The Data Protection Commission (DPC) is investigating a potential cybersecurity breach affecting MTN customers’ personal information.
In a statement on Friday, April 25, the DPC said it is working with MTN Ghana, the National Communications Authority, and the Cybersecurity Authority to uncover the cause.
If negligence is confirmed, MTN Ghana could face sanctions under Act 843. “Should it be determined that the Personal Information of any Ghanaian citizen or resident has been compromised as a result of negligence, the Commission will not hesitate to invoke its enforcement powers under Act 843 to hold MTN Ghana and/or MTN Group accountable,” the Commission said.
The DPC stressed that safeguarding personal data is a fundamental right. “The Commission wishes to reiterate to the public that the privacy and protection of Personal Information is a fundamental right, and all Data Controllers and Processors operating within Ghana or processing the Personal Information of Ghanaian citizens are expected to adhere strictly to the provisions of Act 843.”
It also called on all institutions to register with the DPC to ensure accountability. “This registration ensures that these entities are accountable for how they handle Personal Information. To safeguard your Personal Information, always check if an institution or service provider you engage with is licensed.”
The public is urged to stay alert, adopt digital safety practices, and report any suspicious activity. “The Data Protection Commission will provide further updates to the public as the situation evolves and commits to maintaining transparency, accountability, and the protection of individual rights in the digital space.”
Read below the statement;
