The National Identity Management Commission (NIMC) of Nigeria operates an Automated Biometric Identification System (ABIS) to enforce the one-person-one-NIN principle by detecting and preventing duplicate enrolments in the National Identity Database (NIDB). The system performs 1:N biometric de-duplication on all new enrolment records, comparing captured biometrics against the entire existing database to ensure that each National Identification Number (NIN) issued corresponds to a unique individual. This is a foundational identity system that underpins access to public and private sector services across Nigeria, including social protection programmes, financial services, telecommunications, and education.
The ABIS is operated as a core component of the National Identity Management System (NIMS), which is NIMC's technology platform for identity management. During NIN enrolment, NIMC captures demographic data alongside biometric data consisting of ten fingerprints, a head-to-shoulder facial photograph, and a digital signature. This biometric and demographic data is submitted to the NIDB at the NIMC Data Centre, where the ABIS executes a search on key demographic fields and on the biometrics for each new enrolment. Any duplicate records identified through this 1:N matching process are flagged and the duplicate enrolment is rejected. Attempting to enrol more than once is a punishable offence under Nigerian law.
The ABIS technology has been provided by IDEMIA Smart Identity (formerly Morpho/Safran Identity & Security) under a long-standing collaboration with NIMC. On 28 February 2024, IDEMIA Smart Identity and NIMC renewed their contract for a three-year term to upgrade the biometric system. The upgrade involves deploying IDEMIA's latest-generation IBRS (IDEMIA Biometric Recognition System), which features improved biometric matching algorithms and a layer of open interfaces supporting integration with the Open Standards Identity API (OSIA). The system capacity is being expanded from 100 million to 250 million individual records, with the capability to support one million 1:1 and 1:N searches per day. This expansion was necessitated by the fact that Nigeria had already issued over 104 million NINs by early 2024, exceeding the original system design capacity. As of June 2025, approximately 121 million NINs had been issued.
The Nigeria Digital Identification for Development (ID4D) project, approved by the World Bank in February 2020, provides the primary financing framework for this system. The project's total financing amounts to approximately US$430 million, comprising US$115 million from the International Development Association (IDA), US$100 million from the French Development Agency (AFD), and US$215 million from the European Investment Bank (EIB). The project's Development Objective is to increase the number of persons with a national ID number issued by a robust and inclusive foundational ID system that facilitates their access to services. The project has four components: strengthening the legal and institutional framework; establishing a robust and inclusive foundational ID system; enabling access to services through IDs; and project management and coordination.
The ABIS-based NIN system has direct linkages to Nigeria's social protection infrastructure. NIMC has signed a memorandum of understanding with the National Social Safety-Nets Coordinating Office (NASSCO) to provide NINs for poor and vulnerable individuals captured in the National Social Register (NSR). The ID4D project has procured enrolment devices for NASSCO to facilitate this collaboration, which aims to streamline the distribution of government-to-person (G2P) payments to 15 million of the poorest households. The Central Bank of Nigeria mandates NIN for account ownership, making it a prerequisite for receiving cash transfers under the National Social Safety Net Program-Scale Up (NASSP-SU). The integration of the State Social Register with NIN is intended to mitigate challenges of multiple enrolment into the register and ensure that only eligible Nigerians benefit from social interventions.
The legal framework governing data protection for the system is provided by the Nigeria Data Protection Act, 2023 (NDPA), enacted on 12 June 2023. The NDPA establishes the Nigeria Data Protection Commission as an independent regulatory body, provides for data privacy impact assessments, regulates cross-border transfers of personal data, addresses automated decision-making, and establishes rights of data subjects including rights to object and to contest automated decisions. The NDPA applies to the processing of personal data by NIMC as a data controller.
The project has faced implementation challenges, including 22 months of delays from the outset due to extended time needed to meet effectiveness conditions and secure National Assembly approval of the borrowing plan, constraints associated with disbursement conditions, and the transfer of the Project Implementation Unit across three different government agencies. The project disbursement rate stood at 53.16 percent as of November 2024. Additional infrastructure activities under development include a Computer Emergency Response Team (CERT), Security Operations Centre (SOC), data centre, and data recovery centre for NIMC's backend systems.