Cyber attacks in navy text with Data Protection Education log, harry the hacker looking at computer screens and phishing (fishing) a laptop

Cyber attacks are on the up, and with the education sector seeing the highest number of cyber attacks of any sector since the start of the pandemic, as well as the highest increase in attacks in that same period

Nativity scene in glitter (child like) on a yellow back ground

How to share this year’s Nativity play online safety

Schools will have good intentions in wanting to share this year’s Nativity play online. But how do you ensure you do this safely and adhere to the latest data protection regulations? Below is some guidance which will support you in this task.

The Children's Code

The Children’s Code

The first update from the ICO is that the transition year for the introduction of The Children’s Code (also known as The Age Appropriate Design Code) has passed, with the code having come into effect on September 2nd.

Recording vaccination of staff

Recording staff vaccination data

Firstly, a couple of links as reference...though they don't really tell you the answer - especially the second one which doesn't seem to have been updated post-August 16th:

Freedom of information in black text on a key on a white keyboard

Schools in Brighton and Hove have received the following Freedom of Information request:

1. Please send me copies/scans/digital files that record individual racist/religious incidents/bullying incidents in terms of numbers of incidents and their

Cyber attacks in navy, harry the hacker looking at computer screens and phishing (fishing) a laptop

The National Cyber Security Centre has today upgraded it's advice to schools relating to the prevalence of cybers attacks in the sector:

Transparency written in pen, with the Data protection education logo above, a hand holding a pen on the left and a reflection of the hand below it

What Is Transparency

Transparency is about being clear, open and honest with your users about what they can expect from you.

Camera with man behind a piece of material poking through

We've had a few questions recently about parents and students recording conversations with members of staff, both covertly or overtly without seeking permission. This article only covers recordings made by external individuals, not organisations or individuals acting on behalf of an organisation.

DPE Knowledge Bank dashboard on a laptop screen on a desk

We know the jargon can be confusing. As can the timelines for responding to the various requests that you receive.

Is it a month? Or 30 days? Are those working days?

So here's a little chart to simplify everything:

Photo of a person's arm and putting a letter in the post box.  Data Protection Education logo on the bottom right of the image

We've recently had more than one breach reported where physical files have got lost in the post.

In such cases, the sender remains the data controller and is responsible for ensuring that the optimum data security measures are in place during transfer. Where possible, consider whether a physical drop-off (and get a receipt) is a more secure option.

Emergency contact information sheet with a yellow pencil above it, Data protection education logo on the sheet

Do I need consent for emergency contacts?

Actually no, and here's why.

We know that we must have a lawful basis for processing any data, and consent is one of the six lawful bases that can be used.

computer keyboard with due diligence on a blue key

Adapted from: The Irish Data Protection Commissioner

The UK GDPR does not prescribe the exact process for carrying out a DPIA beyond the minimum features outlined above, allowing for flexibility and scalability in line with your organisation’s needs. Although there is no one prescribed approach to take, the following steps can guide you through the process:

Freedom of information on a white key on a white keyboard

We have added publication scheme model templates in the FOI Best Practice area for academies as well as maintained schools.

Difference between the High Level and Detailed Publication Scheme

Old fashioned typewriter with Fake news types on Data Protection Education headed paper

The Government has provided some guidance on the avoidance of disinformation online.

https://sharechecklist.gov.uk/

What is disinformation?

Disinformation is the deliberate creation or dissemination of false and/or manipulated information

Search