This table shows the compliance areas where DORA and the Nigeria Data Protection Act (NDPA) controls overlap. Both frameworks take part in Venvera's automatic cross-framework propagation, so satisfying a control in one carries the status across to the equivalent control in the other.
| Compliance Area | DORA | NDPA |
|---|---|---|
| Encryption | ict-10 | ndpa-se-04 |
| Access Control | ict-11 | ndpa-se-05 |
| Incident Management | inc-01 | ndpa-bm-01 |
| Incident Reporting | inc-05, inc-06 | ndpa-bm-02 |
| Business Continuity | ict-15 | ndpa-se-03 |
| Third-Party Risk Management | tpr-01 | ndpa-cb-01 |
| Supplier Contracts | tpr-06, tpr-07 | ndpa-cb-03 |
| Risk Assessment | ict-07 | ndpa-ga-03 |
| Information Security Policy | ict-08 | ndpa-ga-02 |
| Security Awareness & Training | ict-18 | ndpa-ga-07 |
| Security Testing | res-01 | ndpa-se-02 |
| Breach Notification | inc-05 | ndpa-bm-02, ndpa-bm-04 |
For details on how propagation works, thresholds, and the auto-mapped badge, see the Cross-Framework Control Propagation overview article.