As Nigeria’s digital economy expands, cybercrime allegations have become increasingly common. Business email compromise, online fraud, identity theft, cyberstalking, intellectual property infringement, and data breaches now regularly form the basis of criminal complaints. For entrepreneurs, fintech operators, technology startups, creators, SMEs, and investors, one critical question often arises: Can cybercrime cases be settled out of court in Nigeria?
This question is not merely academic. It directly affects corporate reputation, regulatory exposure, investor confidence, and even personal liberty. Many individuals assume that once a complaint has been filed with the Nigeria Police Force or the Economic and Financial Crimes Commission (EFCC), the matter must inevitably proceed to trial. Others mistakenly believe that payment of compensation automatically terminates criminal proceedings. Both assumptions are legally inaccurate.
As a matter of Nigerian law, the possibility of settling a cybercrime matter outside the courtroom depends on several factors, including the nature of the offence, the stage of proceedings, the statutory framework governing the offence, and prosecutorial discretion. Understanding the distinction between criminal liability and civil resolution is essential for anyone operating within Nigeria’s digital ecosystem.
This article provides a comprehensive explanation of whether cybercrime cases can be resolved out of court in Nigeria, the legal framework governing such resolutions, the limitations involved, and the practical implications for businesses and individuals.
What Is Cybercrime Under Nigerian Law?
Under Nigerian law, cybercrime refers to criminal offences committed through the use of computers, digital devices, networks, or the internet. The principal legislation governing cyber offences in Nigeria is the Cybercrimes (Prohibition, Prevention, etc.) Act 2015 (as amended).
The Act criminalises activities such as unauthorised access to computer systems (hacking), identity theft, online fraud, phishing, cyberstalking, electronic forgery, data interference, system interference, and other internet-based financial crimes.
Legally, cybercrime is treated as a criminal offence against the State—not merely a private dispute between individuals. This means that prosecution is conducted in the name of the Federal Republic of Nigeria, typically by agencies such as the Nigeria Police Force or the Economic and Financial Crimes Commission (EFCC).
In essence, cybercrime under Nigerian law encompasses any unlawful act carried out through digital technology that violates statutory provisions and attracts criminal sanctions, including fines, imprisonment, or both.
The Role of the State in Cybercrime Prosecution
Under Nigerian law, prosecution of cybercrime offences is typically undertaken by federal agencies such as the Nigeria Police Force, the Economic and Financial Crimes Commission (EFCC), and the Attorney-General of the Federation
Once charges are filed in court, the matter becomes a public prosecution. At that stage, withdrawal or discontinuance of the case is not a private decision between the complainant and the defendant. It requires prosecutorial action and, in certain circumstances, court approval.
The Constitution of the Federal Republic of Nigeria grants the Attorney-General the power to discontinue criminal proceedings by means of a nolle prosequi. This power can be exercised in appropriate circumstances, including where a settlement has been reached, and public interest no longer justifies continuation.
Therefore, while private settlement is relevant, it does not automatically override prosecutorial discretion.
Criminal Nature of Cybercrime: Why Private Settlement Is Not Automatic
Because cybercrime is a criminal offence, it cannot be privately “cancelled” at will.
The Constitution of the Federal Republic of Nigeria 1999 (as amended), under Section 174, grants the Attorney-General the power to:
– institute and undertake criminal proceedings
– take over criminal proceedings
– discontinue criminal proceedings (nolle prosequi)
This power confirms that criminal prosecution belongs to the State.
Therefore:
– A victim cannot unilaterally withdraw a case once prosecution has commenced.
– Payment of compensation does not automatically terminate criminal liability.
– Settlement between parties does not override prosecutorial discretion.
However, this does not mean settlement is impossible. It means the settlement must align with Nigerian criminal justice principles.
Can Cybercrime Cases Be Settled Before Charges Are Filed?
Yes, in certain circumstances.cybercrime cases in Nigeria may sometimes be settled before formal charges are filed, particularly during the investigative stage when law enforcement authorities are still assessing the complaint. Cyber offences are governed primarily by the Cybercrimes (Prohibition, Prevention, etc.) Act 2015, and investigations are usually conducted by agencies such as the Nigeria Police Force or the Economic and Financial Crimes Commission. At this stage, where the matter mainly involves financial loss or a commercial dispute, investigators may consider restitution, compensation, or reconciliation between the parties before deciding whether to proceed with prosecution.
However, settlement before charges are filed is not automatic and does not create immunity from prosecution. Authorities will typically evaluate factors such as the seriousness of the offence, the amount involved, whether multiple victims are affected, and whether the accused has any prior criminal record. Where the suspect refunds the money or compensates the complainant and the matter appears isolated, investigators may exercise discretion not to escalate the case to court.
Nevertheless, cybercrime offences remain criminal matters prosecuted in the interest of the State, not merely disputes between private parties. Therefore, even where the complainant agrees to settle, law enforcement agencies still retain the authority to proceed if the case involves significant fraud, organized cybercrime, or broader public interest concerns. Early legal advice and structured negotiations are therefore crucial for parties seeking to resolve cybercrime disputes before formal charges are instituted.
Can Cybercrime Cases Be Withdrawn After Charges Have Been Filed?
Once cybercrime charges have been filed in court in Nigeria, the case becomes a criminal prosecution conducted in the name of the State, rather than a private dispute between the complainant and the accused. Cyber offences are primarily prosecuted under the Cybercrimes (Prohibition, Prevention, etc.) Act 2015, and once proceedings commence, the authority to withdraw the case lies with the prosecuting authority, not the complainant alone. This means that even if the victim later agrees to a settlement or wishes to withdraw the complaint, the prosecution may still continue if the State believes that public interest requires enforcement of the law.
Withdrawal after charges have been filed typically requires formal action by the prosecution. The prosecuting authority—such as the Nigeria Police Force, the Economic and Financial Crimes Commission, or the office of the Attorney-General of the Federation—may apply to the court to withdraw the charge or enter what is known as a nolle prosequi. Under Section 174 of the Constitution of the Federal Republic of Nigeria 1999, the Attorney-General has the constitutional power to discontinue criminal proceedings where it is considered appropriate in the interest of justice.
In practice, courts may permit withdrawal where restitution has been made, the complainant confirms satisfaction, and the offence is not of serious public consequence. However, for serious cyber offences—such as large-scale online fraud, attacks on financial institutions, or cases involving multiple victims—prosecutors and courts are generally reluctant to discontinue proceedings merely because the parties have reached a settlement. Consequently, while withdrawal is legally possible after charges have been filed, it depends on prosecutorial discretion and judicial approval rather than the wishes of the complainant alone.
Is Cybercrime a Compoundable Offence in Nigeria?
considered crimes against the State rather than purely private disputes, they cannot ordinarily be settled simply by agreement between the victim and the accused. Once a complaint leads to criminal proceedings, the matter is prosecuted in the name of the State and not solely at the discretion of the complainant.
Unlike certain regulatory or minor offences in Nigerian law where compounding is expressly allowed by statute upon payment of a penalty, the Cybercrimes Act does not broadly provide a statutory framework for automatic compounding of offences. Consequently, payment of restitution or compensation to the victim does not automatically extinguish criminal liability. Law enforcement agencies such as the Nigeria Police Force or the Economic and Financial Crimes Commission may still proceed with prosecution if the offence involves significant financial loss, multiple victims, or broader public interest concerns.
However, in practice, restitution or settlement between the parties may influence prosecutorial discretion, particularly during the investigative stage before formal charges are filed. Authorities may consider factors such as the seriousness of the offence, whether the accused is a first-time offender, and whether the victim has been compensated. Even then, the ultimate authority to discontinue criminal proceedings lies with the prosecuting authority and, where applicable, the Attorney-General of the Federation, who may exercise constitutional powers to discontinue a case in appropriate circumstances.
Criminal Prosecution vs Civil Compensation
A crucial distinction in cybercrime matters in Nigeria is the difference between criminal prosecution and civil compensation. Criminal prosecution focuses on punishing unlawful conduct and protecting public interest, and it is undertaken by the State under laws such as the Cybercrimes (Prohibition, Prevention, etc.) Act 2015. In such cases, law enforcement authorities like the Nigeria Police Force or the Economic and Financial Crimes Commission investigate and prosecute the offence on behalf of the Federal Republic of Nigeria. Because the offence is considered a violation of public law, the victim does not have unilateral authority to terminate the prosecution once the matter has become a criminal case.
Civil compensation, on the other hand, relates to the victim’s right to recover financial losses or damages arising from the cyber incident. A victim may institute a civil action against the offender to recover stolen funds, damages for reputational harm, or other financial losses. In many situations, parties may negotiate settlement agreements or repayment arrangements to resolve the financial consequences of the dispute.
Importantly, the existence of civil compensation does not automatically eliminate criminal liability. Even if the victim accepts restitution or reaches a settlement agreement, the State may still proceed with criminal prosecution if it considers the offence serious or necessary for deterrence. Consequently, cybercrime disputes may involve both criminal proceedings and civil remedies, each serving different legal purposes within Nigeria’s justice system.
Alternative Dispute Resolution and Cyber Disputes
Not every dispute arising from digital activities amounts to a criminal cybercrime. In many situations, conflicts that occur within Nigeria’s digital economy are essentially civil or commercial disputes, even though they involve online platforms, software systems, or electronic transactions. For example, disagreements between technology companies over software licensing, conflicts relating to intellectual property ownership of digital content, domain name disputes, or contractual disagreements arising from e-commerce transactions are generally treated as civil matters rather than criminal cyber offences.
Such disputes may therefore be resolved through Alternative Dispute Resolution (ADR) mechanisms instead of traditional courtroom litigation. In Nigeria, ADR is widely recognised and encouraged as an efficient method of resolving commercial disputes. Parties may voluntarily submit their disputes to mediation, arbitration, or structured negotiation, particularly where the issues concern contractual obligations, intellectual property rights, licensing arrangements, or online business relationships. These processes offer several advantages, including confidentiality, speed, flexibility, and preservation of business relationships, which are particularly valuable in technology-driven industries where commercial partnerships often continue beyond the dispute.
The legal foundation for these mechanisms is provided by the Arbitration and Mediation Act 2023, which modernised Nigeria’s arbitration framework and strengthened mediation practice within the country. The Act supports both domestic and international arbitration and encourages parties to resolve commercial disputes through structured ADR processes. Technology companies, digital platforms, and startups frequently include arbitration or mediation clauses in their contracts in order to avoid lengthy litigation.
However, it is important to understand the limits of ADR in the context of cyber-related disputes. Where the conduct complained of constitutes a criminal offence under the Cybercrimes (Prohibition, Prevention, etc.) Act 2015, ADR mechanisms cannot replace criminal prosecution. Criminal offences such as hacking, identity theft, cyberstalking, phishing, or electronic fraud are considered offences against the State. As a result, they fall within the jurisdiction of law enforcement agencies and criminal courts, and they cannot be privately settled through mediation or arbitration.
In practice, this means that while civil aspects of a digital dispute may be negotiated or mediated, any conduct that violates the Cybercrimes Act remains subject to investigation and possible prosecution by authorities such as the Nigeria Police Force or the Economic and Financial Crimes Commission. Businesses operating in Nigeria’s digital economy should therefore carefully distinguish between civil cyber disputes that may be resolved through ADR and criminal cyber offences that require engagement with the criminal justice system.
What Happens If the Complainant Withdraws the Complaint?
A frequent misconception is that once the complainant withdraws the complaint in a cybercrime case, the entire matter automatically collapses. This assumption is legally incorrect. Cybercrime offences are prosecuted under the Cybercrimes (Prohibition, Prevention, etc.) Act 2015 and are treated as crimes against the State. Consequently, the prosecution is conducted in the name of the Federal Republic of Nigeria, and not solely at the discretion of the complainant. Even where the complainant decides to withdraw the complaint or expresses a desire for settlement, law enforcement authorities such as the Nigeria Police Force or the Economic and Financial Crimes Commission may still proceed with the prosecution if sufficient evidence exists to support the charge.
In practical terms, however, the withdrawal of the complainant can affect the strength of the prosecution’s case. If the complainant is the primary witness and becomes unwilling to testify, the prosecution may face evidential difficulties in proving the offence beyond reasonable doubt. Courts will therefore consider several factors before determining whether the case can still proceed, including the availability of independent evidence, the strength of documentary or digital proof, and whether continuing the prosecution serves the broader public interest.
Professional Clarification
Cybercrime cases in Nigeria are governed by the Cybercrimes (Prohibition, Prevention, etc.), and investigations are typically handled by authorities such as the Nigeria Police Force or the Economic and Financial Crimes Commission. Because these offences are treated as crimes against the State, decisions regarding prosecution or discontinuance ultimately fall within the authority of the Attorney-General of the Federation.
Public Interest and Prosecutorial Discretion
Cybercrime is generally not treated as a compoundable offence in Nigeria, as most cyber-related offences are prosecuted under the Cybercrimes (Prohibition, Prevention, etc.) Act 2015. Because these offences are considered crimes against the State rather than private disputes between individuals, they cannot ordinarily be settled simply by agreement between the victim and the accused. Once a complaint leads to criminal proceedings, the prosecution is conducted in the name of the State, and payment of compensation or restitution to the victim does not automatically terminate criminal liability.
However, restitution or settlement may still influence prosecutorial discretion, particularly during the investigative stage before charges are formally filed. Authorities such as the Nigeria Police Force or the Economic and Financial Crimes Commission may consider whether the accused has refunded the loss, whether the offence is isolated, and whether the complainant confirms satisfaction. Nevertheless, such settlement does not create a legal right to compounding because the ultimate decision to continue or discontinue prosecution rests with the State and may involve the constitutional powers of the Attorney-General of the Federation.
Public interest also plays a critical role in determining whether a cybercrime matter can be discontinued. Prosecutors often assess broader factors such as the impact of the offence on public confidence, the risk of recurrence, systemic implications for cybersecurity, and the need for regulatory enforcement. For example, cyber offences affecting financial institutions, fintech platforms, or large groups of victims are far less likely to be discontinued because of their wider economic and regulatory consequences. Consequently, while settlement may influence prosecutorial decisions in limited circumstances, cybercrime offences in Nigeria are not generally compoundable and remain subject to the overriding public interest in enforcement.
Practical Guidance for Businesses, Startups, and Tech Founders
If your organisation is facing a cybercrime allegation:
- Do not assume restitution equals immunity.
- Engage experienced legal counsel immediately.
- Preserve electronic evidence.
- Avoid informal, undocumented settlements.
- Structure negotiations through legal representation.
Attempting an informal resolution may lead to additional allegations such as obstruction of justice.
Lawyer’s Perspective: What Clients Often Misunderstand
In practice, many clients assume cybercrime matters function like civil disputes.
They confuse criminal prosecution with negotiable business disagreements.
This misunderstanding is similar to confusion seen in areas like Types of Marriage in Nigeria, where individuals assume Customary Marriage automatically carries identical legal status to statutory marriage without considering statutory requirements. In law, classification determines consequence.
Likewise, in cybercrime, classification as a criminal offence triggers State control.
Courts are particularly concerned with deterrence and systemic impact. Judges often ask:
– Does discontinuance serve justice?
– Does it protect society?
– Does it encourage impunity?
These questions guide judicial discretion.
Frequently Asked Questions
The punishment for cybercrime in Nigeria depends on the specific offence committed and is governed primarily by the Cybercrimes (Prohibition, Prevention, etc.) Act 2015. The Act prescribes a range of penalties including substantial fines, imprisonment, or both. For example, offences such as identity theft, online fraud, or unauthorized access to computer systems may attract several years of imprisonment and significant monetary fines, while more serious offences involving financial institutions, critical infrastructure, or large-scale electronic fraud may carry heavier penalties running into long prison terms and higher fines.
In addition to imprisonment and fines, courts may also order restitution to victims, forfeiture of assets obtained through the cyber offence, and confiscation of devices or systems used to commit the crime. Nigerian courts take cyber offences seriously because of their impact on financial systems, digital commerce, and public confidence in electronic transactions.
The severity of punishment usually depends on factors such as the scale of financial loss, the number of victims involved, whether the offender acted alone or as part of a cybercrime syndicate, and whether the offender is a repeat offender. Consequently, cybercrime convictions in Nigeria can lead to severe criminal penalties alongside financial liabilities imposed by the court.
The length of imprisonment for cybercrime in Nigeria depends on the nature and severity of the offence under the Cybercrimes (Prohibition, Prevention, etc.) Act 2015. The Act prescribes different penalties for various offences, ranging from several months to many years of imprisonment. For example, offences such as unauthorized access to computer systems may attract imprisonment of up to two years, while more serious crimes like identity theft, online fraud, or cyber-related financial crimes can result in prison sentences of up to seven years or more, often accompanied by substantial fines.
In particularly serious cases involving large-scale financial fraud, attacks on financial institutions, or organized cybercrime operations, courts may impose longer sentences and heavier penalties to serve as a deterrent. Nigerian courts also consider factors such as the amount of financial loss involved, whether multiple victims were affected, and whether the offender has a previous criminal record when determining the appropriate sentence.
Ultimately, sentencing in cybercrime cases is determined by the court based on the specific provisions of the law, the evidence presented, and the circumstances of the offence. This means that penalties can vary significantly depending on the facts of each case and the seriousness of the criminal conduct involved.
Cybercrime is regarded as a very serious offence under Nigerian law because it threatens financial systems, personal privacy, national security, and the integrity of the digital economy. The Cybercrimes (Prohibition, Prevention, etc.) Act 2015 criminalizes a wide range of activities including hacking, identity theft, phishing, cyberstalking, online fraud, and unlawful interference with computer systems. Many of these offences carry significant penalties, including heavy fines and imprisonment, depending on the severity of the conduct and the financial or societal harm caused.
The seriousness of cybercrime also stems from its wide-reaching impact. A single cyber incident can affect thousands of individuals, financial institutions, government agencies, or businesses simultaneously. For example, attacks on banking platforms, fintech systems, or corporate networks can lead to massive financial losses and undermine public confidence in digital transactions. As a result, Nigerian authorities such as the Economic and Financial Crimes Commission and the Nigeria Police Force treat cybercrime investigations as high-priority matters.
Because of these risks, the Nigerian legal system emphasizes strong enforcement and deterrence. Courts often impose strict penalties where cybercrime is proven, especially in cases involving large-scale fraud, organized cybercrime networks, or offences affecting critical infrastructure. This reflects the broader policy objective of protecting Nigeria’s growing digital economy and maintaining trust in electronic communication and financial systems.
Yes, cybercrime offences in Nigeria are generally bailable, but the grant of bail depends on the nature and seriousness of the alleged offence. Most cyber offences are prosecuted under the Cybercrimes (Prohibition, Prevention, etc.) Act 2015, and suspects may apply for bail either at the investigative stage before law enforcement agencies such as the Nigeria Police Force or the Economic and Financial Crimes Commission, or after the matter has been filed in court.
Courts consider several factors when deciding whether to grant bail, including the seriousness of the offence, the strength of the evidence, the likelihood that the accused may interfere with witnesses or investigations, and whether the accused is likely to appear for trial. While many cybercrime offences are bailable, courts may impose strict bail conditions—particularly in cases involving large-scale online fraud, financial crimes, or offences affecting multiple victims—to ensure that the accused remains available for prosecution.
Yes, a victim may choose to forgive the accused in a cybercrime matter, but such forgiveness does not automatically end the criminal case. Cyber offences are treated as crimes against the State rather than purely private disputes between individuals. Once a complaint has been reported and an investigation has commenced, the matter is no longer solely within the control of the victim.
Although the victim’s willingness to forgive or accept restitution may influence how the case progresses, it does not legally compel authorities to discontinue the prosecution. Investigators and prosecutors may still proceed if they consider the offence serious or believe that continuing the case is necessary to protect the public and deter similar conduct.
Therefore, while forgiveness may contribute to mitigation and may be taken into account when authorities evaluate the circumstances of the case, it does not automatically extinguish criminal liability in cybercrime matters in Nigeria.
Conclusion
cybercrime cases in Nigeria cannot be privately cancelled through an informal agreements because cyber offences are criminal matters prosecuted by the State. Consequently, settlement between parties does not automatically terminate criminal proceedings. Nonetheless, resolution outside a full trial may still occur in limited circumstances—particularly before charges are filed, where full restitution has been made, where the public interest permits discontinuance, and where prosecutorial discretion supports withdrawal of the case. Ultimately, the decisive factor is not merely the wishes of the complainant but the broader interest of justice and the State’s responsibility to enforce the law. For business owners, technology founders, creators, fintech operators, and investors, this reality highlights an important principle: cybercrime allegations demand a strategic and legally guided response rather than informal negotiation.
Call to Action
If you are involved in a cybercrime investigation — whether as a complainant, suspect, director, investor, or technology entrepreneur — it is essential to seek experienced legal advice immediately.
Early legal intervention can determine whether settlement is viable, whether prosecution can be mitigated, and how best to protect your rights, business reputation, and assets.
For authoritative legal guidance, compliance advisory, and strategic legal support, consult experienced legal professionals through Nigerian Lawyers Centre, a platform dedicated to legal education, business protection, and access to reliable legal expertise in Nigeria’s evolving digital economy.
📞For more enqury call: 0806 555 3671, 08096888818, 08024200080
📧 Nigerialawyerscenter@gmail.com
📍 Chaman Law Firm 115, Obafemi Awolowo Way, Allen Junction, Beside Lagos Airport Hotel, Ikeja, Lagos
👉 Book a consultation now: www.nigerialawyerscenter.com/book-consultation
Need Legal Help in Nigeria?
Find and connect with verified lawyers near you today.
