The Link School E-safety Policy Scope

• School based ICT systems and equipment
• School based intranet and networking
• School related external Internet, including but not exclusively, extranet, e-learning platforms, blogs, social media websites 3
• External access to internal school networking, such as webmail, network access, file-serving (document folders) and printing.
• School ICT equipment off-site, for example staff laptops, digital cameras, mobile phones, tablets
• Pupil and staff personal ICT equipment when used in school and which makes use of school networking, file-serving or Internet facilities.
• Tablets, mobile phones, devices and laptops when used on the school site.

Managing Information Systems

Securely maintaining information It is important to review the security of the whole system from user to Internet. This is a major responsibility that includes not only the delivery of essential learning services but also the personal safety of staff and learners Local Area

Network (LAN) security issues include:

• Users must act reasonably — e.g. the downloading of large files during the working day will affect the service that others receive.
• Users must take responsibility for their network use. For Link School staff, flouting electronic use policy is regarded as a reason for dismissal.
• Workstations should be secured against user mistakes and deliberate actions.
• Servers must be located securely and physical access restricted.
• The server operating system must be secured and kept up to date; through regular monthly patching
• Virus protection for the whole network must be installed and current.

Wide Area Network (WAN) security issues include:

• Users must act reasonably — e.g. the downloading of large files during the working day will affect the service that others receive.
• Users must take responsibility for their network use. For Link School staff, flouting electronic use policy is regarded as a reason for dismissal.
• Workstations should be secured against user mistakes and deliberate actions.
• Servers must be located securely and physical access restricted.
• The server operating system must be secured and kept up to date; through regular monthly patching
• Virus protection for the whole network must be installed and current. Wide Area Network (WAN) security issues include:
• Link School broadband firewalls are configured to prevent unauthorised access between schools.
• Decisions on WAN security are made on a partnership between partner organisations.

Filter Management.

• The school’s broadband access provides filtering appropriate to the age and maturity of learners. There is flexibility in the filtering system to allow for changes in provision depending on the learning required.
• A description of the filtering service should be shared with the school (Infrastructure).
• Any breaches in filtering should be reported to the ICT Support and/or emailed to the director of finance and premises at: info@readerschool.co.uk
• If staff or learners discover unsuitable sites, the URL will be reported to the Data and assessment manager who will then record the incident and escalate the concern as appropriate.
• The School filtering system will block all sites on the Internet Watch Foundation (IWF) list.
• Changes to the school filtering policy will be risk assessed by staff with educational and technical experience prior to any changes and where appropriate with consent from the Senior Leadership Team.
• The School Senior Leadership Team will ensure that regular checks are made to ensure that the filtering methods selected are effective.
• Any material that the school believes is illegal will be reported to appropriate agencies.
• The academy’s access strategy will be designed by educators to suit the age and curriculum requirements of the learners, with advice from network managers.

Monitoring the e-safety policy:

The e-safety policy will be actively monitored and evaluated by an e-safety committee. This committee will comprise:

• E-safety Coordinator/Officer (Ricky Ingram)
• Designated Safeguarding Officer (Mohammod Mohsin Bhuiyan)
• Teaching Staff (TBC)
• External IT contractors – (Visual Group)
• Governor(s) (Local Government)

In the event of an e-safety incident, the following people will be informed within school (School e-safety Coordinator, Head Teacher, Designated Person.)

E-safety policy review and evaluation schedule:

• The e-safety policy and Acceptable Use Policy are reviewed at or prior to the start of each academic year. Additionally, the policy will be reviewed promptly upon:
• Serious and/or frequent breaches of the acceptable Internet use policy or other in the light of e-safety incidents.
• New guidance by government / LA / safeguarding authorities.
• Significant changes in technology as used by the school or pupils in the wider community.
• E-safety incidents in the community or local schools which might impact on the school community.
• Advice from the Police and/or the local operational area Safeguarding Partnership.
• The e-safety policy review will be documented in the school development plan and school self-evaluation and improvement profiling.
• The Management Committee will receive a report on the progress, evaluation, impact and this report will include suitably redacted accounts and statistics of e-safety incidents and how these have been resolved, and counter measures implemented.

School Management and e-safety

• School senior leadership team is responsible for determining, evaluating and reviewing e- safety policies to encompass teaching and learning, use of school IT equipment and facilities 5 by pupils, staff and visitors, and the agreed criteria for acceptable use by pupils, school staff and governors of Internet capable equipment for school related purposes or in situations which will impact on the reputation of the school.
• The e-safety policy is a result of a continuous cycle of evaluation and review based on new initiatives, and partnership discussion with stakeholders and outside organisations; technological and Internet developments, current government guidance and school related e-safety incidents. The policy development cycle develops good practice within the teaching curriculum and wider pastoral curriculum. Regular assessment of strengths and weaknesses help determine inset provision for staff and governors and guidance provided to parents, pupils and local partnerships.
• e-safety provision is always designed to encourage positive behaviours and practical real world strategies for all members of the school and wider school community.
• The leadership team is encouraged to be aspirational and innovative in developing strategies for e-safety provision.

The school e-safety Coordinator:

The school has a designated e-safety Coordinator [Ricky Ingram] who reports to the SLT and Governors and coordinates e-safety provision across the school and wider school community. The committee liaises with SLT, the schools designated safeguarding officer and other senior managers as required.

• The school’s e-safety coordinator chairs the school e-safety committee which includes representatives of the school SLT (service level agreement) , teaching and support staff and governors.
• The school e-safety committee meets regularly.
• The school e-safety coordinator is responsible for e-safety issues on a day to day basis and also liaises with LA contacts, filtering and website providers and school ICT support.
• The school e-safety coordinator maintains a log of submitted e-safety reports and incidents.
• The school e-safety coordinator audits and assesses inset requirements for staff, support staff and Governor e-safety training, and ensures that all staff are aware of their responsibilities and the school’s e-safety procedures. The coordinator is also the first port of call for staff requiring advice on e-safety matters.
• Although all staff are responsible for upholding the school e-safety policy and safer Internet practice, the e-safety Coordinator, the Head Teacher, Heads of School and ICT support are responsible for monitoring Internet usage by pupils and staff, and on school machines, such as laptops, used off-site.
• The e-safety Coordinator is responsible for promoting best practice in e-safety within the wider school community, including providing and being a source of information for parents and partner stakeholders.
• The school e-safety coordinator (along with IT support ) should be involved in any risk assessment of new technologies, services or software to analyse any potential risks.

Governors’ responsibility for e-safety:

• At least one Governor is responsible for e-safety, and the school e-safety Coordinator will liaise directly with the Governor with regard to reports on e-safety effectiveness, incidents, monitoring, evaluation and developing and maintaining links with local stakeholders and the 6 wider school community. The e-safety coordinator will be responsible for auditing Governor e-safety training and inset requirements.

ICT support staff and external contractors:

• External ICT support staff and technicians are responsible for maintaining the school’s networking, IT infrastructure and hardware. They are aware of current thinking and trends in IT security and ensure that the school system, particularly file-sharing and access to the Internet is secure. They further ensure that all reasonable steps have been taken to ensure that systems are not open to abuse or unauthorised external access, with particular regard to external logins.
• Support staff maintain and enforce the school’s password policy.
• External contractors, such as website designers/hosts/maintenance contractors are made fully aware of and agree to the school’s e-safety Policy. Where contractors have access to sensitive school information and material covered by the Data Protection Act, for example on school website or email provision, the contractor should also be DBS/local government authorised agency checked. A Service Level Agreement (SLA) is in place with the Local Authority to provide school standard provision and support.

Teaching and teaching support staff:

• Teaching and teaching support staff need to ensure that they are aware of the current school e-safety policy, practices and associated procedures for reporting e-safety incidents.
• Teaching and teaching support staff will be provided with e-safety induction as part of the overall staff induction procedures.
• All staff need to ensure that they have read, understood and signed (thereby indicating an agreement) the Acceptable Use Agreement relevant to school website.
• All staff need to follow the school’s social media policy, in regard to external off site use, possible contractual obligations, and conduct on Internet school messaging or communication platforms, for example email, and the school website.
• All teaching staff need to rigorously monitor pupil Internet and computer usage in line with the policy. This also includes the use of personal technology such as cameras, phones and other gadgets on the school website.
• Teaching staff should promote best practice regarding avoiding copyright infringement and plagiarism.
• Be aware of online propaganda and help pupils with critical evaluation of online materials.
• Internet usage and suggested websites should be pre-vetted and documented in lesson planning.

Staff Use of Personal Devices

• Staff are not permitted to use their own personal phones or devices for contacting children, young people and their families within or outside of the setting in a professional capacity.
• Staff will be issued with a school phone where contact with learners or parents/carers is required.
• Mobile Phone and devices will be switched off or switched to ‘silent’ mode, Bluetooth communication should be “hidden” or switched off and mobile phones or devices will not be used during teaching periods unless permission has been given by a member of Senior Leadership Team in emergency circumstances.
• If members of staff have an educational reason to allow children to use mobile phones or personal device as part of an educational activity then it will only take place when approved by the Senior Leadership Team.
• Staff should not use personal devices such as mobile phones or cameras to take photos or videos of learners and will only use work-provided equipment for this purpose.
• If a member of staff breaches the academy policy then disciplinary action may be taken.

Designated Safeguarding Officer:

Acting ‘in loco parentis’ and liaising with websites and social media platforms such as Twitter, Instagram, Snapchat and Facebook to remove instances of illegal material or cyber bullying.

• The Designated Safeguarding Officer is trained in specific e-safety issues. Accredited training with reference to child protection issues has been accessed.
• The Designated Safeguarding Officer can differentiate which e-safety incidents are required to be
  • local Police, Local Safeguarding Children’s Board, social services and parents/guardians; and also determine whether the information from such an incident should be restricted to nominated members of the leadership team.
  • Possible scenarios might include:
    • Allegations against members of staff.
    • Computer crime – for example hacking of school systems.
    • Allegations or evidence of ‘grooming’.
    • Allegations or evidence of cyber bullying in the form of threats of violence, harassment or a malicious communication.
    • Producing and sharing of Youth Produced Sexual Imagery (YPSI)

Acting ‘in loco parentis’ and liaising with websites and social media platforms such as Twitter, Instagram, Snapchat and Facebook to remove instances of illegal material or cyber bullying.

Pupils:

• Are required to use school website and computer systems in agreement with the terms specified in the school Acceptable Use Policies. Pupils are expected to sign the policy to indicate agreement, and/or have their parents/guardians sign on their behalf.
• Pupils/parent need to be aware of how to report e-safety incidents in school, and how to use external reporting facilities.
• Pupils/parent need to be aware that school Acceptable Use Policies cover school website.
• Pupils need to be aware that their Internet use out of school on social networking sites such as Instagram is covered under the Acceptable Use Policy if it impacts on the school and/or its staff and pupils in terms of cyber bullying, reputation, or illegal activities.

Learners Use of Personal Devices

• Phones and devices must not be taken into examinations. Learners found in possession of a mobile phone during an exam will be reported to the appropriate examining body. This may result in the student’s withdrawal from either that examination or all examinations.

Parents and Guardians:

• It is hoped that parents and guardians will support the school’s stance on promoting good Internet behaviour and responsible use of IT equipment and mobile technologies both at home.
• The school expects parents and guardians to sign the school’s Acceptable Use Agreement, indicating agreement regarding their child’s use and also their own use with regard to parental access to school systems such as extranets, websites, forums, social media, online reporting arrangement, questionnaires.
• The school will provide opportunities to educate parents with regard to e-safety through the school website.

Policy guidance for handling personal data, dealing with freedom of information requests, and complying with privacy regulations pertaining to website data:

All of these areas are regulated by the Information Commissioner (ICO), and every UK organisation has to comply with the responsibilities and obligations as defined by the ICO. Schools are no different to any other organisation in this regard. The ICO guidance on how to comply with these obligations is updated regularly. The Reader School refer directly to in these areas.

Use of IT facilities for curriculum teaching and learning:

Use of the Internet and IT facilities should be clearly planned prior to the activity. Websites and software Apps should be suggested, Students should be trusted to be responsible when researching the Internet, and teaching staff will consider the age and maturity of the students.

General Data Data Protection and e-safety:

The GDPR sets out the key principles that all personal data must be processed in line with.

• Data must be: processed lawfully, fairly and transparently; collected for specific, explicit and legitimate purposes; limited to what is necessary for the purposes for which it is processed; accurate and kept up to date; held securely; only retained for as long as is necessary for the reasons it was collected
  There are also stronger rights for individuals regarding their own data.
• The individual’s rights include: to be informed about how their data is used, to have access to their data, to rectify incorrect information, to have their data erased, to restrict how their data is used, to move their data from one organisation to another, and to object to their data being used at all.
• The General Data Protection Act is relevant to e-safety since it impacts on the way in which personal information should be secured on school networks, computers and storage devices; and the security required for accessing, in order to prevent unauthorised access and dissemination of personal material.
• Staff need to ensure that care is taken to ensure the safety and security of personal data regarding all of the school population and external stakeholders, particularly, but not exclusively: pupils, parents, staff and external agencies. Personal and sensitive information should only be sent by e-mail when on a secure network.
• Personal data should only be stored on secure devices. In other words, only computers, servers, file- servers, cloud space, or devices which require a user name and password to access the information.
• Secure accounts need to be logged off after use to prevent unauthorised access.
• Personal e-mails should not be used for school business.

Personal information on the school website:

• No material defined as ‘personal information’ under the General Data Protection Act will be used on the school website.
• The School considers staff privacy issues carefully with regard to publishing staff email addresses, staff lists, photos of staff, staff qualifications and any other personally identifying information.

Communications and acceptable use

The Reader school Ltd makes full use of ever developing communication technologies and appreciates that these technologies can enhance learning. E-safety and the Law:

This e safety policy takes cognizance of the following legislation;

The Education and Inspections Act 2006 (Head teachers have the power “to such an extent as is reasonable” to regulate the conduct of pupils off site. Also, staff can confiscate mobile phones if they cause disturbance in class breach the school behaviour policy.)

1. Computer Misuse Act 1990, sections 1-3
2. Data Protection Act 1998
3. General Data Protection Regulations
4. Freedom of Information Act 2000
5. Communications Act 2003 section 1,2
6. Protection from Harassment Act 1997
7. Regulation of Investigatory Powers Act 2000
8. Copyright, Designs and Patents Act 1988
9. Racial and Religious Hatred Act 2006 12
10. Protection of Children Act 1978
11. Sexual Offences Act 2003


Schools have a ‘duty of care’ to pupils, and as such act “in loco parentis.” Under the Children Act 1989, this enables schools to remove personal information, cyber bullying and comments relating to school pupils as if they were the child’s parent. Facebook in particular has provision for using ‘in loco parentis’ when reporting cyber bullying.

Useful links to external organisations:

• CEOP (Child Exploitation and Online Protection Centre): www.ceop.police.uk
• Childline: www.childline.org.uk
• Childnet: www.childnet.com
• Click Clever Click Safe Campaign: http://clickcleverclicksafe.direct.gov.uk
• Cybermentors: www.cybermentors.org.uk
• Digizen: www.digizen.org.uk
• EiS - ICT Support for Schools and ICT Security Advice: www.eiskent.co.uk
• Internet Watch Foundation (IWF): www.iwf.org.uk
• Police: In an emergency (a life is in danger or a crime in progress) dial 999. For other non-urgent enquiries contact local Police.
• Kidsmart: www.kidsmart.org.uk
• Teach Today: http://en.teachtoday.eu
• Think U Know website: www.thinkuknow.co.uk
• Virtual Global Taskforce — Report Abuse: www.virtualglobaltaskforce.com