This Applies to the use of all technology both college-owned and personal.
At the College we would like to give every student and member of staff the opportunity to use technology to support learning. We believe that technology and the use of the internet provides opportunities for learning, communication, creativity and freedom of expression. However, with advances in technology comes responsibility and the need for maturity. It is essential that all students and staff respect the privacy of others, protect their own online reputation and are aware that inappropriate use of technology can cause distress and harm to others and lead to anti-social behavior.
This is why we would like you to read and agree to the following AUP, to protect against and limit the likelihood of any harmful incident to you and others, and to help you make informed decisions, taking responsibility for your online ‘life’.
Scope of this Policy
This policy applies to all members of the College community, including staff, students, parents, and visitors. In this policy ‘staff’ includes teaching and non-teaching staff, governors, and regular volunteers (but access to systems is not intended in any way to imply an employment relationship). ‘Parents’ include, where applicable, students’ carers and those with parental responsibility. ‘Visitors’ includes anyone else who comes to the College, including occasional volunteers.
When using any personal device in College we would encourage all users to connect to the College filtered wireless network to access the internet. By using this you will have free WiFi, access to functions such as wireless printing and we will also be able to help protect you from inappropriate and potentially distressing content.
We recognise that there may be times when using personal devices (smart phone or tablet) that a 3G/4G/LTE internet connection is required; we therefore require all students and staff to agree to the following AUP to ensure that all users abide by a code of conduct when using technology responsibly and appropriately. Please be aware that we are unable to monitor this network and hence unable to help protect you from inappropriate and potentially distressing content.
When using the College network, personal mobile technology in College to access the internet via 3G/4G/ LTE, College WIFI, the Office 365 platform, Show My Homework or College owned devices, I agree to the following AUP:
Passwords protect the College’s network and computer system and are your responsibility. They should not be obvious (for example “password”, 123456, a family name or birthdays), and nor should they be the same as your widely-used personal passwords. You should not let anyone else know your password, nor keep a list of passwords where they may be accessed, and must change it immediately if it appears to be compromised. You should not attempt to gain unauthorised access to anyone else’s computer or to confidential information to which you do not have access rights.
Use of Property
Any property belonging to the College should be treated with respect and care, and used only in accordance with any training and policies provided. You must report any faults or breakages without delay to the ICT department.
Use of College systems
The provision of College email accounts, Wi-Fi and internet access is for official College business, administration and education. Staff and students should keep their personal, family and social lives separate from their school IT use and limit as far as possible any personal use of these accounts. Again, please be aware of the College’s right to monitor and access web history and email use.
Use of personal devices or accounts and working remotely
All official College business must be conducted on College systems, and it is not permissible to use personal email accounts for College business. Any use of personal devices for school purposes, and any removal of personal data or confidential information from College systems – by any means including email, printing, file transfer, cloud or (encrypted) memory stick – must be registered and approved by the ICT department.
Where permission is given for use of personal devices, these must be subject to appropriate safeguards in line with the College’s policies.
Monitoring and access
Staff, parents and students should be aware that school email and internet usage (including through school Wi-Fi) will be monitored for safeguarding, conduct and performance purposes, and both web history and school email accounts may be accessed by the College where necessary for a lawful purpose – including serious conduct or welfare concerns, extremism and the protection of others.
Any personal devices used by students, whether or not such use is permitted, may be confiscated and examined under such circumstances.
Compliance with related College policies
You will ensure that you comply with the College’s policies including the following policies Privacy, Online Safety, Retention schedules, Child Protection, Counter Bullying.
Retention of digital data
Staff and students must be aware that all emails sent or received on College systems are required to be routinely deleted and email accounts will be closed and the contents deleted when that person leaves the College. Important information that is necessary to be kept should be held on the relevant personnel or student file, not kept in personal folders, archives or inboxes. Hence it is the responsibility of each account user to ensure that important information (or indeed any personal information that they wish to keep, in line with College policy on personal use) is retained in the right place or, where applicable, provided to the right colleague. That way no important information should ever be lost as a result of the College’s email deletion protocol.
If you consider that reasons exist for the protocol not to apply, or need assistance in how to retain and appropriately archive data, please contact the ICT department.
The law requires the College to notify personal data breaches, if they are likely to cause harm, to the authorities and, in some cases, to those affected. A personal data breach is a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.
This will include almost any loss of, or compromise to, personal data held by the College regardless of whether the personal data falls into a third party’s hands. This would include:
The College must generally report personal data breaches to the Office of the Information Commissioner without undue delay (i.e. within 72 hours), and certainly if it presents a risk to individuals. In addition, controllers must notify individuals affected if that risk is high. In any event, the College must keep a record of any personal data breaches, regardless of whether we need to notify the Office of the Information Commissioner.
If either staff or students become aware of a suspected breach, they should contact the Bursar immediately.
Data breaches will happen to all organisations, but the College must take steps to ensure they are as rare and limited as possible and that, when they do happen, the worst effects are contained and mitigated. This requires the involvement and support of all staff and students. The College’s primary interest and responsibility is in protecting potential victims and having visibility of how effective its policies and training are. Accordingly, falling victim to a data breach, either by human error or malicious attack, will not always be the result of a serious conduct issue or breach of policy; but failure to report a breach will be a disciplinary offence.
Breaches of this policy
A deliberate breach of this policy will be dealt with as a disciplinary matter using the College’s usual procedures. In addition, a deliberate breach may result in the College restricting your access to College IT systems.
If you become aware of a breach of this policy or the Online Safety Policy, or you are concerned that a member of the College community is being harassed or harmed online you should report it to the Bursar. Reports will be treated in confidence.
I understand that the on-site use of technology, whether College owned or personal, or connection to the internet via the College network or through 3G/4G/LTE is a privilege and not an automatic right and may be withdrawn if misused.
I grant the College a right of inspection of my device if there is a cause for concern. All inspections will be carried-out by designated members of staff. I am entitled to insist that a parent/guardian is present throughout any inspection. If I refuse an inspection my access to technology and use of my mobile devices may be revoked. In the case of serious concern, a refusal may result in the involvement of external agencies including but not limited to the States of Jersey Police.
Withdrawal of consent
Contravening the terms of this agreement may result in withdrawal of consent to use the college network and the use personal device within College, in extreme cases, disciplinary action and/or the involvement of third-party agencies.