News

😓💻  When organisations approach the end of a busy and stressful time, or as they rush to finish for a long weekend or holiday, we see a huge spike in data breaches reported to us. 

🔄☁️ Having a robust backup is being prepared against data loss and data theft.  March 31st is World Backup day to remind everyone of the importance of having a robust and accessible backup.

🤖🕒 Most meetings we are having with schools at the moment feature conversations and questions around the use of AI by staff in  organisations.  It's clear the landscape is rapidly evolving and education may not be moving as fast, however, it does help to be prepared.

💻📢 The DfE are seeking views on proposals for narrowing the digital divide in schools and colleges.  It outlines the DfE's long-term vision for narrowing the digital divide in schools and colleges.

💻 ⚠️ Arbor recently announced that it was including some AI as part of it's default configuration - some customers have raised questions about this with us.

✅📃 An MIS (management information system) is a critical part of the school's day to day operations and digital infrastructure.  They can be on premise or in the cloud, which means contract terms can differ.  We highlight the latest guidance alongside what is already data protection law - you should follow this, even if you are procuring your MIS through your local authority or third party IT provider.

📸✅ It's World Book Day on the 6th March when most schools will be celebrating reading and capturing photos of staff and students in their costumes.   Given this is one of many significant photographic events in the calendar, we thought it was a good opportunity to remind everyone of photo and video best practice.

Some of our customers have been affected by the data breach reported by the HCRG Care Group.  The group is currently investigating claims by a ransomware group that more than two terabytes of sensitive information has been breached.

☁️📲Apple has taken unprecedented steps to remove its highest level data security tool from customers in the UK - the reason?  The UK government demanded access to user data.

🤖✅There is no doubt that AI is here to stay as it transforms organisations by helping to automate tasks, increase productivity and efficiency while influencing decision making.  However: "With great power comes great responsibility".

✅🔍 We visit a lot of schools and have a lot of conversations about documentation we are asked to provide as new and returning visitors to organisations. Sometimes we don't agree with what the organisation is asking for, so we thought we'd give some clarification about regulatory requirements.

🔚Microsoft will officially end support for Windows 10 on October 14th 2025 - this means no more security updates, bug fixes or technical support.

🎥🤖  Some of the organisations we are talking to are a little confused about AI, whether they should use it and if their staff already are using it or not.  We've put together a short video explaining the different types of AI, the risks and how you should start documenting your use.

🛡️🔒We couldn't get through today without mentioning it's Safer Internet Day today (11th February).  And while we don't need a special day to talk about being safe online, cyber security and data protection, we welcome any chance to highlight how important they all are.

🏆🥊🛡️When we meet with schools we are often asked whether we think they should be looking at the DfE Digital Standards or Cyber Essentials, aren't they the same?

✅ 🔒 Organisation's rely heavily on third-party software suppliers for day to day business.  We explore the critical aspects of software supplier due diligence and why it should be a priority for every organisation.

Using a statutory instrument on Jan 27th 2025, the Secretary of State for the Department for Science, Innovation and Technology has increased the data protection fees to be paid by data controllers.
Tier 1 (micro organisations) from £40 to £52; Tier 2 (small and medium organisations) from £60 to £78; Tier 3 (large organisations) from £2,900 to £3,763. This change will come in from February 27th 2025 and will be charged when your payment is next due.

A reminder for

🚨  Pupils' sensitive data was shared 'by mistake' by Wellsway School in response to an FOI.  🚨

📢🤖📢 We are pleased to announce our AI Best Practice Area & AI Template Policy

🏴‍☠️ 📢 A school is closed today and tomorrow as the result of a ransomware cyber attack.

📲💬 We come across many organisations using WhatsApp as a communication tool with staff regularly and have previously highlighted some of the risks.  The ICO have recently published information about a case where WhatsApp messages had to be included in a Freedom of Information Request.

📢📢 The DfE has recently published new guidance and resources about using Artificial Intelligence in a school environment.

🗝️🛡️ In a world where cyber attacks are becoming increasingly sophisticated, protecting sensitive information and user accounts has never been more critical. Traditional passwords are rapidly being replaced by a more advanced and secure solution: passkeys. This article explores the benefits of passkeys, their role in preventing cyber attacks, and what to do if a system does not yet support them.

🛡️🖥️  Today the Government launched a consultation period about introducing legislation to counter ransomware.

📢📢 Data Protection Education are running a new webinar schedule for 2025!

🤖🤖 The ICO recently published an overview reports about the use of AI tools in recruitment processes.  While it was recognised that it can offer benefits to employers, it recognises their use can also lead to risks for people and their privacy and information rights.

📂 📄 The DfE issued an update to data sharing and record keeping and management in December.

In December (2024) there was an update to data sharing guidance for school immunisation programmes.

🧸 🚼 As digital technology continues to increase in our educational settings, Early Years settings are increasingly integrating digital tools into their operations.  While this might enhance efficiency and communication, it also raises concerns and challenges about cyber security and data protection.

👩🏽‍🏫👨🏽‍💻 Since we have been talking to schools and multi academy trusts about the SLT digital lead, there have been a lot of questions about who that should be in the organisation. There’s often an assumption that it should automatically be the IT Manager, technician, or Data Protection Lead.  In this article, we explore the profile of an effective SLT Digital Lead and their critical role in shaping digital strategy, integrating technology into teaching and learning,