Nigeria’s data centre industry is bracing for its biggest stress test yet as the Central Bank’s new local hosting directive pushes banks, fintechs, and payment operators to migrate sensitive transaction data onto Nigerian servers within a tight six month window.
The directive, issued in a circular dated June 15, 2026 and signed by Rakiya Yusuf, director of the CBN’s Payments System Supervision Department, orders deposit money banks, microfinance banks, mobile money operators, switching companies, payment terminal service providers, super agents and other licensed payment players to store all payment transaction data generated within Nigeria on local servers. Compliance is required by January 1, 2027, and the apex bank has warned that supervisory sanctions await institutions that miss the deadline.
Industry voices have largely welcomed the move, though the conversation has quickly shifted from whether the policy makes sense to whether Nigeria’s infrastructure can absorb the load in time. Gbenga Adebayo, chairman of the Association of Licensed Telecommunications Operators of Nigeria, argues that the country already has what it takes. He points to Nigerian owned data centres that currently host information for clients in other jurisdictions as proof of capability, asking why that same capacity cannot serve Nigerian institutions first. Adebayo puts the number of Tier III facilities at roughly six, with more in development, and insists that hosting capacity rather than the raw count of buildings is what actually matters.
Other estimates paint a more expansive picture. Some industry reports put the number of operational data centres closer to seventeen, with about nine additional facilities under construction, reflecting a sector that has drawn heavy investment from players such as Rack Centre, MTN’s Dabengwa facility, Digital Realty, Equinix and Open Access Data Centres. Ayotunde Coker, chief executive of OADC, has been among the most vocal defenders of the timeline, describing the infrastructure debate as settled and framing the remaining work purely as one of execution. He maintains that top tier facilities in Nigeria already meet global physical security standards, pushing back on fintech operators who have raised concerns about data vulnerability once workloads leave familiar offshore providers like AWS, Azure and Google Cloud.
Beyond the compliance deadline, the directive is being read by many as an industrial policy in disguise, one designed to anchor sustained demand for local hosting rather than simply tightening bank oversight. Proponents say the shift will cut foreign exchange exposure for institutions currently billed in dollars, reduce latency by keeping data closer to the transactions it serves, and create jobs across cybersecurity, cloud architecture and network engineering. There is also talk that the CBN’s approach could become a template for data localisation in other sectors, including manufacturing and oil and gas.
Still, the scale of migration required in just six months is not trivial. Financial institutions must now choose between direct co-location with local data centre operators or routing workloads through indigenous cloud platforms already anchored in Nigerian facilities, all while keeping services running without disruption. Whether Nigeria’s data centre ecosystem can absorb that volume smoothly, or whether the deadline exposes real capacity gaps, will likely become clear well before January 2027 arrives.