The Nigerian Society of Engineers (NSE) Privacy Policy

Introduction

As the professional body for engineers in Nigeria, the Nigerian Society of Engineers (NSE) recognizes the significance of safeguarding personal data and the benefits of maintaining privacy. NSE is also conscious of its responsibilities as a data controller of personal information belonging to its members, partners, stakeholders, employees, and the general public.

In adherence to the data protection principles of lawfulness, fairness, transparency, data minimization, purpose limitation, integrity, confidentiality, and accountability, the NSE has developed this privacy policy to offer clear, concise information about our data management practices, especially as guaranteed under Section 37 of the Constitution of the Federal Republic of Nigeria, 1999 (as amended) and in compliance with the Nigeria Data Protection Act (NDPA) 2023.

This policy applies to:

• The collection, use, storage, transmission, and other processing of personal data via the NSE website, mobile applications, member portals, and digital platforms.
• Personal data collected manually during NSE events, registrations, or any of its regulatory and operational activities.

This policy was last updated on 13 May, 2025, and will be reviewed periodically as required.

About the NSE

The Nigerian Society of Engineers (NSE) is a non-profit professional organization established to promote and advance the practice of engineering in Nigeria. With over 70,000 registered members across various engineering disciplines and branches nationwide and in the diaspora, the NSE is committed to professional excellence, ethics, and national development.
For more information, please visit https://nse.org.ng

What Personal Information Do We Process?

As a membership-based organization and stakeholder in professional regulation, the NSE may collect and process the following categories of personal data depending on the context:

• Identification Data: Names, gender, date of birth, marital status, passport photograph, and NSE Membership Number.
• Contact Information: Email address, phone numbers, mailing address, and emergency contact details.
• Professional Details: Academic qualifications, engineering discipline, employment history, registration with COREN, and professional development records.
• Multimedia Data: Photographs, videos, and audio recordings captured at NSE events or submitted online.
• Health Data: In limited cases, information collected for welfare, insurance, or health-related assistance.
• Children’s Data: Where NSE collects data of individuals below the age of 18 (e.g., for youth outreach or training programs), verifiable consent from a parent or legal guardian will be obtained.

Why Do We Process Your Personal Data?

We collect and process personal data only for purposes that are clearly defined and lawful, including but not limited to:

• Fulfilling our statutory and operational roles in advancing the engineering profession.
• Maintaining accurate membership records and professional directories.
• Facilitating participation in NSE conferences, trainings, exams, and other NSE events.
• Providing member services including digital platforms, newsletters, and publications.
• Ensuring compliance with regulatory, audit, and financial obligations.
• Conducting research, surveys, and education-related activities in the engineering field

Legal Bases for Processing Your Data

NSE relies on one or more of the following legal bases for processing your personal data:

• When you voluntarily provide personal data for registration, newsletter, subscriptions, or event participation. Legal Obligation – to meet compliance obligations under applicable law.
• Contractual Necessity – where required to fulfill contractual engagements, such as consultancy, or service provision.
• Legitimate Interest – in furthering NSE’s professional and organizational objectives.
• Public Interest – for tasks related to public benefit, education, or national development.

Automated Decision-Making and Profiling

NSE does not currently engage in automated decision-making or profiling that produces legal or similarly significant effects on individuals. If this changes, affected individuals will be informed of their rights and appropriate safeguards.

International Data Transfers

In cases where personal data is transferred outside Nigeria (e.g., to cloud service providers or international partners), such transfers are done in compliance with the NDPA. Adequate safeguards, including standard contractual clauses or regulatory approvals, will be used to protect your data.

How Do You Consent to Processing?

By submitting your data via our digital or manual platforms, or by attending NSE’s and activities, you consent to the collection and processing of your personal information as outlined in this policy—unless otherwise stated in writing.

How Can You Withdraw Consent?

Where consent is the lawful basis for data processing, you may withdraw it at any time by contacting the NSE Secretariat. Please note that withdrawal of consent will not affect processing carried out before the withdrawal was received.

Who Do We Share Your Data With?

We only share personal data with trusted entities and in line with legal and contractual obligations, including:

• Internal staff or NSE committee members.
• Partner organizations such as COREN, international affiliates, or sponsors, where appropriate.
• Government agencies or regulatory authorities or public bodies, where legally required.
• IT and Cloud service providers engaged by the NSE for secure data storage and processing, under strict data processing agreements.

  NSE does not sell, trade, or share your personal data for marketing purposes without your explicit consent.

How Long Do We Retain Your Data?

your data will be retained only for as long as necessary to:

• Meet the purpose for which it was collected;
• Fulfil our legal, regulatory, or contractual obligations;
• Maintain historical records or professional archives, unless a valid deletion request is received.

How Do We Protect Your Data?

We implement administrative, technical, and physical safeguards to protect your data from loss, misuse, unauthorized access, alteration, or destruction. This includes:

• Role-based access control
• Secure cloud storage and encrypted communications
• Regular audits and staff training
• Data processing agreements with third-party vendors

What Are Your Rights?

Under the applicable data protection laws, you are entitled to the following rights:

• The right to be informed about how your data is processed
• The right to access your personal data
• The right to correct or update your data
• The right to withdraw consent at any time
• The right to object to certain types of processing
• The right to request data deletion (subject to legal obligations)
• The right to lodge complaints with the Nigeria Data Protection Commission (NDPC)

Data Protection Impact Assessments (DPIA)

For processing activities likely to result in high risks to individual rights (e.g., processing sensitive health data or large-scale profiling), NSE commits to conducting Data Protection Impact Assessments in line with the NDPA and NDPC guidance.

What Happens in the Event of a Data Breach?

In the event of a data breach, NSE will take immediate steps to assess and mitigate any risks, notify affected individuals if required, and report the incident to relevant authorities in accordance with the NDPA. Affected individuals may also pursue remedies through the Nigeria Data Protection Commission or competent courts.

Contacting Our Data Protection Officer

For inquiries or to exercise your rights, please contact:

Data Protection Officer (DPO)
Nigerian Society of Engineers (NSE)
Email: info@nse.org.ng

Policy Review and Updates

This privacy policy is reviewed regularly to ensure accuracy and compliance with evolving laws and technologies. We may update it without prior notice. The most recent version will always be available on our official platforms.

Last Updated: 13 May 2025