Changing Lives
Online Safety Policy
Approved by: Nicola Smith
Last reviewed on: September 2024
Next review due by: September 2025
1. Aims
Our school aims to:
- Have robust processes in place to ensure the online safety of pupils, staff and volunteers
- Identify and support groups of pupils that are potentially at greater risk of harm online than others
- Deliver an effective approach to online safety, which empowers us to protect and educate the whole school community in its use of technology, including mobile and smart technology (which we refer to as ‘mobile phones’)
- Establish clear mechanisms to identify, intervene and escalate an incident, where appropriate
The 4 key categories of risk
Our approach to online safety is based on addressing the following categories of risk:
- Content – being exposed to illegal, inappropriate or harmful content, such as pornography, fake news, racism, misogyny, self-harm, suicide, antisemitism, radicalisation and extremism
- Contact – being subjected to harmful online interaction with other users, such as peer-to-peer pressure, commercial advertising and adults posing as children or young adults with the intention to groom or exploit them for sexual, criminal, financial or other purposes
- Conduct – personal online behaviour that increases the likelihood of, or causes, harm, such as making, sending and receiving explicit images (e.g. consensual and non-consensual sharing of nudes and semi-nudes and/or pornography), sharing other explicit images and online bullying
- Commerce – risks such as online gambling, inappropriate advertising, phishing and/or financial scams
2. Legislation and guidance
This policy is based on the Department for Education’s (DfE’s) statutory safeguarding guidance, Keeping Children Safe in Education, and its advice for schools on:
- Teaching online safety in schools
- Preventing and tackling bullying and cyber-bullying: advice for headteachers and school staff
- Relationships and sex education
- Searching, screening and confiscation
It also refers to the DfE’s guidance on protecting children from radicalisation.
It reflects existing legislation, including but not limited to the Education Act 1996 (as amended), the Education and Inspections Act 2006 and the Equality Act 2010. In addition, it reflects the Education Act 2011, which has given teachers stronger powers to tackle cyber-bullying by, if necessary, searching for and deleting inappropriate images or files on pupils’ electronic devices where they believe there is a ‘good reason’ to do so.
3. Roles and responsibilities
3.1 The headteacher
The headteacher is responsible for ensuring that staff understand this policy, and that it is being implemented consistently throughout the school.
3.2 The designated safeguarding lead (DSL)
Details of the school’s DSL and deputies are set out in our child protection and safeguarding policy. The DSL takes lead responsibility for online safety in school, in particular:
- Supporting the headteacher in ensuring that staff understand this policy and that it is implemented consistently
- Working with the headteacher to review this policy annually
- Taking the lead on understanding the filtering and monitoring systems on school devices and networks
- Managing all online-safety issues and incidents in line with the school’s child protection policy
- Ensuring incidents of cyber-bullying are logged and dealt with appropriately
- Updating and delivering staff training on online safety
- Providing regular reports on online safety in school to the headteacher
- Undertaking annual risk assessments that reflect the risks children face
3.4 The ICT manager (Lansafe)
The ICT manager is responsible for:
- Maintaining appropriate filtering and monitoring systems
- Ensuring the school’s ICT systems are secure and protected against viruses and malware
- Conducting a fortnightly security check
- Blocking access to potentially dangerous sites and files
- Logging and dealing with online-safety incidents
3.5 All staff and volunteers
All staff, contractors, agency staff and volunteers are responsible for:
- Maintaining an understanding of this policy and implementing it consistently
- Adhering to the acceptable-use agreements
- Reporting filtering or monitoring concerns to Lansafe
- Ensuring cyber-bullying incidents are dealt with appropriately
3.6 Parents/carers
Parents/carers are expected to:
- Raise any concerns about this policy with the headteacher or DSL
- Ensure their child has read and agreed to the acceptable-use agreements
3.7 Visitors and the community
Visitors using the school’s ICT systems or internet will be made aware of, and expected to follow, this policy and accept the terms of acceptable use when relevant.
4. Educating pupils about online safety
Pupils will be taught about online safety as part of the curriculum:
- KS3: using technology safely, respectfully, responsibly and securely; recognising inappropriate content, contact and conduct
- KS4: understanding how changes in technology affect safety; how to report concerns
By the end of secondary school, pupils will know their rights and responsibilities online, the risks of sharing material, the impact of harmful content, how to identify and report harmful behaviours, and how consent works online.
The safe use of social media and the internet will also be covered in other subjects where relevant, and adapted for vulnerable children or those with SEND where necessary.
5. Educating parents/carers about online safety
The school will raise parents/carers’ awareness of internet safety through communications home, our website, parents’ evenings and this policy. Parents will be informed:
- What filtering and monitoring systems the school uses
- What their children are being asked to do online and who they interact with
Any queries or concerns should be raised with the headteacher or DSL.
6. Cyber-bullying
6.1 Definition
Cyber-bullying occurs online and is the repetitive, intentional harming of one person or group by another where there is an imbalance of power.
6.2 Preventing and addressing cyber-bullying
Pupils will be taught what cyber-bullying is, how to report it and its consequences. Staff receive training to support pupils and incidents are managed in line with the behaviour policy.
6.3 Examining electronic devices
The headteacher, or authorised staff, may search and, in exceptional cases, erase data on confiscated devices where there is a ‘good reason’. Searches follow DfE guidance on searching, screening and confiscation and UKCIS guidance on sharing nudes and semi-nudes.
6.4 Artificial intelligence (AI)
Generative AI tools can aid learning but also be used to bully (e.g. deepfakes). Any AI-related bullying will be dealt with under the anti-bullying and behaviour policy. Staff must assess risks when introducing new AI tools.
7. Acceptable use of the internet in school
All users must sign acceptable-use agreements. The internet is for educational or role-related purposes only. Usage is monitored and inappropriate sites are filtered.
8. Pupils using mobile devices in school
Students must hand in phones on arrival (returned at the end of the day). Sixth-formers may use phones only at breaks/lunch. Misuse will result in loss of this privilege.
9. Staff using work devices outside school
Staff must keep devices secure by:
- Using strong passwords and encryption
- Ensuring devices auto-lock when inactive
- Installing anti-virus software and system updates
- Not sharing devices with family or friends
Work devices may be used for work activities only.
10. How the school will respond to issues of misuse
Pupil misuse will be managed under the behaviour policy; staff misuse under disciplinary procedures. Serious or illegal incidents may be reported to the police.
11. Training
All new staff receive induction training on online safety. Annual refresher training covers spotting signs of online abuse and supporting pupils. The DSL and deputies undertake safeguarding training (including online safety) at least every two years and update their knowledge annually.
12. Monitoring arrangements
The DSL logs online-safety incidents. This policy is reviewed annually, informed by a risk assessment that reflects evolving technology and risks.
13. Links with other policies
This policy links to our:
- Child protection and safeguarding policy
- Behaviour policy
- Staff disciplinary procedures
- Data protection policy and privacy notices
- Complaints procedure
- ICT and internet acceptable-use policy
Appendix 1: KS3, KS4 and KS5 acceptable-use agreement (pupils and parents/carers)
Acceptable use of the school’s ICT systems and internet: agreement for pupils and parents/carers
Name of pupil: ____________________
When I use the school’s ICT systems and the internet in school I will:
- Use them responsibly and for educational purposes only
- Only use them when a teacher is present or has given permission
- Keep my usernames and passwords safe
- Keep personal information private and never share it without permission
- Tell a teacher immediately if I find upsetting or harmful material
- Log off or shut down when finished
I will not:
- Access inappropriate websites unless a teacher allows it for learning
- Open email attachments or follow links without checking with a teacher
- Use inappropriate language online
- Create, link to or post pornographic, offensive or obscene material
- Log in using someone else’s details
- Arrange to meet anyone offline without parental permission and adult supervision
If I bring a mobile phone or other device to school:
- I will not use it during lessons, tutor time, clubs or activities without permission
- I will not access inappropriate content or use inappropriate language
I understand the school will monitor my internet use and there will be consequences if I break these rules.
Signed (pupil): ____________________ Date: _____________
Parent/carer’s agreement: I agree that my child may use the school’s ICT systems and internet as supervised by staff, under the conditions above.
Signed (parent/carer): ____________________ Date: _____________
Appendix 2: Acceptable-use agreement (staff, volunteers and visitors)
Acceptable use of the school’s ICT facilities and internet
Name of staff member/volunteer/visitor: ____________________
When using the school’s ICT facilities and internet, I will not:
- Access, create or share inappropriate material (violent, criminal or pornographic)
- Do anything that could harm the school’s reputation
- Access social-networking sites or chat rooms
- Use improper language online
- Install unauthorised software or connect unauthorised devices
- Share my password or use someone else’s login
- Share confidential information without authorisation
- Access or modify data I am not authorised to use
- Promote a private business (unless directly related to the school)
I understand my internet use will be monitored. I will keep work devices secure and data protected, and will report any harmful material found.
Signed: ____________________ Date: _____________
Appendix 3: Online-safety training needs – self-audit for staff
Online-safety training needs audit
Name: ____________________ Date: _____________
| Question | Yes/No (comments) |
|---|---|
| Do you know who leads on online safety in school? | |
| Are you aware of ways pupils can abuse peers online? | |
| Do you know what to do if a pupil raises a concern? | |
| Are you familiar with the staff acceptable-use agreement? | |
| Are you familiar with the pupil acceptable-use agreement? | |
| Are you familiar with the school’s filtering and monitoring systems? | |
| Do you understand your role in filtering and monitoring? | |
| Do you change your password regularly? | |
| Are you familiar with the school’s approach to cyber-bullying? | |
| Do you require further training in any online-safety area? |