Belvoirdale Primary School. E-Safety Policy. May 2016

Transcription

1 Belvirdale Primary Schl E-Safety Plicy May 2016 Agreed by Gvernrs: Signed: Dated: T be reviewed: T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

2 Cntents 1. Intrductin and verview Ratinale and Scpe Rles and respnsibilities Hw the plicy be cmmunicated t staff/pupils/cmmunity Handling cmplaints Review and Mnitring 2. Educatin and Curriculum Pupil e-safety Curriculum Staff and gvernr training Parent awareness and training 3. Expected Cnduct and Incident management 4. Managing the ICT infrastructure Internet access, security (virus prtectin) and filtering Netwrk management (user access, backup, curriculum and admin) Passwrds plicy Schl website Learning platfrm Scial netwrking Vide Cnferencing 5. Data security Management Infrmatin System access Data transfer 6. Equipment and Digital Cntent Persnal mbile phnes and devices Digital images and vide Asset dispsal Appendices: 1. Acceptable Use Agreement (Staff) 2. Acceptable Use Agreement (Pupils) 3. Acceptable Use Agreement including pht/vide permissin (Parents) 4. Prtcl fr respnding t e-safety incidents 5. Prtcl fr Data Security 6. Search and Cnfiscatin guidance frm DfE T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

3 1. Intrductin and Overview Ratinale The purpse f this plicy is t: set ut the key principles expected f all members f the schl cmmunity at Belvirdale Primary with respect t the use f ICT-based technlgies. safeguard and prtect the children and staff f Belvirdale Primary. assist schl staff wrking with children t wrk safely and respnsibly with the internet and ther cmmunicatin technlgies and t mnitr their wn standards and practice. set clear expectatins f behaviur and/r cdes f practice relevant t respnsible use f the internet fr educatinal, persnal r recreatinal use. have clear structures t deal with nline abuse such as cyberbullying which are crss referenced with ther schl plicies. ensure that all members f the schl cmmunity are aware that unlawful r unsafe behaviur is unacceptable and that, where apprpriate, disciplinary r legal actin will be taken. minimise the risk f misplaced r malicius allegatins made against adults wh wrk with students. The main areas f risk fr ur schl cmmunity can be summarised as fllws: Cntent expsure t inapprpriate cntent, including nline prngraphy, ignring age ratings in games (expsure t vilence assciated with ften racist language), substance abuse lifestyle websites, fr example pr-anrexia/self-harm/suicide sites hate sites cntent validatin: hw t check authenticity and accuracy f nline cntent Cntact grming cyber-bullying in all frms identity theft (including frape (hacking Facebk prfiles)) and sharing passwrds Cnduct privacy issues, including disclsure f persnal infrmatin digital ftprint and nline reputatin health and well-being (amunt f time spent nline (internet r gaming)) sexting (sending and receiving f persnally intimate images) als referred t as SGII (self generated indecent images) cpyright (little care r cnsideratin fr intellectual prperty and wnership such as music and film) (Ref Ofsted 2013) Scpe This plicy applies t all members f Belvirdale Primary cmmunity (including staff, students / pupils, vlunteers, parents / carers, visitrs, cmmunity users) wh have access t and are users f schl / academy ICT systems, bth in and ut f Belvirdale Primary T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

4 The Educatin and Inspectins Act 2006 empwers Headteachers / Principals t such extent as is reasnable, t regulate the behaviur f students / pupils when they are ff the schl / academy site and empwers members f staff t impse disciplinary penalties fr inapprpriate behaviur. This is pertinent t incidents f cyber-bullying, r ther e-safety incidents cvered by this plicy, which may take place utside f the schl / academy, but is linked t membership f the schl / academy. The 2011 Educatin Act increased these pwers with regard t the searching fr and f electrnic devices and the deletin f data (see appendix fr template plicy). In the case f bth acts, actin can nly be taken ver issues cvered by the published Behaviur Plicy. The schl / academy will deal with such incidents within this plicy and assciated behaviur and antibullying plicies and will, where knwn, infrm parents / carers f incidents f inapprpriate e-safety behaviur that take place ut f schl. Rle Key Respnsibilities Headteacher T take verall respnsibility fr e-safety prvisin T take verall respnsibility fr data and data security. T ensure the schl uses an apprved, filtered Internet Service, which cmplies with current statutry requirements eg Office 365. T be respnsible fr ensuring that staff receive suitable training t carry ut their e-safety rles and t train ther clleagues, as relevant T be aware f prcedures t be fllwed in the event f a serius e-safety incident. T receive regular mnitring reprts frm the E-Safety C-rdinatr / Officer T ensure that there is a system in place t mnitr and supprt staff wh carry ut internal e-safety prcedures( e.g. netwrk manager) e-safety Crdinatr / Designated Child Prtectin Lead takes day t day respnsibility fr e-safety issues and has a leading rle in establishing and reviewing the schl e-safety plicies / dcuments prmtes an awareness and cmmitment t e-safeguarding thrughut the schl cmmunity ensures that e-safety educatin is embedded acrss the curriculum liaises with schl ICT technical staff T cmmunicate regularly with SLT and the designated e-safety Gvernr / cmmittee t discuss current issues, review incident lgs and filtering / change cntrl lgs T ensure that all staff are aware f the prcedures that need t be fllwed in the event f an e-safety incident T ensure that an e-safety incident lg is kept up t date facilitates training and advice fr all staff liaises with the Lcal Authrity and relevant agencies Is regularly updated in e-safety issues and legislatin, and be aware f the ptential fr serius child prtectin issues t arise frm: sharing f persnal data access t illegal / inapprpriate materials inapprpriate n-line cntact with adults / strangers ptential r actual incidents f grming cyber-bullying and use f scial media 10 T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

5 Rle Gvernrs / E-safety gvernr Key Respnsibilities T ensure that the schl fllws all current e-safety advice t keep the children and staff safe T apprve the E-Safety Plicy and review the effectiveness f the plicy. This will be carried ut by the Gvernrs / Gvernrs Sub Cmmittee receiving regular infrmatin abut e-safety incidents and mnitring reprts. A member f the Gverning Bdy has taken n the rle f E-Safety Gvernr T supprt the schl in encuraging parents and the wider cmmunity t becme engaged in e-safety activities The rle f the E-Safety Gvernr will include: regular review with the E- Safety C-rdinatr / Officer ( including e-safety incident lgs, filtering / change cntrl lgs ) 9 Cmputing Curriculum Leader Netwrk Manager/techni cian T versee the delivery f the e-safety element f the Cmputing curriculum T liaise with the e-safety crdinatr regularly T reprt any e-safety related issues that arises, t the e-safety crdinatr. T ensure that users may nly access the schl s netwrks thrugh an authrised and prperly enfrced passwrd prtectin plicy, in which passwrds are regularly changed (every 90 days.) T ensure that prvisin exists fr misuse detectin and malicius attack e.g. keeping virus prtectin up t date) T ensure the security f the schl ICT system T ensure that access cntrls / encryptin exist t prtect persnal and sensitive infrmatin held n schl-wned devices the schl s plicy n web filtering is applied and updated n a regular basis. that he / she keeps up t date with the schl s e-safety plicy and technical infrmatin in rder t effectively carry ut their e-safety rle and t infrm and update thers as relevant that the use f the netwrk / remte access / is regularly mnitred in rder that any misuse / attempted misuse can be reprted t the E-Safety C-rdinatr / Officer /Headteacher fr investigatin / actin / sanctin T ensure apprpriate backup prcedures exist s that critical infrmatin and systems can be recvered in the event f a disaster. T keep up-t-date dcumentatin f the schl s e-security and technical prcedures Data Manager T ensure that all data held n pupils n the schl ffice machines have apprpriate access cntrls in place Teachers T embed e-safety issues in all aspects f the curriculum and ther schl activities T supervise and guide pupils carefully when engaged in learning activities invlving nline technlgy ( including, extra curricular and extended schl activities if relevant) T ensure that pupils are fully aware f research skills and are fully aware f legal issues relating t electrnic cntent such as cpyright laws T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

6 Rle Key Respnsibilities All staff T read, understand and help prmte the schl s e-safety plicies and guidance T read, understand, sign and adhere t the schl staff Acceptable Use Agreement / Plicy. T be aware f e-safety issues related t the use f mbile phnes, cameras and hand held devices and that they mnitr their use and implement current schl plicies with regard t these devices T reprt any suspected misuse r prblem t the e-safety crdinatr T maintain an awareness f current e-safety issues and guidance e.g. thrugh CPD T mdel safe, respnsible and prfessinal behaviurs in their wn use f technlgy T ensure that any digital cmmunicatins with pupils shuld be n a prfessinal level and nly thrugh schl based systems, never thrugh persnal mechanisms, e.g. , text, mbile phnes etc. Pupils Read, understand, sign and adhere t the Student / Pupil Acceptable Use Plicy (nb. at KS1 it wuld be expected that parents / carers wuld sign n behalf f the pupils) have a gd understanding f research skills and the need t avid plagiarism and uphld cpyright regulatins t understand the imprtance f reprting abuse, misuse r access t inapprpriate materials t knw what actin t take if they r smene they knw feels wrried r vulnerable when using nline technlgy. t knw and understand schl plicy n the use f mbile phnes, digital cameras and hand held devices. T knw and understand schl plicy n the taking / use f images and n cyber-bullying. T understand the imprtance f adpting gd e-safety practice when using digital technlgies ut f schl and realise that the schl s E-Safety Plicy cvers their actins ut f schl, if related t their membership f the schl T take respnsibility fr learning abut the benefits and risks f using the internet and ther technlgies safely bth in schl and at hme t help the schl in the creatin/ review f e-safety plicies Parents/carers t supprt the schl in prmting e-safety and endrse the Parents Acceptable Use Agreement which includes the pupils use f the internet and the schl s use f phtgraphic and vide images t read, understand and prmte the schl Pupil Acceptable Use Agreement with their children t access the schl website / n-line student / pupil recrds in accrdance with the relevant schl Acceptable Use Agreement. t cnsult with the schl if they have any cncerns abut their children s use f technlgy External grups Any external individual / rganisatin will sign an Acceptable Use Plicy prir t using any equipment r the internet within schl T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

7 Cmmunicatin: Hw the plicy will be cmmunicated t staff/pupils/cmmunity in the fllwing ways: Plicy t be psted n the schl website/staffrm/ classrms Plicy t be part f schl inductin pack fr new staff Acceptable use agreements discussed with pupils at the start f each year. Acceptable use agreements t be issued t whle schl cmmunity, usually n entry t the schl Acceptable use agreements t be held in pupil and persnnel files Handling cmplaints: The schl will take all reasnable precautins t ensure e-safety. Hwever, wing t the internatinal scale and linked nature f Internet cntent, the availability f mbile technlgies and speed f change, it is nt pssible t guarantee that unsuitable material will never appear n a schl cmputer r mbile device. Neither the schl nr the Lcal Authrity can accept liability fr material accessed, r any cnsequences f Internet access. Staff and pupils are given infrmatin abut infringements in use and pssible sanctins. Sanctins available include: interview/cunselling by tutr / Head f Phase / e-safety Crdinatr / Headteacher; infrming parents r carers; remval f Internet r cmputer access fr a perid, [which culd ultimately prevent access t files held n the system, including examinatin cursewrk]; referral t LA / Plice. Our e-safety Crdinatr acts as first pint f cntact fr any cmplaint. Any cmplaint abut staff misuse is referred t the Headteacher. Cmplaints f cyberbullying are dealt with in accrdance with ur Anti-Bullying Plicy. Cmplaints related t child prtectin are dealt with in accrdance with schl / LA child prtectin prcedures. Review and Mnitring The e-safety plicy is referenced frm within ther schl plicies: Cmputing plicy, Child Prtectin plicy, Anti-Bullying plicy and in the Schl Develpment Plan, Behaviur plicy, Persnal, Scial and Health Educatin and fr Citizenship plicies. The schl has an e-safety crdinatr wh will be respnsible fr dcument wnership, review and updates. The e-safety plicy will be reviewed annually r when any significant changes ccur with regard t the technlgies in use within the schl The e-safety plicy has been written by the schl e-safety Crdinatr and is current and apprpriate fr its intended audience and purpse. There is widespread wnership f the plicy and it has been agreed by the SLT and apprved by Gvernrs and ther stakehlders such as the PTA. All amendments t the schl e-safeguarding plicy will be discussed in detail with all members f teaching staff. T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

8 Versin Cntrl As part f the maintenance invlved with ensuring yur e-safety plicy is updated, revisins will be made t the dcument. It is imprtant that the dcument wner ensures the dcument cntains the fllwing infrmatin and that all revisins are stred centrally fr audit purpses. Title Belvirdale Primary Schl e-safety plicy Versin 1.0 Date 04/05/2016 Authr e-safety crdinatr Apprved by head teacher Apprved by Gverning Bdy Next Review Date 04/05/17 Mdificatin Histry Versin Date Descriptin Revisin Authr /05/16 Initial draft e-safety crdinatr Rachel Mres T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

9 2. Educatin and Curriculum Pupil e-safety curriculum This schl Has a clear, prgressive e-safety educatin prgramme as part f the Cmputing curriculum / PSHE curriculum. It is built n LA / Office 365 e-safeguarding and e-literacy framewrk fr EYFS t Y6/ natinal guidance. This cvers a range f skills and behaviurs apprpriate t their age and experience, including: t STOP and THINK befre they CLICK t develp a range f strategies t evaluate and verify infrmatin befre accepting its accuracy; t be aware that the authr f a web site / page may have a particular bias r purpse and t develp skills t recgnise what that may be; t knw hw t narrw dwn r refine a search; [fr lder pupils] t understand hw search engines wrk and t understand that this affects the results they see at the tp f the listings; t understand acceptable behaviur when using an nline envirnment / , i.e. be plite, n bad r abusive language r ther inapprpriate behaviur; keeping persnal infrmatin private; t understand hw phtgraphs can be manipulated and hw web cntent can attract the wrng srt f attentin; t understand why n-line friends may nt be wh they say they are and t understand why they shuld be careful in nline envirnments; t understand why they shuld nt pst r share detailed accunts f their persnal lives, cntact infrmatin, daily rutines, lcatin, phtgraphs and vides and t knw hw t ensure they have turned-n privacy settings; t understand why they must nt pst pictures r vides f thers withut their permissin; t knw nt t dwnlad any files such as music files - withut permissin; t have strategies fr dealing with receipt f inapprpriate materials; [fr lder pupils] t understand why and hw sme peple will grm yung peple fr sexual reasns; T understand the impact f cyberbullying, sexting and trlling and knw hw t seek help if they are affected by any frm f nline bullying. T knw hw t reprt any abuse including cyberbullying; and hw t t seek help if they experience prblems when using the internet and related technlgies, i.e. parent r carer, teacher r trusted staff member, r an rganisatin such as Childline r the CLICK CEOP buttn. Plans internet use carefully t ensure that it is age-apprpriate and supprts the learning bjectives fr specific curriculum areas. Will remind students abut their respnsibilities thrugh an end-user Acceptable Use Plicy which every student will sign/will be displayed thrughut the schl/will be displayed when a student lgs n t the schl netwrk. Ensures staff will mdel safe and respnsible behaviur in their wn use f technlgy during lessns. Ensures that when cpying materials frm the web, staff and pupils understand issues arund plagiarism; hw t check cpyright and als knw that they must respect and acknwledge cpyright / intellectual prperty rights; Ensures that staff and pupils understand the issues arund aspects f the cmmercial use f the Internet, as age apprpriate. This may include, risks in pp-ups; buying n-line; n-line gaming / gambling; Staff have been trained in hw t deal with issues arising frm extremism and radicalisatin n the internet (yearly child prtectin training.) T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

10 Staff and gvernr training This schl Ensures staff knw hw t send r receive sensitive and persnal data and understand the requirement t encrypt data where the sensitivity requires data prtectin; Makes regular training available t staff n e-safety issues and the schl s e-safety educatin prgram. Prvides, as part f the inductin prcess, all new staff [including thse n university/cllege placement and wrk experience] with infrmatin and guidance n the esafeguarding plicy and the schl s Acceptable Use Plicies. Parent awareness and training This schl Runs a rlling prgramme f advice, guidance and training fr parents, including: Intrductin f the Acceptable Use Agreements t new parents, t ensure that principles f e- safe behaviur are made clear Infrmatin leaflets; in schl newsletters; n the schl web site; demnstratins, practical sessins held at schl; suggestins fr safe Internet use at hme; prvisin f infrmatin abut natinal supprt sites fr parents. 3. Expected Cnduct and Incident management Expected cnduct In this schl, all users: are respnsible fr using the schl ICT systems in accrdance with the relevant Acceptable Use Plicy which they will be expected t sign befre being given access t schl systems. (at KS1 it wuld be expected that parents/carers wuld sign n behalf f the pupils.) need t understand the imprtance f misuse r access t inapprpriate materials and are aware f the cnsequences need t understand the imprtance f reprting abuse, misuse r access t inapprpriate materials and knw hw t d s shuld understand the imprtance f adpting gd e-safety practice when using digital technlgies ut f schl and realise that the schl s E-Safety Plicy cvers their actins ut f schl, if related t their membership f the schl will be expected t knw and understand schl plicies n the use f mbile phnes, digital cameras and hand held devices. They shuld als knw and understand schl plicies n the taking / use f images and n cyber-bullying Staff are respnsible fr reading the schl s e-safety plicy and using the schl ICT systems accrdingly, including the use f mbile phnes, and hand held devices. Students/Pupils shuld have a gd understanding f research skills and the need t avid plagiarism and uphld cpyright regulatins T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

11 Parents/Carers shuld prvide cnsent fr pupils t use the Internet, as well as ther technlgies, as part f the e-safety acceptable use agreement frm at time f their child s entry t the schl shuld knw and understand what the rules f apprpriate use are and what sanctins result frm misuse Incident Management In this schl: there is strict mnitring and applicatin f the e-safety plicy and a differentiated and apprpriate range f sanctins, thugh the attitudes and behaviur f users are generally psitive and there is rarely need t apply sanctins all members and its wider cmmunity are encuraged t be vigilant in reprting issues, in the cnfidence that issues will be dealt with quickly and sensitively, thrugh the schl s escalatin prcesses. supprt is actively sught frm ther agencies as needed (eg the lcal authrity and reginal bradband grid, UK Safer Internet Centre helpline) in dealing with e-safety issues mnitring and reprting f e safety incidents takes place and cntribute t develpments in plicy and practice in e-safety within the schl. The recrds are reviewed/audited and reprted t the schl s senir leaders, Gvernrs /the LA / LSCB parents / carers are specifically infrmed f e-safety incidents invlving yung peple fr whm they are respnsible. We will cntact the Plice if ne f ur staff r pupils receives nline cmmunicatin that we cnsider is particularly disturbing r breaks the law 4. Managing the ICT infrastructure Internet access, security (virus prtectin) and filtering This schl: Has the educatinal filtered secure bradband cnnectivity thrugh RM. Uses web filtering prxy where relevant, thereby clsing dwn r pening up ptins apprpriate t the age / stage f the students; Ensures netwrk healthy thrugh use f Sphs anti-virus sftware etc and netwrk set-up s pupils cannt dwnlad executable files; Uses DfE r LA apprved systems such as S2S and Office 365 secured t send persnal data ver the Internet and uses encrypted devices r secure remte access were staff need t access persnal level data ff-site; Blcks all Chat rms and scial netwrking sites except thse that are part f an educatinal netwrk r apprved Learning Platfrm; Only unblcks ther external scial netwrking sites fr specific purpses / Internet Literacy lessns; Has blcked pupil access t music dwnlad r shpping sites except thse apprved fr educatinal purpses at a reginal r natinal level, such as Audi Netwrk; Uses security time-uts n Internet access where practicable / useful; T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

12 Is vigilant in its supervisin f pupils use at all times, as far as is reasnable, and uses cmmnsense strategies in learning resurce areas where lder pupils have mre flexible access; Ensures all staff and students have signed an acceptable use agreement frm and understands that they must reprt any cncerns; Requires staff t preview websites befre use [where nt previusly viewed r cached] and encurages use f the schl s Learning Platfrm as a key way t direct students t age / subject apprpriate web sites; Plans the curriculum cntext fr Internet use t match pupils ability, using child-friendly search engines where mre pen Internet searching is required; eg Kidrex and Ggle Safe Search. Never allws / Is vigilant when cnducting raw image search with pupils e.g. Ggle image search; Infrms all users that Internet use is mnitred; Infrms staff and students that that they must reprt any failure f the filtering systems directly t the [system administratr / teacher / persn respnsible fr URL filtering]. Our system administratr(s) lgs r escalates as apprpriate t the Technical service prvider. Makes clear all users knw and understand what the rules f apprpriate use are and what sanctins result frm misuse thrugh staff meetings and teaching prgramme; Prvides advice and infrmatin n reprting ffensive materials, abuse/ bullying etc available fr pupils, staff and parents Immediately refers any material we suspect is illegal t the apprpriate authrities Plice and the LA. Netwrk management (user access, backup) This schl Uses individual, audited lg-ins fr all users. Uses guest accunts ccasinally fr external r shrt term visitrs fr temprary access t apprpriate services Has additinal lcal netwrk auditing sftware installed; Ensures the Systems Administratr / netwrk manager is up-t-date with DFE services and plicies / requires the Technical Supprt Prvider t be up-t-date with DFE services and plicies; Strage f all data within the schl will cnfrm t the UK data prtectin requirements Pupils and Staff using mbile technlgy, where strage f data is nline, will cnfrm t the EU data prtectin directive where strage is hsted within the EU. T ensure the netwrk is used safely, this schl: Ensures staff read and sign that they have understd the schl s e-safety Plicy. Fllwing this, they are set-up with Internet, access and netwrk access. Online access t service is thrugh a unique, audited username and passwrd. We als prvide a different / use the same username and passwrd fr access t ur schl s netwrk; Staff access t the schls management infrmatin system is cntrlled thrugh a separate passwrd fr data security purpses; We prvide pupils with an individual netwrk lg-in username. All pupils have their wn unique username and passwrd which gives them access t the Internet, Office 365 and (fr lder pupils) their wn schl apprved accunt; T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

13 Makes clear that n ne shuld lg n as anther user and makes clear that pupils shuld never be allwed t lg-n r use teacher and staff lgins as these have far less security restrictins and inapprpriate use culd damage files r the netwrk; Has set-up the netwrk with a shared wrk area fr pupils and ne fr staff. Staff and pupils are shwn hw t save wrk and access wrk frm these areas; Requires all users t always lg ff when they have finished wrking r are leaving the cmputer unattended; Where a user finds a lgged-n machine, we require them t always lg-ff and then lg-n again as themselves. Requests that teachers and pupils d nt switch the cmputers ff during the day unless they are unlikely t be used again that day r have cmpletely crashed. We request that they DO switch the cmputers ff at the end f the day. Has blcked access t music/media dwnlad r shpping sites except thse apprved fr educatinal purpses; Scans all mbile equipment with anti-virus / spyware befre it is cnnected t the netwrk; Makes clear that staff are respnsible fr ensuring that all equipment that ges hme has the anti-virus and spyware sftware maintained up-t-date and the schl prvides them with a slutin t d s; Makes clear that staff are respnsible fr ensuring that any cmputer r laptp laned t them by the schl, is used slely t supprt their prfessinal respnsibilities and that they ntify the schl f any significant persnal use as defined by HM Revenue & Custms. Maintains equipment t ensure Health and Safety is fllwed; e.g. equipment installed and checked by apprved Suppliers / LA electrical engineers Has integrated curriculum and administratin netwrks, but access t the Management Infrmatin System is set-up s as t ensure staff users can nly access mdules related t their rle; e.g. teachers access reprt writing mdule; SEN crdinatr - SEN data; Ensures that access t the schl s netwrk resurces frm remte lcatins by staff is restricted and access is nly thrugh schl / LA apprved systems: Des nt allw any utside Agencies t access ur netwrk remtely except where there is a clear prfessinal need and then access is restricted and is nly thrugh apprved systems; e.g. technical supprt r MIS Supprt, ur Educatin Welfare Officers accessing attendance data n specific children, parents using a secure prtal t access infrmatin n their child; Prvides pupils and staff with access t cntent and resurces thrugh the apprved Learning Platfrm which staff and pupils access using their username and passwrd (their USO username and passwrd); Makes clear respnsibilities fr the daily back up f MIS and finance systems and ther imprtant files; Has a clear disaster recvery system in place fr critical data that includes a secure, remte back up f critical data, that cmplies with external Audit s requirements; Ensures that all pupil level data r persnal data sent ver the Internet is encrypted r nly sent within the apprved secure system in ur LA r thrugh USO secure file exchange (ANY COMMS/ DFS2S) T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

14 Fllws ISP advice n Lcal Area and Wide Area security matters and firewalls and ruters have been cnfigured t prevent unauthrised use f ur netwrk; Our wireless netwrk has been secured t industry standard Enterprise security level /apprpriate standards suitable fr educatinal use; All cmputer equipment is installed prfessinally and meets health and safety standards; Reviews the schl ICT systems regularly with regard t health and safety and security. Passwrds plicy This schl makes it clear that staff and pupils must always keep their passwrd private, must nt share it with thers and must nt leave it where thers can find. ; All staff have their wn unique username and private passwrds t access schl systems. Staff are respnsible fr keeping their passwrd private. This schl Prvides staff with an accunt fr their prfessinal use, and makes clear persnal shuld be thrugh a separate accunt; Prvides highly restricted (Safe mail) / simulated envirnments fr with Key Stage 1 pupils; Uses Office 365 with students as this has cntent cntrl Will cntact the Plice if ne f ur staff r pupils receives an that we cnsider is particularly disturbing r breaks the law. Will ensure that accunts are maintained and up t date Reprts messages relating t r in supprt f illegal activities t the relevant Authrity and if necessary t the Plice. Knws that spam, phishing and virus attachments can make e mails dangerus. We use a number f technlgies t help prtect users and systems in the schl, including desktp anti-virus prduct Sphs, plus direct filtering fr viruses, Trjans, prngraphy, phishing and inapprpriate language. Pupils: Pupils are intrduced t, and use as part f the Cmputing scheme f wrk. Pupils can nly receive external mail frm, and send external mail t, addresses if the Saf rules have been set t allw this. Pupils are taught abut the safety and netiquette f using bth in schl and at hme i.e. they are taught: nt t give ut their address unless it is part f a schl managed prject r t smene they knw and trust and is apprved by their teacher r parent/carer; that an is a frm f publishing where the message shuld be clear, shrt and cncise; they must nt reveal private details f themselves r thers in , such as address, telephne number, etc; t Stp and Think Befre They Click and nt pen attachments unless sure the surce is safe; that they shuld think carefully befre sending any attachments; T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

15 that they must immediately tell a teacher / respnsible adult if they receive an which makes them feel uncmfrtable, is ffensive r bullying in nature; nt t respnd t malicius r threatening messages; nt t delete malicius f threatening s, but t keep them as evidence f bullying; nt t arrange t meet anyne they meet thrugh withut having discussed with an adult and taking a respnsible adult with them; that frwarding chain letters is nt permitted. Pupils sign the schl Agreement Frm t say they have read and understd the e-safety rules, including and we explain hw any inapprpriate use will be dealt with. Staff: Staff can nly use the Office 365 e mail systems n the schl system Staff nly use Office 365 systems fr prfessinal purpses Access in schl t external persnal e mail accunts may be blcked Staff use a clsed LA system which is used fr LA cmmunicatins and sme LA apprved transfers f infrmatin ; Never use t transfer staff r pupil persnal data. We use secure, LA / DfE apprved systems. These include: S2S (fr schl t schl transfer); Cllect; named LA system; Staff knw that sent t an external rganisatin must be written carefully, (and may require authrisatin), in the same way as a letter written n schl headed paper. That it shuld fllw the schl huse-style : the sending f multiple r large attachments shuld be limited, and may als be restricted by the prvider f the service being used; the sending f chain letters is nt permitted; embedding adverts is nt allwed; All staff sign ur LA / schl Agreement Frm AUP t say they have read and understd the e- safety rules, including and we explain hw any inapprpriate use will be dealt with. Schl website The Headteacher takes verall respnsibility t ensure that the website cntent is accurate and the quality f presentatin is maintained; Uplading f infrmatin is restricted t ur website authrisers The schl web site cmplies with the statutry DfE guidelines fr publicatins; Mst material is the schl s wn wrk; where ther s wrk is published r linked t, we credit the surces used and state clearly the authr's identity r status; The pint f cntact n the web site is the schl address, telephne number and we use a general cntact address, e.g. inf@schladdress r admin@schladdress. Hme infrmatin r individual identities will nt be published; Phtgraphs published n the web d nt have full names attached; We d nt use pupils names when saving images in the file names r in the tags when publishing t the schl website; We d nt use embedded gedata in respect f stred images T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

16 We expect teachers using schl apprved blgs r wikis t passwrd prtect them and run frm the schl website. Office 365 Uplading f infrmatin n the schls Learning Platfrm / virtual learning space is shared between different staff members accrding t their respnsibilities e.g. all class teachers uplad infrmatin in their class areas; Phtgraphs and vides upladed t the schls LEARNING PLATFORM will nly be accessible by members f the schl cmmunity; In schl, pupils are nly able t uplad and publish within schl apprved and clsed systems, such as the Learning Platfrm; Scial netwrking Teachers are instructed nt t run scial netwrk spaces fr student use n a persnal basis r t pen up their wn spaces t their students, but t use the schls preferred system fr such cmmunicatins. The schl s preferred system fr scial netwrking will be maintained in adherence with the cmmunicatins plicy. Schl staff will ensure that in private use: N reference shuld be made in scial media t students / pupils, parents / carers r schl staff They d nt engage in nline discussin n persnal matters relating t members f the schl cmmunity Persnal pinins shuld nt be attributed t the schl /academy r lcal authrity Security settings n persnal scial media prfiles are regularly checked t minimise risk f lss f persnal infrmatin. Vide Cnferencing This schl Only use apprved Skype fr business (ffice 365.) CCTV We have CCTV in the schl as part f ur site surveillance fr staff and student safety. We will nt reveal any recrdings (retained by the Supprt Prvider fr 28 days), withut permissin except where disclsed t the Plice as part f a criminal investigatin. We use specialist lessn recrding equipment n ccasins as a tl t share best teaching practice. We d nt reveal any such recrdings utside f the staff and will nt use fr any ther purpses. T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

17 5. Data security: Management Infrmatin System access and Data transfer Strategic and peratinal practices At this schl: The Head Teacher is the Senir Infrmatin Risk Officer (SIRO). Staff are clear wh are the key cntact(s) fr key schl infrmatin (the Infrmatin Asset Owners) are. We have listed the infrmatin and infrmatin asset wners We ensure staff knw wh t reprt any incidents where data prtectin may have been cmprmised. All staff are DBS checked and recrds are held in ne central recrd. We ensure ALL the fllwing schl stakehlders sign an Acceptable Use Agreement frm. We have a system s we knw wh has signed. staff, gvernrs, pupils parents This makes clear staffs respnsibilities with regard t data security, passwrds and access. We fllw LA guidelines fr the transfer f any data, such as MIS data r reprts f children, t prfessinals wrking in the Lcal Authrity r their partners in Children's Services / Family Services, Health, Welfare and Scial Services. We require that any Prtect and Restricted material must be encrypted if the material is t be remved frm the schl and limit such data remval. / We have an apprved remte access slutin s staff can access sensitive and ther data frm hme, withut need t take data hme. Schl staff with access t setting-up usernames and passwrds fr , netwrk access and Learning Platfrm access are wrking within the apprved system and fllw the security prcesses required by thse systems. We ask staff t undertaken at least annual huse-keeping t review, remve and destry any digital materials and dcuments which need n lnger be stred. Technical Slutins We require staff t lg-ut r lck systems when leaving their cmputer. All laptps are encrypted incase any member f staff has t take any sensitive infrmatin ff site. We use the DfE S2S site t securely transfer CTF pupil data files t ther schls. We stre any Prtect and Restricted written material in lckable strage cabinets in a lckable strage area. All servers are in lckable lcatins and managed by DBS-checked staff. We lck any back-up tapes in a secure, fire-prf cabinet. Back-ups are encrypted. N back-up tapes leave the site n mbile devices. We cmply with the WEEE directive n equipment dispsal by using an apprved r recmmended dispsal cmpany fr dispsal f equipment where any prtected r restricted data has been held and get a certificate f secure deletin fr any server that nce cntained persnal data. T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

18 Prtable equipment laned by the schl (fr use by staff at hme), where used fr any prtected data, is dispsed f thrugh the same prcedure. Paper based sensitive infrmatin is shredded, using crss cut shredder / cllected by secure data dispsal service. Equipment and Digital Cntent Persnal mbile phnes and mbile devices Designated mbile use free areas are situated in the setting, and signs t this effect are t be displayed thrughut. The areas which shuld be cnsidered mst vulnerable include: tilets, bathrms and in sme settings - sleep areas and changing areas. Mbile phnes brught int schl are entirely at the staff member, student s & parents r visitrs wn risk. The Schl accepts n respnsibility fr the lss, theft r damage f any phne r hand held device brught int schl. Staff members may use their phnes during schl break times in staff nly areas. All visitrs are requested t keep their phnes n silent. The recrding, taking and sharing f images, vide and audi n any mbile phne is t be avided; except where it has been explicitly agreed therwise by the eadteacher. Such authrised use is t be mnitred and recrded. All mbile phne use is t be pen t scrutiny and the headteacher is t be able t withdraw r restrict authrisatin fr use at any time if it is t be deemed necessary. The Schl reserves the right t search the cntent f any mbile r handheld devices n the schl premises where there is a reasnable suspicin that it may cntain undesirable material, including thse which prmte prngraphy, vilence r bullying. Staff mbiles r hand held devices may be searched at any time as part f rutine mnitring. Where parents r students need t cntact each ther during the schl day, they shuld d s nly thrugh the Schl s telephne. Staff may use their phnes during break times in staff nly areas. If a staff member is expecting a persnal call they may leave their phne with the schl ffice t answer n their behalf, r seek specific permissins t use their phne at ther than their break times. Mbile phnes and persnally-wned devices will nt be used in any way during lessns r frmal schl time. They shuld be switched ff r silent at all times. Mbile phnes and persnally-wned mbile devices brught in t schl are the respnsibility f the device wner. The schl accepts n respnsibility fr the lss, theft r damage f persnallywned mbile phnes r mbile devices. Mbile phnes and persnally-wned devices are nt permitted t be used in certain areas within the schl site, e.g. changing rms and tilets. Mbile phnes will nt be used during lessns r frmal schl time unless as part f an apprved and directed curriculum-based activity with cnsent frm a member f staff. Persnal mbile phnes will nly be used during lessns with apprpriate permissin. N images r vides shuld be taken n mbile phnes r persnally-wned mbile devices withut the prir cnsent f the persn r peple cncerned. Students use f persnal devices T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

19 The Schl strngly advises that student mbile phnes shuld nt be brught int schl. The Schl accepts that there may be particular circumstances in which a parent wishes their child t have a mbile phne fr their wn safety. If this is the case, then the mbile shuld be handed in t the schl ffice at the start f the schl day and returned t the pupil at the end f the schl day. If a student breaches the schl plicy then the phne r device will be cnfiscated and will be held in a secure place in the schl ffice. Mbile phnes and devices will be released t parents r carers in accrdance with the schl plicy. Phnes and devices must nt be taken int examinatins. Students fund in pssessin f a mbile phne during an exam will be reprted t the apprpriate examining bdy. This may result in the student s withdrawal frm either that examinatin r all examinatins. If a student needs t cntact his r her parents r carers, they will be allwed t use a schl phne. Parents are advised nt t cntact their child via their mbile phne during the schl day, but t cntact the schl ffice. Students shuld prtect their phne numbers by nly giving them t trusted friends and family members. Students will be instructed in safe and apprpriate use f mbile phnes and persnallywned devices and will be made aware f bundaries and cnsequences. N students shuld bring his r her mbile phne r persnally-wned device int schl. Any device brught int schl will be cnfiscated. Staff use f persnal devices Staff are nt permitted t use their wn mbile phnes r devices fr cntacting children, yung peple r their families within r utside f the setting in a prfessinal capacity. Staff will be issued with a schl phne where cntact with students, parents r carers is required. Mbile Phnes and persnally-wned devices will be switched ff r switched t silent mde. If members f staff have an educatinal reasn t allw children t use mbile phnes r a persnally-wned device as part f an educatinal activity then it will nly take place when apprved by the senir leadership team. Staff shuld nt use persnally-wned devices, t take phts r vides f students and will nly use wrk-prvided equipment fr this purpse unless n trips ut f schl where a mbile phne can be used fr emergency and the schl ipad is t be used fr phts and vides. If a member f staff breaches the schl plicy then disciplinary actin may be taken. Digital images and vide In this schl: We gain parental / carer permissin fr use f digital phtgraphs r vide invlving their child as part f the schl agreement frm when their daughter / sn jins the schl; We d nt identify pupils in nline phtgraphic materials r include the full names f pupils in the credits f any published schl prduced vide materials / DVDs; Staff sign the schl s Acceptable Use Plicy and this includes a clause n the use f mbile phnes / persnal equipment fr taking pictures f pupils; T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.

20 If specific pupil phts (nt grup phts) are used n the schl web site, in the prspectus r in ther high prfile publicatins the schl will btain individual parental r pupil permissin fr its lng term use The schl blcks/filter access t scial netwrking sites r newsgrups unless there is a specific apprved educatinal purpse; Pupils are taught abut hw images can be manipulated in their esafety educatin prgramme and als taught t cnsider hw t publish fr a wide range f audiences which might include gvernrs, parents r yunger children as part f their Cmputing scheme f wrk; Pupils are advised t be very careful abut placing any persnal phts n any scial nline netwrk space. They are taught t understand the need t maintain privacy settings s as nt t make public, persnal infrmatin. Pupils are taught that they shuld nt pst images r vides f thers withut their permissin. We teach them abut the risks assciated with prviding infrmatin with images (including the name f the file), that reveals the identify f thers and their lcatin, such as huse number, street name r schl. We teach them abut the need t keep their data secure and what t d if they are subject t bullying r abuse. Asset dispsal Details f all schl-wned hardware will be recrded in a hardware inventry. Details f all schl-wned sftware will be recrded in a sftware inventry. All redundant equipment will be dispsed f thrugh an authrised agency. This will include a written receipt fr the item including an acceptance f respnsibility fr the destructin f any persnal data. All redundant equipment that may have held persnal data will have the strage media frensically wiped. Alternatively, if the strage media has failed, it will be physically destryed. The schl will nly use authrised cmpanies wh will supply a written guarantee that this will happen Dispsal f any equipment will cnfrm t The Waste Electrical and Electrnic Equipment Regulatins 2006 and/r The Waste Electrical and Electrnic Equipment (Amendment) Regulatins Further infrmatin can be fund n the Envirnment Agency website. T g further than I thught. T run faster than I hped. T reach higher than I dreamed. T becme the persn I need t be.