Data has become the defining asset of the digital economy, shaping how services are delivered and how innovation is achieved across sectors such as finance, healthcare, telecommunications, energy, and transportation. This central role of data has also heightened concerns around misuse, security breaches, and the erosion of consumer trust. While general data protection laws provide a foundational framework, they often fall short of addressing the sector-specific realities and risks that arise in practice. Different industries interface with data in different ways, and as such, a one-size-fits-all approach is no longer sufficient. The United Kingdom has sought to bridge this gap through the enactment of the Data (Use and Access) DUAA 2025 (the “DUAA”), a landmark law that refines UK GDPR, enables “Smart Data” schemes, promotes digital verification services, and modernises rules on research, cookies, and international transfers.
SHAPING NIGERIA’S SECTORAL DATA PROTECTION REGIMES: INSIGHTS FROM THE UK DATA (USE AND ACCESS) DUAA, 2025
