The Commission shall —

(a) regulate the deployment of technological and organisational measures to enhance personal data protection;

(b) foster the development of personal data protection technologies, in accordance with recognised international best practices and applicable international law;

(c) where necessary, accredit, license, and register suitable persons to provide data protection compliance services;

(d) register data controllers and data processors of major importance;

(e) promote awareness on the obligation of data controllers and data processors under this Act;

(f ) promote public awareness and understanding of personal data protection, rights and obligations imposed under this Act, and the risks to personal data;

(g) receive complaints relating to violations of this Act or subsidiary legislation made under this Act;

(h) collaborate with any relevant ministry, department, agency, body, company, firm, or person for the attainment of the objectives of this Act;

(i) ensure compliance with national and international personal data protection obligations and best practice;

(j) participate in international fora and engage with national and regional authorities responsible for data protection with a view to developing efficient strategies for the regulation of cross-border transfers of personal data;

(k) determine whether countries, regions, business sectors, binding corporate rules, contractual clauses, codes of conduct, or certification mechanisms, afford adequate personal data protection standards for crossborder transfers;

(l) collect and publish information with respect to personal data protection, including personal data breaches;

(m) advise government on policy issues relating to data protection and privacy;

(n) submit legislative proposals to the Minister necessary for strengthening personal data protection in Nigeria; and

(o) carry out other legal actions as are necessary for the performance of the functions of the Commission

---