No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • Artificial Intelligence (AI)
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Downloads
    • Download Whitepapers & Reports
    • Download eBooks
  • Research
  • Books
    • CCI Press
    • New: Bribery Beyond Borders: The Story of the Foreign Corrupt Practices Act by Severin Wirz
    • CCI Press & Compliance Bookshelf
    • The Seven Elements Book Club
  • Podcasts
  • Webinars
  • Videos
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights
Home Compliance

Your Whistleblower Hotline Does Not Work the Same Way in Nigeria

National laws don’t protect whistleblowers — yet

by Obongodu Paul Unanam
July 8, 2026
in Compliance
nigeria flag

The typical global organization with operations in Nigeria offers a well-resourced and technically functional hotline for employees to make internal reports about wrongdoing. Trouble is, the country’s laws don’t yet protect such individuals from retaliation. Legal and governance researcher Obongodu Paul Unanam explores what this important distinction means for Western companies operating in the country.

Most multinationals deploy internal reporting infrastructure as a uniform global system. A hotline number, a web portal, perhaps a third-party vendor and a policy document that promises confidentiality and no retaliation. The assumption behind this architecture is that the legal environment in each country creates roughly the same conditions for it to function. In the US, the UK and South Africa, that assumption may be defensible. In Nigeria, it is not.

This doesn’t show up in your program on paper. Your Nigerian subsidiary will have the hotline number, and your Nigerian employees will technically be able to access it. What the program cannot replicate is the legal backstop that makes using it a rational act for someone who has witnessed serious wrongdoing.

One reason for that is there is no statutory whistleblower protection law in Nigeria. The government launched a whistleblowing policy in December 2016 that offered financial rewards of 2.5% to 5% of recovered funds for tips leading to asset recovery, but it created no legal protection against retaliation. It is a policy document, not legislation. It cannot guarantee anonymity, cannot compel agencies to act and cannot stop an employer from dismissing the person who used it.

A compliance program that does not account for this is not simply incomplete. It is producing false assurance.

Real-world implications

Yisa Usman was a deputy director at Nigeria’s Joint Admissions and Matriculation Board. He reported procurement fraud and administrative irregularities within the agency through official channels. He was dismissed from his position in July 2023. Criminal charges followed. Usman reported that police then tried to abduct him from his home in July 2025 while multiple lawsuits arising from his disclosure were still before the courts. Subsequently, he was named runner-up for the Ellsberg Whistleblower Award, an international honor named after Pentagon Papers whistleblower Daniel Ellsberg. Because of legal proceedings against him, Usman was unable to travel to receive the honor.

Usman’s case highlights the documented outcome of a system that rewards tips and offers nothing else. The chairman of Nigeria’s Economic and Financial Crimes Commission (EFCC) recently called on the National Assembly to pass a whistleblower protection law, noting that of the 15 members of the Economic Community of West African States (ECOWAS), only Ghana and Senegal have enacted legislation that protects people who report wrongdoing.

When a compliance officer at a multinational tells employees in a Nigerian subsidiary that the company’s internal reporting channel is safe to use, they are making a promise the law does not back up. The risk calculus facing an employee in Lagos who witnesses procurement fraud is different from the one facing an employee in Chicago or London. The channel may be technically anonymous, but the law provides no remedy if the company or a connected government agency decides to make the employee’s life difficult afterward.

The information most useful to a compliance program is exactly the kind most likely to be suppressed in this environment.

anonymous faceless man
Ethics

Are Your Anonymous Reporting Channels Hiding a Bigger Problem?

by Vera Cherepanova
March 18, 2026

When a friend is the target of a report, resist the urge to disrupt established processes

Read moreDetails

The paternalism problem hiding in plain sight

There is something worth naming directly here, because it shapes a lot of the compliance thinking about markets like Nigeria: the assumption that program design is primarily a US or UK enforcement problem and that local legal environments are mostly background noise.

That assumption carries a corollary that rarely gets said out loud — that the way things work in the US or UK is the baseline, and deviation from it is a deficiency in the local market rather than a genuine design constraint the program needs to accommodate. The global compliance framework was built in Washington and London. It travels outward with the expectation that legal environments elsewhere will eventually catch up.

This framing is not just intellectually lazy, but it produces concrete compliance failures. If you treat the Nigeria gap as a temporary local anomaly rather than a structural feature of the operating environment, you will not redesign your program to account for it. You will deploy the standard infrastructure, note the gap in a risk register somewhere and move on.

The employee in the Nigerian subsidiary who sees something and says nothing is not failing your compliance program. Your compliance program is failing them.

What compensating controls actually look like

None of this means a compliance program in Nigeria is impossible. It means the program has to be designed for the environment it is operating in, not for the environment headquarters is familiar with.

First, the program needs to be honest about what a hotline can and cannot do. Training materials and communications to Nigerian employees should not repeat standard language about legal protection against retaliation. That protection does not exist in Nigerian law. Saying otherwise is not just inaccurate. Rather, it is the kind of misrepresentation that destroys credibility when an employee who relied on it faces consequences.

Second, the program should actively track the legislative environment. A whistleblower protection bill has been introduced in Nigeria’s National Assembly on multiple occasions; while it has never passed, that could change. A CCO with Nigerian operations should be monitoring that development and should understand what a statutory protection regime would mean for their program design.

Third, the program should not rely on a single reporting channel. Where the domestic legal environment offers no backstop, the external channel matters more. Some multinationals have implemented anonymous reporting pathways that route directly to international compliance infrastructure rather than to local management precisely because the risk of local retaliation is real and documented.

Fourth, ask the due diligence question before the next Economic Financial Crimes Commission (EFCC) investigation arrives, not after. The EFCC recorded 4,111 convictions in 2024 and recovered hundreds of thousands in currencies. Nigerian enforcement is not hypothetical. If your subsidiary’s reporting infrastructure cannot reliably surface procurement concerns from within, you are operating blind in an environment where the enforcement consequences of doing so are documented and recent.

The due diligence question CCOs are not asking

The standard third-party due diligence questionnaire for Nigerian operations asks about anti-bribery policies, training records and code of conduct acknowledgment. Almost none of them ask what happens to an employee at a Nigerian counterparty who reports internally.

That is the question that tells you whether the reporting infrastructure is real or ceremonial. A counterparty that has no answer to it, or whose answer is a policy document with no legal teeth, is a counterparty whose internal reporting environment has the same structural limitations as the national one. Kickback arrangements in Nigerian federal contracting historically run through intermediaries who are one or two steps removed from the primary counterparty. If no one in the chain has a working reason to report, the arrangement persists.

The fix is not complicated. It requires acknowledging that the compliance infrastructure you built for a legally protected environment does not transfer intact to one where the protection does not exist. It requires asking what an employee in your Nigerian subsidiary actually risks by using your hotline, and designing around the honest answer.

Yisa Usman is still litigating. The whistleblower protection bill is still pending. Your next EFCC inquiry is not waiting for either.

Tags: Anti-BriberyAnti-CorruptionWhistleblowing
Previous Post

Operationalizing the EU Anti-Corruption Directive: A Practical Roadmap for Compliance Teams

Next Post

SCOTUS Broadens White House Influence Over ‘Independent’ Agencies

Obongodu Paul Unanam

Obongodu Paul Unanam

Obongodu Paul Unanam is a legal and governance researcher on anti-corruption law and compliance risk in West Africa. He is a former public intern at Akwa Ibom State Ministry of Justice and holds a legal degree from the University of Uyo in Nigeria.

Related Posts

eu flags

Operationalizing the EU Anti-Corruption Directive: A Practical Roadmap for Compliance Teams

by Jan Stappers
July 7, 2026

Functions assessing their programs vs. the new directive typically fall into three maturity stages with different priorities

forced labor

The EU Is Making Forced Labor a Trade Compliance Problem, Not Just an ESG Issue

by Allison Raley and Nikita Kulkarni
May 20, 2026

Most forced labor compliance frameworks ask companies to publish statements and describe their policies. The EU's new forced labor regulation...

Richard Nixon Giving "V" Sign After Resignation

What Detractors Keep Getting Wrong About the FCPA

by Martin J. Weinstein
April 1, 2026

FCPA rewards companies; it doesn’t hamstring them

anonymous faceless man

Are Your Anonymous Reporting Channels Hiding a Bigger Problem?

by Vera Cherepanova
March 18, 2026

When a friend is the target of a report, resist the urge to disrupt established processes

Next Post
scotus building

SCOTUS Broadens White House Influence Over ‘Independent’ Agencies

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2026 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • Artificial Intelligence (AI)
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Downloads
    • Download Whitepapers & Reports
    • Download eBooks
  • Research
  • Books
    • CCI Press
    • New: Bribery Beyond Borders: The Story of the Foreign Corrupt Practices Act by Severin Wirz
    • CCI Press & Compliance Bookshelf
    • The Seven Elements Book Club
  • Podcasts
  • Webinars
  • Videos
  • Subscribe

© 2026 Corporate Compliance Insights