Papatoetoe Intermediate School > Cybersafety Policy ( DNN 3.1.0 )

Papatoetoe Intermediate School
Cybersafety Policy and Procedures

Contents Page
Cybersafety Policy 1
Management Procedure 3
Library and Information Centre Procedure 5
Publication of student images and work 7
Cybersafety officers (COs) 13
Cybersafety rules 15
Inappropriate use of communication technologies 16
Student Use Agreement 21
Policy and Use Agreement for Staff 23
Proposal to use social networking procedure 27

CYBERSAFETY POLICY

Rationale [NAG 1 Curriculum Delivery]
This policy is designed to meet the school’s statutory obligations to maintain a safe learning environment and to consult with the community. As well, the Board is aware of its responsibilities to be a good employer. The overall goal is to maximise the educational benefits of communication technologies while minimising the risks.

Use of the Internet and other communication technologies at Papatoetoe Intermediate School is to be limited to educational and personal usage appropriate in the school environment. Appropriate use also includes staff professional development.

‘Other communication technologies’ include the mobile phone and technologies associated with Internet use e.g. digital camera and web cam. Included, too, are similar technologies still being developed.

The communication technologies at Papatoetoe Intermediate School are available to staff and students under certain conditions, as outlined in their signed Use Agreements. The school will make basic training available for staff using these technologies. Associated professional development needs will be considered.

Appropriate cybersafety measures will be put in place and enforced by the school. In order to ensure the safety of the school learning environment, action should be taken if these safety regulations are breached by students or staff.

This Cybersafety Policy applies to all employees of the Board (i.e. teaching, support and ancillary staff) and to all students. It also applies to teacher and other professional trainees assigned to the school from time to time, relief teachers, and any others who may work in the school on a temporary or voluntary basis.

The Principal will report regularly to the Board on the school implementation of this Board policy.

Guidelines

1. All students must read and sign a Computing / Cybersafety Use Agreement outlining the regulations and conditions under which computers and communication technologies may be used while at school or in any way which affects the safety of the school learning environment. The agreement must also be signed by a parent/caregiver.
2. Students will be supervised while using school facilities; the degree and type of that supervision may vary, dependent on the type of technology concerned, where the equipment is physically situated and whether or not the activity is occurring in the classroom.
3. All staff must sign a Cybersafety Use Agreement which includes details of their professional responsibilities and the limits to their own use of the Internet.
4. Educational material on cybersafety will be provided by management to staff and students, and to parents/caregivers. As well, additional safety education will be delivered, where relevant, through teaching programmes.
5. Basic training for staff will be made available by management, as will appropriate professional development.
6. The necessary procedures will be put into place by the school to address cybersafety issues in all venues where the Internet and other communication technologies are accessed by staff or students.
7. The school will provide an effective electronic security system, which is financially practicable. The school will continue to refine methods to improve cybersafety.
8. The Principal will be responsible for the establishment and maintenance of a cybersafety programme in the school. (The Principal may well delegate that responsibility to a member of the Senior Management Team.)
9. The Board supports the right of the school to check communication technology-related work or data of staff or students at any time, and to carry out a comprehensive investigation of any breaches of the school’s Cybersafety policies. Such breaches will be taken seriously and be dealt with through the school’s disciplinary and support systems. In such incidents, there will be special attention paid to the need for specific procedures as regards the gathering of evidence. If illegal material or activities are suspected, the matter will be reported to the Police or the Department of Internal Affairs Censorship Compliance.
10. The school will consult with the wider school community and provide opportunities to learn about cybersafety issues e.g. through Parent Information Evenings.

Chairperson________________________________________________2007

Papatoetoe Intermediate School Cybersafety Management Procedure

The purpose of this Management Procedure is to complement Papatoetoe Intermediate School Board’s Cybersafety Policy by providing the necessary details to put into effect the Board’s policy. It should be read in conjunction with that Board policy. The overall goal is to maximise the educational benefits of communication technologies and minimise the risks.

This Management Procedure applies to all employees of the Board (i.e. teaching, support and ancillary staff) and all students. It also applies to teacher and other professional trainees assigned to the school from time to time, and any others who may work in the school on a temporary or voluntary basis.

Use of the Internet and other communication technologies at the school is at all times to be limited to educational and personal usage appropriate in the school environment. Appropriate use also includes staff professional development.

Where communication technologies are used in places other than specialised rooms, specific cybersafety procedures are required there as well; these should be documented and publicised appropriately .

The school reserves the right to check communication technology-related work or data of staff or students at any time, and to carry out a comprehensive investigation of any breaches of the school’s Cybersafety Policy. Breaches of the Cybersafety Policy will be treated seriously. Significant breaches could put at risk a student’s place at the school, or the employment of a staff member and may also involve reporting the incident to law enforcement. The maintenance of the physical and emotional safety of the learning environment is of paramount concern.

Details
1. A member of the Senior Management Team will be appointed by the Principal as the school’s Cybersafety Officer (CO). The CO will be responsible for leading the team of staff which includes: the ICT Manager, the Guidance Counsellor/Teacher and the Librarian. This team is charged with advising the Principal on the establishment and maintenance of the school’s cybersafety programme. This cybersafety programme will include the three components of (a) an infrastructure of appropriate policies, procedures and Use Agreements (b) an effective electronic security system and (c) a comprehensive cybersafety education programme for the school community.

The CO will be the main point of contact for all issues or incidents involving communication technologies in the school, and will report to the Principal.

2. On enrolment, all students must read and sign the Computing / Cybersafety Use Agreement. This Agreement outlines the regulations and conditions under which computers and communication technologies may be used at school or in any way which affects the safety of the school learning environment. This Use Agreement must also be signed by a parent/caregiver, and is to be handed in to the office where it will be filed for safe keeping. Classroom teachers can readily access the names of any students who do not have a signed Use Agreement on file via Integris. Such students are not permitted to access the relevant school technologies; their parents/caregivers should be informed of this situation.

Cybersafety rules and information will be given to the students to retain for future
reference. Additional educational information will be provided by the Cybersafety Team
e.g. posters.
.
3 At the commencement of their employment, all Board employees (teachers, support and ancillary staff, including the caretaker, gardener and such personnel as Teacher Trainees and Relief Teachers) must sign the Cybersafety Staff Use Agreement. For staff working with students, this Agreement includes details of their responsibilities to actively supervise/monitor student Internet use and report any breaches of the Cybersafety Policies to the school Cybersafety Officer. This agreement also informs staff of the limits to their own use of the Internet, and of privacy issues associated with confidential information on the school network. Accompanying cybersafety rules and information should be retained by staff for future reference.

4 As some Internet-accessible computers are in the care of syndicates, the Syndicate Leaders are responsible for ensuring cybersafety procedures are applied to their area.

5 Basic training for staff in cybersafety issues and procedures will be addressed by the Cybersafety Team, as will professional development requirements.

6. Any breaches of cybersafety regulations (by staff or students) should be reported to
the CO or member of the Cybersafety team.

If the matter appears to be serious, that report should be made immediately. If the CO is not available, the report should be made to another member of the Senior Management Team or directly to the Principal. The matter will then be dealt with according to the school’s usual disciplinary procedures (including the need to provide counselling and support), with a special focus on cybersafety issues. The latter could include the vital preservation of the evidentiary trail, appropriate documentation and external consultation. If illegal material or activities are suspected, law enforcement must be informed as soon as possible. In such a case, the Board would also be informed and legal advice would be sought as specified in the school’s Cybersafety Protocol for Incidents of Serious Misuse.

5. Classroom teachers should be aware of their responsibility to maintain cybersafety in their classroom. This will include reminding students of cybersafety rules before starting any unit of work involving use of the Internet or other communication technology, actively supervising student use and checking that the siting of Internet-accessible computers takes into account safety issues. Classroom teachers can help their students develop the skill base to effectively use the Internet as a learning tool. Appropriate preparation for lessons which make use of the Internet can prevent potential problems e.g. a list of suggested sites to visit can keep students on task and avoid conflicts with any filtering system.

6. Parents/caregivers will be consulted as part of the school’s cybersafety education programme, and offered the opportunity to learn more about cybersafety.

7. The school will endeavour to keep up to date on cybersafety issues as they impact on the safety of the school learning environment.

Papatoetoe Intermediate School
Library and Information Centre Cybersafety Procedure

The library/ICT room is an information centre and educational resource for both staff and students. Because of the important role it plays in supporting student learning, the provision of Internet access is part of its service to students. In line with the Board’s Cybersafety Policy, the Library/ICT room aims to provide this Internet access in a cybersafe environment.

Guidelines
1. The Internet will be available to students for educational purposes only as established in the Use Agreement.
2. Only students who have a signed Use Agreement on file may use the Library/ICT room Internet-accessible computers.
3. Any student wishing to use the Internet in the Library/ICT room must show a completed pass from their teacher to library staff. (See appendix 1) or book in at library with permission from library or duty staff.
4. Computers which are Internet-accessible will be sited so that they can be observed by staff.
5. A notice will be posted close to Internet-accessible computers, reminding students of the school cybersafety rules and that they require a pass.
6. Students must use their own login and password. They may not use anyone else’s or provide anyone else with their login and password details.
7. Although library staff will endeavour to keep an eye on Internet users, they have many other duties. At all times it is up to individual students to follow the school cybersafety rules they have agreed to.
8. Classroom teachers need to be aware that when they bring a class down to the Library it is their responsibility to supervise any Internet use by their students.
9. Class teachers can only send two pupils at a time with a pass during lesson time. If there is no Internet-accessible computer free, the students will be sent back to class immediately.
10. Any student who is found to have disobeyed cybersafety rules will immediately be reported to the school Cybersafety Officer or another member of the Cybersafety Team so that appropriate action can be taken promptly.
11. The TL will liaise with the Cybersafety Officer and Cybersafety Team over all matters pertaining to cybersafety in the library.
12. A copy of this Library Cybersafety Policy will be viewable by all members of staff.

Appendix 1

Library or ICT Room work pass

Name: Room: Date:

What resource are you using? What exactly are you using the resource to do? Be specific.
Word Excel
Power-point Publisher
 Library books
 Other (Write in the box)
If using Internet PTO

When? How long will be needed?
 Interval Block number:
Before school  Lunch

Teacher’s signature:

During lesson time only 2 people per room can have blue passes.

Procedure for the publication of student images and work

Purposes of publishing
From time to time, we will publish material for educational purposes, to share the results of learning within the school community, and to promote the school within the wider community. This may include examples of students’ schoolwork and images of students and groups of students in activities connected with the school.

The school uses a range of learning technologies to enhance student learning. These include electronic mail (email) and the Internet. Examples of work and images of students may include scanned, digital, or video images. These may be displayed on the school Internet website. In this document and the agreement signed by parents and students, publishing is understood to include the making public of work both by digital and older media.

There are three main reasons the school publishes student material (including online publishing):
• to educate the student in accordance with the national curriculum, including on the role and use of technology in society;
• to encourage the student to be part of and participate in the school community;
• to promote the school in the wider community.

Guidelines for Internet publication
The school will publish the material only on its own website and New Zealand based websites endorsed by the Ministry of Education. The school may also recommend that student work, or the whole school website, be available through Te Kete Ipurangi.
The school acknowledges, and parents and students should be aware that, it cannot control:
• Who accesses the websites on which students’ images or material is published
• The copying, by visitors to these websites, of images of the students and their work.
In recognition of this, the school takes steps to safeguard the privacy of the students and to comply with the Privacy Act 1993.

2. The school will identify students on the websites only by their first name and year at school. Students’ surnames, home addresses, and telephone numbers will not be available on the websites.

Copyright
Original material created by students is protected under the Copyright Act 1994. The students own the copyright in their own artistic and literary works. The school will not publish the works (including on the Internet) without authorisation in the form of a copyright licence from the students.

Given the age of the students, the school has decided that it will not publish any image of a student or work they have produced without the written permission of each student’s legal guardians. The school will immediately remove all material relating to a student from its website if requested by a legal guardian of the student.

School management of publishing
A student’s image and schoolwork may be chosen for publication if it meets the stated purposes of publication and if the school holds the consent of the parent to publish the student’s material. The material chosen must also meet the standards required for the school website. If the material is to be published on another website, then it must meet the publishing standards of that website.

All the student material published online and by other means will be subject to an editing process (including the correction of spelling and grammatical errors where appropriate).

The school will not publish material that may defame anyone, be objectionable from a human rights point of view, be obscene, or infringe the copyright of third parties (for example, the work must not contain substantial portions of another person’s copyright material without permission).

Permission sought by the school
The permission the school seeks is:
• authorisation to publish the student’s personal image or work (including online) as required by the Privacy Act, and
• a licence to publish any copyright work of the student online.

Disputes
The school has a procedure to resolve complaints or other disputes. This procedure is contained in its Complaints against staff members procedure.

Appendix 1
Parent permission
I ……………………………………………………[name of the parent/legal guardian] have read and understand Papatoetoe Intermediate School’s policy on the publication of student images and student work and the guidelines contained in the procedure.

As the parent or legal guardian of ……………………………………[full name of student] (“the Student”), I authorise Papatoetoe Intermediate School to publish (including online publishing) images of the Student, as well as any work that he or she may create at school, in strict compliance with the school’s procedure for the publication of student images and student work and the associated guidelines. I agree that this consent shall continue until I withdraw my consent by notice to the school or the student permanently leaves the school, whichever is sooner.
I confirm that I have the necessary authority to give this permission.

………………………………………………………………..
Signature of parent or legal guardian

Date:

Appendix 2:
Student summary of the procedure for the publication of student images and work.
The school publishes student material (including scanned, digital and video images that may be published online) in order to:
• educate students;
• encourage students to be part of and participate in the school community;
• promote the school in the wider community.

When publishing on the Internet, the school will publish the material only on its own website and New Zealand based websites endorsed by the Ministry of Education. Students will only be identified on the websites by their first name and year at school. The school cannot control who accesses these websites or copying from them.

Students own the copyright in their work. The school will not publish the works (including on the Internet) without permission in the form of a copyright licence from the students.

All the student material published online and by other means will be subject to an editing process (including the correction of spelling and grammatical errors where appropriate).

Student copyright license
I ........................................................................[full name of student] have read and understand the summary of Papatoetoe Intermediate School's Procedure for the online publication of student images and student work.

As the student whose work or image the school may publish (including online publishing), I authorise Papatoetoe Intermediate School to publish images of me, including on the Internet, as well as copies of any work that I may create at school, following the school’s procedure on the publication of student images and student work. I agree that this consent shall continue until I withdraw my consent by notice to the school or permanently leave the school, whichever is sooner.

.............................................................................................................
Signature of Student

Date:

Appendix 3
Dear Parent/Caregiver,

At Papatoetoe Intermediate School we highly value students’ work. From time to time, we will publish material for educational purposes, to share the results of learning within the school community, and to promote the school within the wider community. This may include examples of students’ schoolwork and images of students and groups of students in activities connected with the school. These may include scanned, digital, or video images and may be displayed on the school Internet website.

All the student material published online and by other means will be subject to an editing process (including the correction of spelling and grammatical errors where appropriate).

Students own the copyright in their work. The school will not publish the works (including on the Internet) without permission in the form of a copyright licence from the students.

The school seeks your authorisation to publish the student’s personal image or work (including online publication), as required by the Privacy Act, and a licence to publish any copyright work of the student online.

If you have further queries your child’s teacher has a copy of the school’s “Procedure for the publication of student images and work”.
Please could you sign and return the permission slip as soon as possible.
Thank you for your cooperation,

Yours

Parent authorisation for the publication
of student images and work.

I understand the letter asking for permission to publish my child’s work or image.
I authorise Papatoetoe Intermediate School to publish (including online publishing) images of the Student, as well as any work that he or she may create at school, in compliance with the school’s procedure for the publication of student images and student work.
I agree that this consent shall continue until I withdraw my consent by notice to the school or the student permanently leaves the school, whichever is sooner.

Signature of parent or legal guardian

Name of child

Date:

Information for cybersafety officers (COs)

The position of the CO
A comprehensive Board Cybersafety Policy is vital because under the National Administrative Guidelines (NAGS), boards of trustees have:
• a statutory obligation to provide a safe physical and emotional learning environment for students and to consult with the school’s community. These obligations underpin the need for a school cybersafety programme.
• a duty to provide a safe workplace for their employees.

The Principal, as chief executive, implements Board policies in the day-to-day administration and management of the school.

It is advisable for the Principal to delegate cybersafety management to a senior manager. This senior manager should have the authority and experience to
• lead the team which establishes and maintains a school-wide cybersafety programme,
• to make appropriate responses to policy breaches.

Although a cybersafety team is recommended, there should be one key contact person for all issues or problems with the Internet and associated communication technologies.

Guidelines and suggestions for establishing a cybersafe environment
1. Use Agreements for staff as well as students. The recommended rule is: ‘no signed agreement, no access’!
2. Electronic security, appropriate for the school.
3. Development of management protocols so that any incidents in which cybersafety rules are breached are responded to in an appropriate and consistent manner.
4.Staff professional development programme which addresses both the benefits and risks of communication technologies. Above all, staff should be made aware that they have professional responsibilities for student safety in this area.
5. A student cybersafety education programme. Eg
• Written information
• At the beginning of classes using the Internet and other communication technologies, students should be reminded of the safety rules,
• Issues of personal safety in cyberspace could be addressed through modules in Social Education, Health Education or Life Skills,
6. Parent Information Evening, attended by the Principal and the CO. A cybersafety expert could be invited as guest speaker and Board members could attend. This educational evening is also a way of facilitating consultation with the community which is a statutory obligation of the school.
7. Regular team meetings to discuss:
• incidents and issues reported
• compliance issues,
• emerging trends
• feedback there has been from staff, students and parents.
• on-going review of the programme,
etc
8. Regular meetings with the Principal, who can in turn report to the Board.

Cybersafety rules (For display in every room where there are computers).

1. No student or staff member may use the Internet until they have signed the Computer Use Agreement.

2. Teachers must remind students of the school Computer Use Agreement they signed, and that no use of the Internet other than the educational task given is to be made. There maybe serious penalties for breaching this Agreement.

3. A staff member must remain in the room and be actively supervising Internet use.

4. Teachers must set students a purpose for accessing the Internet. They should not just be “surfing.”

5. Inappropriate use must be reported immediately.

6. Relief teachers are not allowed to supervise lessons with Internet access unless there are special circumstances e.g. reliever has been a staff member or is a long-term reliever. In this case the reliever must have signed a Cybersafety Use Agreement.

7. Students must ask permission before printing.

Inappropriate use of communication technologies (desktop computers, Internet, laptop, mobile phones etc) Procedure.

Procedures:
The Cybersafety Team will decide and review what constitutes a breach at different levels. All incidents of inappropriate use should be reported. This includes accidental use or access to inappropriate/illegal material.

Students
Minor incidents Level 1
Some examples involving the Internet:
• Copying information into assignments and failing to acknowledge the source (plagiarism and copyright infringement)
• Downloading/accessing material or images not relevant to their studies (arcade style games etc).
• Misconduct associated with student logins e.g. giving/using someone else’s
• Not following basic school, departmental or classroom rules about safety procedures
• Sending innocuous “silly” emails to friends.

Action:
The teacher should remind and warn the student. (How has the Use Agreement broken? How should the student behave? Why is this important? What will be the consequences of the breach?)
Record in EARS folder. Report to Cybersafety officer if this becomes a persistent problem. Trends in student misuse of technology should be reported to CO/CS team so that they can create policies to deal with it.

More serious incidents
Level 2 examples
• Material and use inappropriate at school
This material, while not illegal or necessarily age-restricted, is not appropriate in the school environment and in the case of staff, not in keeping with the professional standards or code of ethics of those who work with children and young people. Examples include ‘soft core’ pornography, hate material, drug recipes, bomb designs, material which others find offensive (e.g. sexist jokes, cartoons), material which is used in low-level harassment, sending offensive unsolicited messages to individuals or groups.
Incidents could include deliberately accessing, printing, showing or sending inappropriate material. Distributing unsolicited (spam) mail to large groups of people.
Persistent low level breaches and low level breaches that are becoming a problem (such as printing of song lyrics) will be treated as “More serious”.

Action
Inform CO/CS team. and note in EARS.
CO/CS team interview student. Remind and warn. (How has the Use Agreement broken? How should the student behave? Why is this important? What will be the consequences of the breach?)
If it is decided that a breach is level 2 then the student will be put on syndicate detention and access to computers blocked for two weeks.
The teacher will be informed of actions taken and incident recorded in log.

Level 3 Examples
• Age-restricted material
More serious than material inappropriate at school is any involvement with age-restricted material. This material is illegal to show, give or sell to a person under a certain age (usually 16 or 18 years of age), as specified in the Films, Videos and Publications Classification Act 1993. An example is the R18 classified pornography available at video and magazine outlets, which, if shown to a young person under 18 years of age, could result in a large monetary fine.
• The use of these technologies by students to seriously harass another person – staff member or student – or to breach their right to privacy, is a threat to the physical and/or emotional safety of the victim.
• Hacking, virus attack, chronic truancy (which might be due to all night Internet use or day-time patronage of Internet cafés), gambling as part of Internet games, and even stalking (a particularly serious offence)

Action:
Report to CO/CS team (and record in EARS) who will refer to senior management if they deem it to be a level 3 breach. Access to computers will be blocked for as long as seen necessary. Teacher and parents will be informed of actions taken and incidents recorded in log. Repeated level 2 breaches may be treated as a level 3 breach.
Flagrant, intentional exhibiting of age-restricted material to a student under the specified age should be reported to the Department of Internal Affairs Censorship Compliance (DIA) 0800 257 887 or the Police, whether the alleged perpetrator is a student or a staff member. In the latter situation, the matter would be very serious for that person.

Extremely serious incidents Level 4
Examples
Material which is extremely inappropriate (as covered in Point 2) or with activities such as using communication technologies to facilitate serious stalking.
Material which is illegal (‘objectionable’). Illegal material is that deemed to be ‘objectionable’ under the Films, Videos and Publications Classification Act 1993. It includes child pornography and material that promotes or supports bestiality, rape, torture etc.

‘Objectionable’ material can be in text or images. A rough guide to help distinguish between inappropriate and ‘objectionable’ material is that if it can be purchased from a legitimate source, then it is not illegal (’objectionable’), and it will not be child pornography, bestiality and so on. If the school is in any doubt as to the classification the material falls under, the school should contact DIA for advice, or talk with the ISG. As schools know, it is always sensible to consult!

Action
Level 4 incidents reported to the CO will be referred immediately to the Principal. Suggested initial action by the Principal and/or Board Chair (depending on whether the alleged perpetrator is a student or a staff member). If involvement with illegal material is suspected, it is most important that certain procedures are followed to ensure the evidentiary trail is not compromised.

Full details on these protocols are contained in Further information on cybersafe computer networks on the kit’s CD, or can be accessed on www.netsafe.org.nz, in the ‘NetSafe Kits’ section. In brief, if involvement with such material is suspected, the ICT Manager, Principal or Board should under no circumstances conduct an investigation of their own, or bring in an outside ‘expert’ to do so. The DIA or the Police must be contacted immediately and their instructions about securing the evidence followed. No one but the DIA or the Police should touch the equipment! If a staff member appears to be involved, it would be wise to seek legal advice at this early stage.

If the offending material is on a computer it is important that the material is not downloaded, printed or emailed because doing so will be an offence if the material is illegal. Do not even send it to law enforcement. If at all possible, do absolutely nothing to the suspect computer or computers, including turning it/them on or off. It may well be necessary to shut down the whole network, but do not do this unless so instructed. Ensure everyone is kept away, and nothing is touched. If in any doubt about what to do, contact the Internet Safety Group, which could make enquiries on the school’s behalf and also be available for information on associated matters.

It is important that both the initial investigation and the follow-up are handled very carefully, as there could be significant legal ramifications for the school and its Board of Trustees. Legal advice should be sought, especially regarding what information should be given to the school community, including when, how and by whom. Schools should be prepared for media contact (again – what, when, how and by whom). Advice is needed about the disciplinary steps which are permissible while law enforcement agencies carry out investigations, and about the safety of students and staff. The school will most likely be under intense scrutiny by the community, educational authorities, media and the law enforcement agency dealing with the incident. Refer to Key components of a cybersafe learning environment, Point 5 (page 11).

The need for a review after an extremely serious incident
A review of all school cybersafety policies and procedures should take place as soon as possible. The Board would have ultimate responsibility, but would probably delegate to management the actual review process.
In addition to re-evaluating the three key components of the cybersafe learning environment, a school review would ensure that:
• A comprehensive debriefing occurs after the incident to maximise what can be learnt
• The ICT Manager has the professional skills to carry out regular safety checks, and knows what protocols to follow if suspect material is encountered or suspected
• The makeup of the cybersafety team includes all relevant staff expertise
• The school understands under what circumstances a forensic audit of computers should be carried out, and by whom
• The opportunity to access adequate guidance and support is offered to the perpetrators as well as the victims, and any others affected by what has occurred

It would be sensible for all schools to review such matters before the need to do so in such difficult circumstances. For further details, see Further information on cybersafe computer networks on the kit’s CD or the ‘NetSafe Kits’ section of www.netsafe.org.nz

Staff involvement in breaches of cybersafety rules.
In general, involvement of board employees in any level 3 or 4 activities would potentially be a most serious matter. There could be implications for the safety of students, fellow employees and the learning environment; also for the reputation of the school and the future of the staff member concerned. As well, the Board has an obligation to be a ‘good employer’ and maintain a safe working environment for all its employees.

Suggested response by the Cybersafety Officer and/or Principal
If age-restricted material is found schools could contact the DIA or the Police if a student has been flagrantly showing, giving or selling this age-restricted material to someone under the specified age. However, any such situation involving a staff member must be taken very seriously. If the nature of the material requires the matter to be reported to the DIA or the Police, then it is recommended the Principal/Board seek legal advice immediately about appropriate steps to be taken with the internal/external processes. If an external investigation does eventuate with the possibility of legal action by the authorities, this could impact on any internal disciplinary response. Thus it is important that the school seek legal advice as soon as possible. See also information under Point 3 of this section: ‘Suggested initial action by the Principal and/or Board Chair’.

Cases which involve inappropriate but legal material should be dealt with by the school and do not require DIA or Police involvement. Note that if evidence is contained within the school or confiscated equipment, it is advisable to consult a properly qualified independent computer forensic examiner, not an in-house ICT staff member or a contact in the IT industry. If the matter is disputed by the alleged offender in an internal disciplinary or employment tribunal, the integrity of the data, rather than its content, may be the issue in question.

An associated and very important issue is the need for follow-up counselling and support, for the offender(s) as well as the victim(s). In some cases, for example the wide dissemination of pornography, there could be the need for education and support for any students who were also affected by the incident. Harassment material in cyberspace, whether about a student or staff member, can potentially be accessed by millions of people and can never be retrieved. As well, depending on the content, the incident may constitute defamation.

The scale of global communication technologies adds an extra dimension of seriousness. Such activities are potentially a threat to the safe physical and emotional environment of the school and would be dealt with through the usual disciplinary system. Not only could there be a breach of the school’s Cybersafety Policy, but also of other school policies e.g. Harassment/Anti-bullying Policy, Sexual Harassment Policy, as well as laws relating to copyright. These activities could merit a response ranging from a warning through to dismissal of the staff member or suspension of the student, depending on the particular circumstances. As in all disciplinary incidents of this seriousness, a school is always careful to follow disciplinary protocols e.g. ensuring proper documentation and recording of information occurs, as well as offering appropriate counselling and support, and ensuring the parents/caregivers of students involved are kept fully informed of the matter.

Papatoetoe Intermediate School Cybersafety Student Use Agreement

Read this sheet carefully. Then keep it so you can read it later. That way you will not forget what it says.

These are the important rules I agree to follow:
1. I cannot use the Internet at school without signing and handing in this Use Agreement.
2. School computers are only to be used to help me with school work. They are not for play (for example arcade games or cartoons).
3. It is important to keep safe while using the Internet and e-mail. This means I must follow the school’s safety rules.
4. The only time I can use the Internet and e-mail at school is when a teacher is supervising me.
5. I am not allowed to try and look up things on the Internet which I know are not for children. This might be pornography, or information which is dangerous or against the law.
6. I must be sensible when using the Internet and other communication technologies. I know that I must not do anything that would hurt me or someone else, even as a joke.
7. I will use the email for school work and not to send messages which may offend or annoy others
8. I will not give anyone on the Internet information about myself or others without a teacher’s permission.
9. I will not interfere with other people’s work on the computers.
10. I will take care of equipment.
11. I will not waste resources and I will ask a teacher before printing.
12. If I come across any material that would not be allowed at school I will immediately remove it from the screen and tell the teacher right away without showing any other students.
13. I will be considerate of other users.
14. I will not try to use CDs or disks on the school computers.
15. I will not deliberately disrupt the computer or the school’s network.
16. I will not be involved in electronic vandalism, such as purposely introducing viruses.
17. I will tell a teacher if I come across any problem or if I am not feeling safe.
18. I will look after personal login information. I will not tell any other student my login details, borrow or lend others use of them or leave computers unattended while I am logged in.

The Principal and teachers decide what is inappropriate use.

I understand that if I break this agreement in any way I may lose the right to use the Internet and computers at school. As well, the school may tell my parent/caregiver and may also take disciplinary action against me.

Papatoetoe Intermediate Cybersafety Use Agreement

I have read the Papatoetoe Intermediate School Cybersafety Student Use Agreement, and I know what the school rules are about the use of computers, the Internet and other communication technologies. I know that if I break these rules there may be serious consequences:

• My parents/caregivers may be told.
• I may lose the right to use school computers and the Internet.
• The school may also take disciplinary action against me.

Name: ……………………………………………… Class: ……………………

Signature: ………………………………………… Date: …………………….

………………………………………………………………………………………………

Parents / Caregivers

I have read the Papatoetoe Intermediate School Cybersafety Student Use Agreement and understand that my child may not access the Internet at school without this Use Agreement being signed and returned to school. I also understand there may be serious consequences if the rules are broken. I have gone over the information with my child and explained its importance. I understand that if my child steals or damages equipment this could result in the home receiving a bill for the cost of replacement parts or repairs.

I understand that while the school will do its best to restrict student access to offensive, dangerous or illegal material on the Internet or other communication technologies, it is the responsibility of my child to have no involvement in such material or activities. I also understand this Agreement applies to communication technologies my child brings into the school environment.

I give my permission for …………………………………………… Room ……..
to be given access at school to computers, the Internet and other communication technologies.

Name: ……………………………………..

Signature Parent/Caregiver: ………………………………… Date: …………….

………………………………………………………………………………………………
Please return this to your teacher after it has been signed.

Papatoetoe Intermediate School Cybersafety Procedure and Use Agreement for Staff

General Procedure

Use of the Internet and other communication technologies at the school by staff or students is to be limited to educational and personal usage appropriate in the school environment. Appropriate use also includes staff professional development.

Staff need to be aware that any incident involving material which is deemed ‘objectionable’ under the Films, Videos and Publications Classification Act 1993 could constitute criminal misconduct necessitating the involvement of law enforcement. As well, involvement with any material which, while not illegal under the Act, is nonetheless detrimental to the safety of the school environment, may constitute professional misconduct serious enough to require disciplinary response by the school.

A Staff use

1. All staff must read and sign a staff Cybersafety Procedure and Use Agreement and return the Agreement portion of the document to the Cybersafety Officer. The Procedure pages should be retained for later reference.
2. All staff wishing to access the Internet on school equipment will be provided with an individual login user name and password. This needs to be kept confidential and not shared with anyone else; any illegal and/or inappropriate use of the computer facilities can be traced to the perpetrator by means of this login information.
3. Staff will be provided with individual Internet e-mail accounts.
4. Staff need to be aware of confidentiality and privacy issues when accessing student or staff information via the school network.
5. If a staff member ever wishes his/her own child to make use of the school Internet equipment, the same prohibition of misuse applies as for student use. In particular, note that the parent must be present at all times and is fully responsible for the conduct of his/her child, who would use the parent’s login.
6. If the Internet and other communication technologies (e.g. mobile phone) are used to facilitate misconduct such as harassment or involvement with inappropriate or illegal material, the matter will be taken very seriously by the school and could result in disciplinary action. Illegal material or activities will also necessitate the involvement of law enforcement.

B Staff responsibilities when using the Internet with students

1. Before ANY student can make use of the Internet:

• A Computing/Cybersafety Use Agreement (obtainable at enrolment or from the Cybersafety Officer) must be filled in and signed by both student and caregivers.
• This form should be returned to the school office where it will be processed and recorded on the computerised Pupil Files.
• As this permission form needs to be completed only once in a student’s time at school, office staff will on request print off a class list for staff so that it is clear which students do not yet have permission to use the Internet.
• UNDER NO CIRCUMSTANCES may a staff member permit a student to use the Internet unless that staff member has sighted official proof that the school has on record a Use Agreement signed by both the child and a parent/caregiver.
• It is the staff member’ s responsibility to ensure that this condition is met.

2. Staff who are not confident of their own Internet skills could request help via the ICT Manager.
3. The staff member must be in the room, remain there and actively supervise while the students are using the Internet. No students may be sent to a computer room unsupervised to use the Internet, in or out of class time.
4. Students should be regularly reminded of the contents of the Use Agreement they have signed and that there are can be serious penalties (including possible involvement of law enforcement) for significant breaches of this agreement.
5. Students need to be directed to places on the Internet, rather than be permitted to surf.
6. Students may access the Internet only when a staff member is in the room and aware of the activity. This includes use in places like the Library and ICT room as well as classrooms.
7. Inappropriate use of the Internet or any other communication technologies by a student must be reported immediately to the Cybersafety Officer or another member of the Cybersafety team if the CO is unavailable.

C School Website

This will be an on-going project. A number of important reasons exist for having a website, including providing information about the school and publishing student work.

D Monitoring

• Staff and students need to be aware that with the current systems set up to access the Internet, a record is kept of which sites are visited, how often and from which terminal.
• Filtering software will be deployed where appropriate to restrict access to certain sites.
• If deemed necessary, auditing of the school computer system could include all aspects of its use e.g. personal network storage folders and e-mail accounts.

E. Use of Social Networking (Including blogs, wikis and other online communities.)

Staff need to be aware that social networking is to be used with an educational purpose in mind.

At all times student safety and anonymity needs to be protected as specified by the Privacy Act (1993) and our school policies. (see Appendix)

A proposal to use social networking needs to be approved by the Cybersafety Officer/principal.
F Cybersafety Use Agreement for staff

Please fill in and sign the attached sheet regarding Student Safety, and your agreement to the school’ s Policy.

The sheet should be returned to the School’ s Cybersafety Officer (CO).

Papatoetoe Intermediate School Cybersafety Use Agreement for Staff

Student Safety (tick one)
 I have the appropriate knowledge to safely supervise student Internet use.
 I need training in basic Cybersafety issues before I supervise student Internet use.

I understood and agree to follow the attached Cybersafety Use Policy as it applies to use of Internet and other communication technologies by staff, and by students under the direction of staff.

Name:

Date: Signature:

Proposal to use social networking Procedure

Name(s) Class

Start date of project End date of project

What are you intending to do?

What is the educational purpose for doing this?

Are you aware of the relevant parts of the school Cybersafety and Student images on the Internet policies?

How will you ensure that student privacy is protected? (Eg passwords and use of pseudonyms).

If you are planning to incorporate student images:
• Have you checked that you have parental permission?
• How will you ensure that privacy is protected?

How will you educate your students about responsible and safe use of the social network?

What are you going to do with information on the social network after the project has finished?

Teacher’s signature and date

Principal’s signature and date

Signed copy sent to Cybersafety team