Data Protection and Transparency of Modern Elections in the Nigerian Legal Profession: Charting A Way Forward

 By Olumide Babalola

(Being the text of a speech delivered at the 17^th SPA Ajibade & Co.’s Annual Business Luncheon held on the 5^th day of December 2024 in Lagos, Nigeria) 

1. Introduction

Three (3) years after the International Bar Association (IBA) African Regional Forum’s release of a Data Protection/Privacy Guide for Lawyers in Africa,  the Nigerian Bar Association (NBA) is increasingly giving data protection its desired attention. Interestingly, speaking on the document, Mr Ajibade, SAN is quoted to have observed thus:

“Data protection is of great importance to us all. There are many related rights for individuals, including the right to access, rectification and erasure, all of which must be safeguarded by individuals who have a firm understanding of their legal and moral obligation to ensure the necessity of protection. I am delighted that the IBA African Regional Forum is at the forefront of an initiative to provide guidance to lawyers and bar associations on the new data protection regimes across the continent and the importance of protecting personal data and privacy for individuals and business.”

See Data Protection And Privacy Laws Guide Released For The Legal Profession By The IBA African Regional Forum.

In the last four years, with every opportunity provided, I have consistently spoken about the NBA’s need to take data protection seriously starting with the publication of a privacy policy on the Association’s website and this yielded some fruits recently. (For a few of my previous advocacies on this issue, read them here and here). As further indicators of this new consciousness of the bar towards data protection, the Nigerian Bar Association (NBA) through the Section on Law issued two privacy and data protection-centric documents titled ‘Privacy Guidance for Lawyers in Nigeria’ and NBA Cybersecurity Guidelines.

Following the release of the Nigeria Data Protection Regulation (NDPR) in 2019 and the passage of the Nigeria Data Protection Act in 2023, it has become more important than ever for the Nigerian bar to actively engage with both the technical and regulatory frameworks that govern privacy and data protection in their practices, most importantly in electing the bar leaders.

During a telephone call with Dr Ajibade, SAN on the objectives and essentials of this occasion, it became crystal clear that the theme was inspired by the post-2024 bar election disputes which have somewhat become a biennial expectation especially since the introduction of the e-voting system in 2016. For ease of readership, this paper is structured into five parts. The first part introduces the purpose and focus of this academic but practicable intervention. The second part is a typical overview of privacy and data protection concerns over e-voting systems. Since the 2024 NBA election is the crux of the paper, the third part analyses the privacy and data protection issues addressed by the Electoral Committee of the NBA (ECNBA) in their documented response to the contestants after the elections. The fourth part offers some practical recommendations for future NBA elections from a privacy and data protection perspective. The fifth part concludes with the arguments made in the paper.

Privacy and data protection concerns in e-voting systems

Electronic voting or e-voting has been interchangeably referenced as ‘remote voting’ ‘online voting’ ‘Internet voting’ ‘i-voting’ or ‘cyber voting.’ Irrespective of the preferred term, e-voting has been defined as follows:

1.  the election or voting system that relies on ‘some electronic technology for their correct functionality’[1]
2. ‘the use of electronic systems and technologies in elections to cast and count votes’[2]
3. a ‘systems that allow the eligible voter to cast their votes via a computer normally connected to the internet or intranet from anywhere like home or office.’[3] and
4. ‘a system of voting where the voters cast their votes from a remote Internet-enabled computer or another access device.’[4]

Expectedly, e-voting like other activities migrated to digital platforms, is faced with some privacy and data protection concerns briefly discussed below:

Privacy concerns

Under the Nigerian Constitution, the right to privacy, among other interests, embodies the freedom to vote for the candidate of one’s choice and the autonomy to keep such decisions private, especially in secret balloting. Theoretically, the interests protected by privacy include:

• intrusion upon an individual’s seclusion or solitude
• the appropriation of a person’s name or likeness
• publicity which places a person in a false light; and
• public disclosure of private facts about the plaintiff

For elections, the unjustified disclosure of a person’s vote or electoral choices intrudes into the person’s seclusion or solitude. In Nwali v EBSIEC, the Court of Appeal idenetified the nexus between elections and the right to privacy thus:

“… the privacy of his choice of that candidate and the privacy of his voting for that candidate constitute part of his “privacy” as a citizen. The appellant was entitled to the privacy of his decision to vote for a particular candidate, his choice of that candidate and his casting his vote for that candidate. Therefore requiring or compelling him to vote openly in the public watch and knowledge by queuing in front of the poster carrying the portrait of the candidate he has decided to vote for intrudes into, interferes with, and invades the privacy of his said decision, choice and voting, completely removing that privacy, therefore amounting to a clear violation of his fundamental right to the privacy of a citizen guaranteed him and protected by Section 37 of the 1999 Constitution.”[5]

In the context of elections, privacy ensures the confidentiality of the identity of the voters (voter anonymity) vis a vis the choices made or votes cast. Voter anonymity also known as ‘voter privacy’ is an assurance given to voters that their electoral choices during and after the elections remain private and undisclosed without authorization. While anonymity is mostly seamless in paper-based elections where the electorate physically visits the polling booths to get accredited to cast their votes into the boxes. Afterwards, the ballot papers are procedurally separated from the identity of the voters. The only identifiers are fingerprints which are not immediately attributable to any individuals except they go through some forensic process revealing the identities.  However, in an e-voting system, it is practically impossible to digitally separate voters from their respective votes. This continues to be a source of concern!

Data protection concerns

Apart from privacy, which is contextually distinguishable from data protection, e-voting systems also generally raise some data protection concerns as follows:

• Obtaining informed consent

Under most data protection laws across the world, consent is one of the legal bases for the processing of personal data. Where personal data is processed based on consent, the subjects of such processing must understand the intricacies of the activities to which they voluntarily and explicitly agree. In electronic voting systems, seeking and obtaining informed and explicit consent is not only a legal requirement but also crucial for maintaining the integrity of the democratic process.

Since e-voting systems constitute an unusual way of casting ballots, voters’ consent to use their personal data in unconventional ways must be validly sought and obtained. Statutorily, voters, like other data subjects, must also have the option to withdraw consent, although, in the case of electronic voting, this is almost impossible, once a vote is cast, as it is practically irreversible to ensure election integrity. Ultimately, the voting system must balance the need for free, informed consent within the technical constraints of vote finality. 

• Confidentiality and integrity threats

One of the principles of data protection is – integrity and confidentiality. For e-voting, the principle mandates the electoral umpire to ensure the protection of voters’ personal data by ensuring that voter identities and their choices remain private and secure from unauthorised access, manipulation, alteration or destruction. The principle demands that the votes cast are accurately captured, recorded, transmitted, and counted correctly, without alterations or manipulations. In e-voting systems, the breach of data integrity invariably leads to manipulation of election results, casting doubt on the legitimacy of the outcomes. Since the principle of confidentiality and integrity forms the spine of safe and trustworthy e-voting systems, they are potentially under attack by cybercriminal activities, hence the necessity for robust security mechanisms. 

• Cross-border data transfers

From the definition or description, e-voting systems are digital, hence they are hosted on the Internet and often rely on cloud storage services, data processing centres, and other IT infrastructures that are usually spread across multiple countries. This decentralization of infrastructure introduces the challenge of cross-border data transfers, where voter data flows across national boundaries for storage, processing, or backup. While this globalized infrastructure can increase the efficiency and scalability of e-voting systems, it also introduces legal, privacy, and security risks. These cross-border data flows raise the issues of data sovereignty, adequacy of level of protection, jurisdictional complexities, third-party vendor compliance and associated risks, data security threats, and foreign interference. etc. 

• Data retention

Storage limitation is a principle of data processing requiring personal data to be stored within a certain time limit – as long as it is necessary for the initial purpose of collection or otherwise processing. Data retention focuses on the period during which personal data is stored and the processes by which it is deleted or anonymized after it is no longer needed. In e-voting, the length of time voter data is retained can have significant privacy implications i.e increased vulnerability to misuse, compromise and other ills. E-voting systems often store personal information (such as voter IDs and login details) to verify election results or for audit purposes. Retaining this data for unregulated periods creates vulnerabilities, especially in the event of a cyberattack or unauthorized access. While it is important to ensure the integrity of the election, retaining detailed voting records could expose sensitive information, such as how individuals voted, undermining voter privacy. 

• Transparency

Various categories of personal data are processed by the e-voting systems, hence the (joint)controllers of the e-voting systems ought to proactively provide information to the users on the functionality of the platforms especially as it relates to the use, purpose(s), transmission, security and retention of the personal data collected. E-voting systems are complex and not easily understandable by the general public or even election administrators. This creates a “black box” problem where voters, candidates and observers cannot easily see how their votes are processed. Transparency is breached when the vulnerabilities of voting platforms are downplayed or not fully disclosed to the public. When security vulnerabilities are kept secret or poorly communicated, voters cannot be sure that their votes are safe from manipulation. 

Privacy and data protection challenges in NBA e-voting

The NBA adopted e-voting for its general elections for the first time in 2016 under the leadership of Augustine Alegeh, SAN. The outcome of the election was reportedly challenged because many eligible lawyers were allegedly disenfranchised owing to some functional irregularities. Since 2016 till date, the successive outcomes of the electronic elections conducted by the NBA have been challenged on similar grounds including the repeated requests for post-election audit exercise.

The outcome of the 2024 NBA elections added a twist. The election was conducted on Election Buddy Inc. – a Canadian platform that describes itself as “online voting software ensures your electronic voting is accurate and secure.” After the elections and declaration of results, the 1^st and 2^nd runners-up (the complainants) called for an audit of the elections on the grounds of double voting, identity theft, and manipulation of votes, but that was not the twist. In a 28-paged robust response to the letters written by the complainant, NBA’s electoral body – the Electoral Committee of the Nigerian Bar Association (ECNBA) or (the Umpire), declined the request for an audit with reasons – chief of which are the enforcement of privacy and data protection rights of voters and other non-NBA users of the e-voting platform. In this part, I briefly analyse some of the issues bordering on privacy and data protection as decipherable from ECNBA’s letter dated 25^th July 2024 titled ‘Re: Request for Access to Critical Information Regarding The 2024 NBA National Elections.’ (See the letter here.

• Access to servers and application logs

The ECNBA denied the complainants ‘access to server and application log files used during the election period’ because it is contrary to the GDPR, NDPA/NDPR and ‘Election Buddy Inc provides its services to tons of organizations and nations globally using the same servers and application files, hence giving one user access clearly compromises the entire credibility of their servers carrying other users’ data.’ Curiously, the umpire’s letter does not contain any specific provision of the referenced laws that would be violated if the complainants are granted access to the servers and application logs but the starting point is a confirmation of the nature of personal data borne by the servers and application logs on one hand and the use of such information on the other hand. Are they personal data, anonymised or pseudonymised data?.

From a data protection perspective, this is part of the information that should have been proactively provided to the users of Election Buddy’s e-voting systems and the members of the NBA before personal data are migrated to the platforms for electioneering purposes. Under the GDPR and NDPA alike, at the point of collection of personal data, data controllers (Election Buddy[6] and ECNBA) are duty-bound to provide certain information about the nature of the data collected, its use and entire governance.

While the GDPR does not expressly state how this obligation is to be fulfilled, its Nigerian counterpart specifically provides for the use of a privacy policy to convey this set of information.  On Election Buddy’s website, their privacy policy interestingly states that they use personal data for “Investigating and protecting against fraudulent, harmful, unauthorized, or illegal activity.” The complainants have alleged identity theft, double voting, electoral manipulation etc. All these point towards illegality – and they have called for an investigation in the mould of an audit, hence the ECNBA and Election Buddy have valid and lawful grounds to grant access to servers and application logs to unravel the alleged illegalities (if any).

Situating this within the relevant provisions of the GDPR, data protection rights and controllers’ obligations are restricted for the investigation and detection of crime[7] and ‘the prevention, investigation, detection and prosecution of breaches of ethics for regulated professions.’ The legal profession is a highly regulated one, hence any allegation of manipulation of its general elections is worth investigating. Under the NDPA, certain data protection rules and obligations are not applicable to the processing of data necessary for the establishment of legal claims whether in court or out of court.

Legitimate interest is one of the lawful grounds on which controllers can rely to process personal data. The lawful basis allows organizations to process personal data without needing explicit consent from the data subjects where the former has a compelling reason or “legitimate interest” to do so, provided that it does not adversely prejudice the data subjects’ rights and freedoms. Legitimate interest is not defined under the NDPR, however the GDPR gives a little bit of clarity on the concept. This legal basis concerns the processing of data for the purpose of interests legitimately pursued a ‘controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.’ According to Ferretti, “The legitimate interest of data controllers or that of third parties is known as the “balance of interest” clause…Therefore, the legitimate interest clause is considered the criterion upon which the majority of personal data processing takes place, at times the default position, especially for commercial transactions. Under this condition, the processing must be necessary for the purpose, which must be a legitimate interest of the controller or a third party to whom the data is disclosed, provided that such legitimate interests do not impinge upon the fundamental rights and freedoms of individuals.[8]

Section 25(2) of the NDPA requires an assessment to be conducted where legitimate interest is to be relied on. Hence, the three-part test ought to be applied by asking the salient questions:

(a) Purpose test – is there a reasonably expected legitimate purpose behind the processing?

(b) Necessity test – is the processing necessary and compatible with that purpose? and

(c) Balancing test – is the legitimate interest overridden by the individual’s interests, rights or freedoms.? 

For the impugned elections, the complainants have only demanded access to the server and application logs pertaining to NBA elections. Considering the weighty allegations, both ECNBA, Election Buddy and the complainants (as third parties) have legitimate interests in preventing electoral fraud by establishing credibility and accuracy of the election results by granting access to the information required for this proof – the purpose. Secondly, this is reasonably necessary to build voter trust, ensure transparency in the succession procedure of the association and to prevent the subversion of Nigerian lawyers’ choice of their leaders – the necessity. In other words, the voters expect their votes to count, hence an audit establishing such accuracy is reasonably expected. In balancing the competing interests, the duty of the Association towards holding credible elections and entrenching the rule of law overrides an individual’s right to privacy on one hand and it is the expectation and hope of every member of the NBA that the election results reflect the true wishes of the electorate, hence they are not averse to election audits confirming the accuracy of such results.

• Consent of voters to the sharing of election transactions

In response to allegations of identity theft leading to double voting, the umpire requests the complainants to seek and obtain the consent of their supporters that alleged identity theft so the umpire ‘can also unveil their said privately cast votes for transparency in our investigation.’ Again, while answering a request for voting transactions, the umpire responds that the provision of such information is a violation of voter privacy except the complainants provide ‘consent letters of the voters’ concerned. These answers have repeatedly elevated ‘consent’ above all other legal bases and statutorily allowed derogations. From a privacy or data protection perspective, the umpire is not required to rely on voters’ consent before processing their data to defend the integrity and accuracy of the elections it conducts. This much is confirmed in Election Buddy’s privacy policy thus:

“For operational and legal purposes, we may share your personal information with certain entities as outlined below:… Authorities and others: Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.”

As argued earlier, relying on legitimate interest and public interest, the ECNBA can validly disclose the voting transactions to the complainants without voters’ consent as contemplated by the relevant data protection legislation.

The Way Forward: Recommendations

The 2024 e-elections have come and gone but like its predecessors, vestiges of allegations of electoral malpractices continue to linger, especially in the light of the documented pushbacks from the electoral umpire. For future elections i.e the ones conducted on digital platforms, the NBA ought to sincerely consider the following suggestions:

• Proactive information on voters’ personal data

One of the data subjects’ rights guaranteed by the NDPA is the right to be informed on the processing of personal data. Since the ECNBA acknowledges that some “critical” personal information are fed to the e-voting platforms towards the elections,  the NBA as controllers ought to proactively provide full, lucid, comprehensive and understandable information to the voters on the entire life cycle of their personal data for the electoral process i.e from collection to migration to the e-voting platforms and post-election use (if any). For clarity, the ECNBA must provide information on the data flow of the entire electoral cycle. For example, when you register to vote, where is the data recorded, after voting where are the votes’ digital receipts stored? etc. The NDPA expressly requires information on recipients of personal data, in this case, the e-voting platform, the period of retention, the sub-recipients from the e-voting platform and most importantly the rights of users. 

• Adopt a multi-level approach towards curbing Identity theft and double-voting

It is rather too simplistic for the ECNBA to conclude that inaccurate voter records is not its “issue.” The duty to ensure the accuracy and update of personal data is a shared responsibility between the controller (ECNBA) in the context of elections and the voters. Interestingly, the NDPA puts this responsibility squarely at the NBA/ECNBA’s doorstep to ensure the accuracy of personal data and keep it up to date. The NBA does not have to wait till the election period before cleaning up the members’ personal data since the obligation to ensure accuracy and updated records is a recurrent duty. The NBA has an existing database of members which has members’ emails and telephone numbers, which can be used as a benchmark for the voters list to flag inconsistencies ahead of time.

• Votes cast are the personal data of contestants accessible by DSAR

The complainants’ request for the election transaction is to compare the number of votes cast in their favour with the results recorded for them in order to establish their allegations of manipulations and other electoral malpractices. In elections, votes cast in favour of a candidate represent the electorates’ endorsement and expression of their preference for the candidate concerned. These votes double as electorates’ and contestants’ personal data. Both the GDPR and NDPA define personal data identically as information relating to an individual directly or indirectly identifiable. From whatever prism one looks at it, election results, e-ballots and voting transactions relate to the candidates since they give clear information on the votes allegedly won and lost, hence they constitute the candidates’ personal data within the context of election outcomes. Admittedly, there are no direct authorities supporting this novel argument however, election computation and results could be likened to examination marking and grading on which a court decision exists. In Peter Nowak v Data Protection Commissioner,[9]a trainee accountant who failed an open book professional examination made a data subject access request for all his personal data held by the examination body. The body obliged the request but refused to share his examination scripts on the grounds that they did not contain personal data but when the matter went to the Court of Justice of the European Union (CJEU), the court found that:

“First, the content of those answers reflects the extent of the candidate’s knowledge and competence in a given field and, in some cases, his intellect, thought processes, and judgment. In the case of a handwritten script, the answers contain, in addition, information as to his handwriting. Second, the purpose of collecting those answers is to evaluate the candidate’s professional abilities and his suitability to practice the profession concerned. Last, the use of that information, one consequence of that use being the candidate’s success or failure at the examination concerned, is liable to have an effect on his or her rights and interests, in that it may determine or influence, for example, the chance of entering the profession aspired to or of obtaining the post sought.”

Relating the finding above to the complainants’ request, like examination results, the election transactions reflect the performances of the candidates in the election, and their suitability as decided by the electorate with consequences on their rights and interests in the leadership of the NBA. The totality of these considerations leads to an aggregate of election transactions as information relating either directly or indirectly to the candidates (the complainants) – the falls under the expansive definition of personal data. This position finds support in the European decision of Patrick Breyer v Germany[10] where the court acknowledges that information relating to a data subject may not contain all the identifiers, but an aggregate of other information makes such information qualify as personal data. In the complainants’ case, any vote cast in their favour directly relates to them while the other votes arguably indirectly relate to them as well. In any case, all the votes form part of the election transactions and they holistically relate to the complainants, in terms of the electorate’s endorsement or disapproval.

Having settled the nature of votes as contestants’ personal data as well, then such transactions are accessible by exercising data subjects’ access request. As part of the rights guaranteed by the NDPA, data subjects can request copies of their personal data in a controller’s possession.[11] Relying on this provision, the complainants are within their rights to demand copies of the election transactions and the ECNBA is duty-bound under the NDPA to oblige without incurring any liability.

• Masking/protecting other international users’ data

Part of the ECNBA’s reluctance to grant access is the apprehension of exposing other international service users’ personal data in the process. First, if this excuse was given by Election Buddy, then it is an indictment on them since elections on their platform are meant to be uniquely protected and encrypted. So access to the servers used for a particular election transaction does not necessarily expose data used in other election transactions not associated with the one concerned.  Secondly, to circumvent privacy breaches, other users’ personal data can be masked or redacted while granting access to the relevant election transaction. In Michael J. Durant v Financial Services Authority[12] a bank customer made requests to his bank seeking disclosure of personal data held by it, both electronically and in manual files. The FSA provided him with some copies of documents relating to him but some of the documents were redacted so as not to disclose the names of others, but he wanted more files. When the matter got to the English Court of Appeal, the court notes the need for redaction and when consent will be dispensed with as follows:

“It is important to note that section 7(4) leaves the data controller with a choice of whether to seek consent; it does not oblige him to do so before deciding whether to disclose the personal data sought or, by redaction, to disclose only part of it.”

Under relevant data protection laws, access can validly be granted to servers where a legal basis exists. In this case, the controllers can validly rely on legitimate interest to grant access for elections audit thereby dispensing with the requirement for voters’ consent. For the Nigerian lawyers, the bases of legal obligation and legitimate interest are grounded in the NBA’s Constitution. The second schedule, Part 2, paragraph 8(c) of the Constitution of the Nigerian Bar Association, 2021 provides for electoral transparency thus:

“The ECNBA shall display openness and transparency in all its activities and in its relationship with all members, particularly the candidates for the election, and shall ensure the following: …Establish a system that allows interested parties to access, in a timely manner, all critical information, documents, and databases used in an election process, or used in the normal operation of the election administration.”

This provision was inserted in the Constitution to protect the rights of the complainants as a derogation from voters privacy recognised under section 45 of the Nigerian Constitution which subjugates certain fundamental rights at the expense of laws made for public order and protecting others’ rights. In interpreting how Section 45 of the Constitution relates to rules made by associations, the Supreme Court in Mbanefo v Molokwu ruled that: 

“Section 45 provides that nothing in Section 40 of the 1999 Constitution shall invalidate any law that is reasonably justifiable in a democratic society, in the interest of defence, public safety, public Order, public morality or public health etc … This may be an appropriate stage to state loud and clear that

the interpretation of “law” as prescribed under section 45 of the Constitution cannot be restricted only to the statutes of parliament. It would include rules and regulations guiding communities which them in maintenance of peace and tranquillity. This will minimize those anti-social behaviours which spill over to the outside specific boundaries creating a breakdown of law and order thereby overloading the security agencies beyond their tour of duty.”[13] 

From the foregoing decision, section 45 trumps any privacy arguments that may be used to shield electoral inaccuracies and malpractices in this circumstance.

• Choice of service provider and access to terms of engagement

As part of the recruitment process for an e-voting service provider, the preferred vendor’s privacy practices must be reviewed to ensure compliance with Nigerian data protection legislation. The service level agreement must be accessible to contestants to pre-inform them of their data subjects’ rights especially access to election transactions, and the rectification of inaccurate or misleading election records/results which are all guaranteed by the Nigeria Data Protection Act 2023.[14]

• Opening the black box and auditable elections

The adoption of e-voting in the NBA elections must turn out a better option than the erstwhile paper-based system in terms of transparency, security and accountability. The crux of the complainants’ post-election umbrage is the umpire’s refusal to allow them to audit the elections through the voting platforms. The ECNBA’s letter discloses that the conduct of what appears to be a self-audit which falls short of the complainants’ request, and what is more, Election Buddy favours election audits thus:

“It doesn’t matter if your organization is a small homeowners association electing officers in an intimate election or if you’re tallying votes for a large-scale industry association—you want to be sure the process is uncorrupted and fair. If the integrity of your elections comes into question, this is when election audits take place. Election audits occur when there is suspicion or evidence of discrepancies or inaccuracies in the voting process. These audits aren’t just reserved for elections involving the government. They can be applied to industries and organizations. Auditing your election can instil voter confidence and ensure your organization follows all proper procedures… While online voting is generally secure and accurate, audits are just as necessary for digital voting as physical ballot submissions. Both methods can work together to ensure accurate results… Currently, manually reviewing and recounting through an objective third party is the best way to audit elections and ensure an accurate vote count.”[15]

The NDPA requires personal data (election results in this case) to be accurate, not misleading and in the event of inaccuracy, it must be corrected and updated to reflect current reality.[16] This accuracy can only be ensured after a proper audit exercise has been conducted on the election. On the essentiality of audits, it has been advised that:

“Appropriate audits can be used to enable trust in the accuracy of election outcomes even if the integrity of software, hardware, personnel, or other aspects of the system on which an election is run were to be questioned.”[17]

In similar terms, Mello-Stark and Lamagna rightly argue that:

“In order for an election system to be trusted, it needs to be verifiable. Methods must exist to check that the votes are cast as intended by the voters. There must be strong evidence that the machines function as they are supposed to function. Voters should feel confident that the election is conducted fairly and accurately.”[18]

Driving further their advocacy for e-voting audits, the authors suggest, the following types of audits: receipts audits, tally audits and system self-checking audits using various methods.[19] In a much recent research paper, Khlaponin et al confirmed the necessity and option of ‘building a system of secret Internet voting, in which a full-fledged audit is available to all voters and their proxies. A full-fledged audit should be understood as such an audit, in which everything that may be in doubt is checked.’[20]

From the foregoing intervention, conducting audits on e-voting systems is not only necessary but essential for the integrity, transparency, and trustworthiness of electoral processes. Audits serve as a crucial mechanism to verify the accuracy of votes, ensure compliance with legal and regulatory standards, and identify any irregularities or security risks. Moreover, the credibility of NBA elections hinges on its members’ confidence in the electoral process. Regular audits can help to reassure stakeholders—including voters, political parties, and regulatory bodies—that the e-voting system operates as intended, free from manipulation or technical failures. By systematically assessing the security, functionality, and overall accuracy of these systems, audits can enhance accountability and contribute to a more robust democratic process.

Conclusion

The 2024 Nigerian Bar Association’s elections together with its post-election controversies provide a valuable case study for the practical and academic assessment of the intersection of data protection and e-voting systems. As technology continues to transform electoral processes across the World, the importance of safeguarding personal data, ensuring voter privacy and ascertaining the accuracy and credibility of voting platforms has never been more pronounced. This retrospective analysis highlights the pre- and post election intrigues, emphasizing the need for robust data protection measures including the respect for voters/candidates’ rights.

Effective data protection in e-voting systems is not merely a regulatory requirement but a cornerstone of public trust in the electoral process. The lessons learned from the 2024 elections underscore the necessity for continuous improvement in the security and transparency of e-voting systems. Moving forward, it is imperative that future elections incorporate best practices in data protection, including regular audits, stakeholder engagement, and adherence to established standards. As we advance into an increasingly digital future, the commitment to protecting voter data will play a pivotal role in fostering confidence and ensuring that bar elections remain fair, transparent, and secure.

 Babalola is a PhD Researcher, University of Portsmouth; Member, Author, Privacy and Data Protection Law in Nigeria; Co-Author, Annotated Nigeria Data Protection Act 2023; Co-Founder, The Privacy Academy

Footnotes

[1] J Paul Gibson and others, ‘A Review of E-Voting: The Past, Present and Future’ (2016) 71 Annals of Telecommunications 279.

[2] Ghizlane Ikrissi and Tomader Mazri, ‘Electronic Voting: Review and Challenges’ in Mohamed Ben Ahmed and others (eds), Innovations in Smart Cities Applications Volume 7 (Springer Nature Switzerland 2024).

[3] Mahdi Alhaji Musa and Farouk Muhammad Aliyu, ‘Design of Electronic Voting Systems for Reducing Election Process’ (2013) 2.

[4] Piret Ehin, ‘Internet Voting in Estonia 2005–2019: Evidence from Eleven Elections’ (2022) 39 Government Information Quarterly 101718.

[5] Hon. Peter Nwali v. Ebonyi State Independent Electoral Commission (2014) LPELR–23682(CA).

[6] In their privacy policy accessible at: https://electionbuddy.com/privacy-policy, Election Buddy admits that there are instances where they act as controllers with respect to voters’ information.

[7] GDPR, article 23(1)(d).

[8] Federico Ferretti, ‘Data Protection and the Legitimate Interest of Data Controllers: Much Ado about Nothing or the Winter of Rights?’ (2014) 51 Common Market Law Review <https://kluwerlawonline.com/api/Product/CitationPDFURL?file=Journals\COLA\COLA2014063.pdf> accessed 19 June 2023.

[9] C-434/16 delivered by the Court of Justice of the European Union on the 20^th day of December 2017.

[10] Application no. 50001/12: Patrick Breyer v Germany delivered by the European Court of Human Rights on the 20^th day of January 2020.

[11] NDPA, section 34(1)(a) –(b).

[12] Michael John Durant v Financial Services Authority [2003] EWCA Civ 1746. Delivered in 2003 by the UK Court of Appeal.

[13] Mbanefo v Molokwu (2014) LPELR-22257(SC).

[14] See section 34 of the NDPA.

[15] electionbuddyadmin, ‘Do Elections Get Audited?’ (ElectionBuddy, 24 May 2023) <https://electionbuddy.com/blog/2023/05/24/do-elections-get-audited/> accessed 5 October 2024.

[16] NDPA, section 24(1)(e) and 34(1)(c).

[17]  National Academies of Sciences, Engineering, and Medicine ‘Securing the Vote: Protecting American Democracy’ at NAP.Edu <https://nap.nationalacademies.org/read/25120/chapter/7> accessed 5 October 2024.

[18] Suzanne Mello-Stark and Edmund A Lamagna, ‘The Need for Audit-Capable E-Voting Systems’, 2017 31st International Conference on Advanced Information Networking and Applications Workshops (WAINA) (2017) <https://ieeexplore.ieee.org/document/7929736/?arnumber=7929736> accessed 8 October 2024.

[19] ibid.

[20] Yuriy Khlaponin, Volodymyr Vyshniakov and Oleg Komarnytskyi, ‘Proof of the Possibility for a Public Audit of a Secret Internet Voting System’ (19 January 2023) <https://papers.ssrn.com/abstract=4330966> accessed 8 October 2024.