News

🏆🥊🛡️When we meet with schools we are often asked whether we think they should be looking at the DfE Digital Standards or Cyber Essentials, aren't they the same?

✅ 🔒 Organisation's rely heavily on third-party software suppliers for day to day business.  We explore the critical aspects of software supplier due diligence and why it should be a priority for every organisation.

Using a statutory instrument on Jan 27th 2025, the Secretary of State for the Department for Science, Innovation and Technology has increased the data protection fees to be paid by data controllers.
Tier 1 (micro organisations) from £40 to £52; Tier 2 (small and medium organisations) from £60 to £78; Tier 3 (large organisations) from £2,900 to £3,763. This change will come in from February 27th 2025 and will be charged when your payment is next due.

A reminder for

🚨  Pupils' sensitive data was shared 'by mistake' by Wellsway School in response to an FOI.  🚨

📢🤖📢 We are pleased to announce our AI Best Practice Area & AI Template Policy

🏴‍☠️ 📢 A school is closed today and tomorrow as the result of a ransomware cyber attack.

📲💬 We come across many organisations using WhatsApp as a communication tool with staff regularly and have previously highlighted some of the risks.  The ICO have recently published information about a case where WhatsApp messages had to be included in a Freedom of Information Request.

📢📢 The DfE has recently published new guidance and resources about using Artificial Intelligence in a school environment.

🗝️🛡️ In a world where cyber attacks are becoming increasingly sophisticated, protecting sensitive information and user accounts has never been more critical. Traditional passwords are rapidly being replaced by a more advanced and secure solution: passkeys. This article explores the benefits of passkeys, their role in preventing cyber attacks, and what to do if a system does not yet support them.

🛡️🖥️  Today the Government launched a consultation period about introducing legislation to counter ransomware.

📢📢 Data Protection Education are running a new webinar schedule for 2025!

🤖🤖 The ICO recently published an overview reports about the use of AI tools in recruitment processes.  While it was recognised that it can offer benefits to employers, it recognises their use can also lead to risks for people and their privacy and information rights.

📂 📄 The DfE issued an update to data sharing and record keeping and management in December.

In December (2024) there was an update to data sharing guidance for school immunisation programmes.

🧸 🚼 As digital technology continues to increase in our educational settings, Early Years settings are increasingly integrating digital tools into their operations.  While this might enhance efficiency and communication, it also raises concerns and challenges about cyber security and data protection.

👩🏽‍🏫👨🏽‍💻 Since we have been talking to schools and multi academy trusts about the SLT digital lead, there have been a lot of questions about who that should be in the organisation. There’s often an assumption that it should automatically be the IT Manager, technician, or Data Protection Lead.  In this article, we explore the profile of an effective SLT Digital Lead and their critical role in shaping digital strategy, integrating technology into teaching and learning,

🛡️ The National Cyber Security Centre has recently published an article about ransomware resistant backups.

Governing bodies have a strategic oversight of all of a school or trust's strategies, including cyber security and data protection.

📢📢 We're running some short webinars about the DfE Digital Standards.📢📢

🎄We've updated our end of term and end of year guidance, alongside advice for privacy considerations for special occasions (which also normally occur at the end of term, such as Christmas).

📢 It's important to be prepared for when a cyber incident happens to you.  Part of that preparation should include having a Cyber Incident Response Plan, and part of that plan should include how to communicate, who does the communication and what they should say.

📃 A digital technology contracts register is a lit of all the contracts in your organisation with external suppliers for the supply of digital technology products and services.

⚠️ On Friday 8th November South East Technological University (SETU) experienced a cyber security incident.

We are sharing some of blog posts by school ICT technicians and ICT managers that are giving their advice about keeping your school cyber secure and resilient.

🍂 The DfE have published several updates to the DfE Digital Standards, updating the Filtering and Monitoring Standards, the Digital Leadership & Governance Standards and the Broadband Internet Standards for Schools and Colleges. We give our view on what that means and more details about the updates.

🎦 CCTV systems play a critical role in maintaining safety and security in organisations.  In schools, for example, it might help deter inappropriate behaviour, prevent unauthorised access and damage to property.

📢 A special school in Devon has been the victim of a cyber attack and is being blackmailed by hackers.

In a Malwarebytes blog, author Mark Beare explains how your child's data can be stolen, and even more so if you have given medical  or health data.

🌑🗃️💻 Dark data is data that is unused but still might be stored somewhere in an organisation, usually kept in unstructured and unsecured repositories or storage.

October is Cyber Security Awareness Month, and while we don't think that cyber awareness is something to cover just once in the year, we think it's a good opportunity to publish some information that can be used all year round.
Awareness Day: Thirty One