While the full scope of the breach is still emerging, the Commission wishes to assure the people of Ghana that it is actively monitoring the situation and engaging closely with MTN Ghana, National Communications Authority and Cybersecurity Authority.

Should it be determined that the Personal Information of any Ghanaian citizen or resident has been compromised as a result of negligence, the Commission will not hesitate to invoke its enforcement powers under Act 843 to hold MTN Ghana and/or MTN Group accountable.

The Commission wishes to reiterate to the public that the privacy and protection of Personal Information is a fundamental right, and all Data Controllers and Processors operating within Ghana or processing the Personal Information of Ghanaian citizens are expected to adhere strictly to the provisions of Act 843.

The Public is reminded that Act 843 legally requires all public and private institutions to register with the Commission. This registration ensures that these entities are accountable for how they handle Personal Information. To safeguard your Personal Information, always check if an institution or service provider you engage is licensed. We encourage the Public to remain vigilant, adopt recommended digital safety practices, and report any suspicious activity to their service providers and the Commission.

The Data Protection Commission will provide further updates to the public as the situation evolves and commits to maintaining transparency, accountability, and the protection of individual rights in the digital space.

Contact: Corporate Affairs at info@dataprotection.org.gh or call 0256228269, 0256301360

Signed

DPC Management