is a journey, not a milestone. Through periodic audits, internal reviews, and alignment with NDPC directives, we continually refine our data protection practices. Our goal is simple: to remain a benchmark of data responsibility in the capital market ecosystem.
Your Trust, Our Responsibility
At the heart of our business is one enduring value trust. We will continue to invest in systems, people, and processes that protect your data and respect your privacy. Your trust is our asset. Your data is our responsibility.
Contact Our Data Protection Office
For questions, clarifications, or to exercise your data rights, please contact: dataprotectionofficer@africaprudential.com www.africaprudential.com/Privacy-Policy Best regards,
Building Trust Through Responsible Data Stewardship
At Africa Prudential, we recognize that trust is earned through transparency and accountability. As your Registrar, we are privileged to manage shareholder and customer data and we take that responsibility seriously.
Our commitment goes beyond compliance. Guided by the Nigeria Data Protection Act (NDPA) 2023 and the General Administrative and Implementation Directive (GAID) of the Nigeria Data Protection Commission (NDPC), we have built a framework that ensures your data remains safe, private, and secure at all times.
Our Data Protection Principles
We anchor our privacy approach on three non-negotiable pillars:
Lawfulness & Transparency: We process data for legitimate business and regulatory purposes only.
Data Minimization & Accuracy: We collect only what’s necessary and ensure it remains up to date.
Accountability: We take ownership of how your data is managed and continually improve our controls.
How We Keep Your Data Secure
Our data protection practices are built on a risk-based framework and strengthened by international standards — ISO 27001 for Information Security and ISO 22301 for Business Continuity Management. These standards ensure that your data is safeguarded under both normal and disruptive circumstances.
Secure Data Handling: Your personal and financial information; including names, addresses, bank details, and BVNs is encrypted in storage and during transmission. Access is strictly role-based and monitored.
Continuous Risk Assessment: As part of our Enterprise Risk Management structure, we continuously identify and evaluate risks to data privacy, cybersecurity, and operational resilience.
Business Continuity and Disaster Recovery (ISO 22301): We maintain a certified Business Continuity and Disaster Recovery framework, ensuring uninterrupted shareholder services.
Incident Response and Information Security (ISO 27001): Our ISO 27001 certification reinforces our readiness to respond swiftly to incidents and breaches.
Third-Party Data Processing Controls: When third parties handle shareholder data on our behalf, we ensure Data Processing Agreements (DPAs) are in place.
Empowering You — The Data Subject
You have full control over your data. Under the NDPA, you can:
1. Access your personal data.
2. Request corrections to inaccuracies.
3. Withdraw consent where applicable.
4. Request deletion when data is no longer required.
You can exercise these rights at any time by reaching out to our Data Protection Office.
A Risk-Based, Integrated Approach to Privacy
At Africa Prudential, our Data Protection Officer (DPO) also serves as the Head of Enterprise Risk Management, ensuring that every privacy and security decision is guided by a risk-based approach. This integration enables us to view data protection not in isolation but as part of the broader risk and governance structure. Our DPO works closely with IT Security and Business Continuity teams to ensure that risks are identified early, controls are effective, and responses are coordinated.
A Culture of Privacy, Not Just Compliance
We believe privacy should live in our culture, not just our policies. Every staff member, vendor, and data champion undergoes continuous training on data handling, confidentiality, and ethical responsibility.
Continuous Improvement and Assurance
Compliance is a journey, not a milestone. Through periodic audits, internal reviews, and alignment with NDPC directives, we continually refine our data protection practices. Our goal is simple: to remain a benchmark of data responsibility in the capital market ecosystem.
Your Trust, Our Responsibility
At the heart of our business is one enduring value trust. We will continue to invest in systems, people, and processes that protect your data and respect your privacy. Your trust is our asset. Your data is our responsibility.
Contact Our Data Protection Office
For questions, clarifications, or to exercise your data rights, please contact: dataprotectionofficer@africaprudential.com www.africaprudential.com/Privacy-Policy Best regards,
Get our self service app
Monitor all your investment portfolio on the go. Track and access dividends from multiple investments.
Africa Prudential Plc is registered with the Securities and Exchange Commission, Nigeria.
Get our self service app
Monitor all your investment portfolio on the go. Track and access dividends from multiple investments.
Africa Prudential Plc is registered with the Securities and Exchange Commission, Nigeria.
Get our self service app
Monitor all your investment portfolio on the go. Track and access dividends from multiple investments.
Africa Prudential Plc is registered with the Securities and Exchange Commission, Nigeria.