Leadership

It’s time we talk about cyber security in the Early Years

Here are your four top tips for keeping your data safe.
April 14, 2021
Reading time:
min.
a light bulb with the letter p inside it

a black and white image of two hearts

famly icon - piggy bank

a black and white image of two houses

setting

s

a black and white image of a bunny and a bottle

children

a black and white heart icon

With Famly since

In a rush? Here's the quick run-down.

• The UK's National Cyber Security Centre (NCSC) just published official guidance for best cyber security practices in the Early Years sector. That's important, because the sector's never gotten any specific guidance like this before.

• In this article, we'll talk about why cyber security is important for you, and give you some practical advice for keeping your data safe in your own Early Years setting.

• If you scroll to the bottom, you can get the National Cyber Security Centre's four biggest tips for cyber security in the Early Years. You can even download a PDF infographic, if you'd like to take these tips with you.

When you think ‘cyber security,’ you probably don’t think early education. 

And that’s the problem.

For most of us, cyber security might seem like the realm of Hollywood, or top-secret spies. Could you imagine James Bond on assignment at Playful Monkeys Preschool? I bet he’s terrible with children.

But when more and more of our lives involve a phone, laptop or tablet, we’ve all got to think twice about how we protect the data that goes through those devices. In your Early Years setting, you’re working with sensitive information like parents’ payment details, children’s medical records, and all sorts of private correspondences. 

That’s where cyber security comes into play.

Last month, the UK’s National Cyber Security Centre (NCSC) published their first-ever guidelines for cyber security within the Early Years sector. It’s the first time that a government has ever published such guidance specifically for the Early Years — so today, we’re going to talk about why it’s coming out now, and what it means for you and your daily practice in early education.


Why does cyber security matter for the Early Years sector?

When you stop to think about it, the day-to-day operations of your Early Years setting generate quite a bit of sensitive data. So much happens through a tablet, computer or smartphone, and just about everything you do — from collecting tuition payments to messaging a team member — gets documented on your devices.

Some of these digital receipts are pretty boring and commonplace. But some of them can be very sensitive, so we’ve got to take steps to keep that data protected.

Examples of these sensitive digital records might include:
  • Parent’s addresses, contact information and credit card details
  • Children’s immunization and medical records
  • Photos and videos of the children at your setting
  • Your payroll information, and your staff’s banking details
  • Private correspondences between you, your team and your families

In a more extreme scenario, there’s a chance that some cyber criminal might steal this data and hold it for ransom. But keeping these digital records safe is bigger than that. If you lost some of this information, it might make it impossible to run your setting like normal. Or, losing other details might jeopardize the trust of the families in your care.

It’s not so much that you as an Early Years practitioner are at particular risk. Rather, as the NCSC explains, it’s that pretty much everybody could stand to be safer about their data.

“Regardless of the size and nature of your setting, the information that you hold is of value to a criminal. And although they may not target your setting directly, it's all too easy to be damaged by scam emails that cyber criminals send out indiscriminately to millions of businesses,” the NCSC writes in their guidance document.

That’s why we’ve got to be proactive about cyber security, and think about all the ways we can keep ourselves covered.


Cyber security is more than just thwarting hackers

Before we get all wound up about shadowy criminals and digital crimes, it’s worth noting that there are a lot more everyday considerations to cyber security, too.

In a broader sense, cyber security is just about keeping your data safe. Short of a hacker attack, any number of things could happen that might cause sensitive data to fall into the wrong hands, or cause you to lose information you need to run your child care setting.

Some examples of these more commonplace cyber security concerns might include:
  • Losing a computer or tablet to water damage, or simply dropping it
  • Physical theft of mobile phones, tablets or computers
  • Accidentally downloading a harmful virus, even if it wasn’t specifically targeting your setting

Avoiding these threats comes down to being safe about how we store and secure our data, and being clever and cautious about avoiding things like email phishing scams.

If you’re running your child care setting without some sort of management software, it’s on you to ensure you’re handling your data safely and securely. This means protecting any sensitive data behind passwords, making regular backups of your digital records, and following your applicable personal privacy laws.

But child care management systems like Famly will take care of these steps for you. If you’d like to learn more about how Famly takes a lot of the guesswork out of cyber security, you can check out our security and privacy page right here.

The big ideas

The National Cyber Security Centre’s best advice for better cyber security in early education

As the National Cyber Security Centre emphasizes, it’s worth taking a moment to reflect on your cyber security measures at your own Early Years setting, even if you feel you’re not at risk. 

Just like you check to make sure your smoke alarms are in working order, it’s just another safety precaution you should take. Their guidance aims to reduce your likelihood of falling victim to cyber crimes, and recovering more quickly in the case of a serious data loss at your setting.

So what does the UK’s National Cyber Security Centre recommend you approach cyber security in early education? Let’s take a quick look at their four key pieces of advice, and how you can use them in your own setting.

If you’d like, you can read the NCSC’s full advice here, or you can download a PDF infographic here.

  1. Make sure you back up all your important data. What information or records are absolutely critical to running your setting? Make a list. Then, make regular backups of that data on an external hard drive, or by using a protected cloud storage service.
  2. Use passwords on all the digital devices at your setting. Switch on password protection (or other 'sign-in' options) Make sure that the devices in your setting (so laptops, PCs and tablets) require a password when you switch them on. This helps ensure that nobody can get access to all of your sensitive data without your permission. 
  3. Keep your devices’ security measures up to date. Often, software updates include new security measures that you won’t want to miss. You should enable  ‘automatic updates’ on your devices, as well as for any apps and antivirus software you use on a regular basis.
  4. Watch out for fishy emails. Does that email seem pushy or threatening, or does it ask you to download something unfamiliar? If it smells fishy, trust your gut. You can read more on avoiding email phishing scams right here.
download pdf
graphical user interface, text, application
Official Danish Government Reopening Advice

Guidance from the Danish Health Ministry, translated in full to English.

Picture of a Guidance document
UK Nursery Covid-19 Response Group Recommendations

The full recommendations from a working group of over 70 nursery chains in the UK.

Please note: here at Famly we love sharing creative activities for you to try with the children at your setting, but you know them best. Take the time to consider adaptions you might need to make so these activities are accessible and developmentally appropriate for the children you work with. Just as you ordinarily would, conduct risk assessments for your children and your setting before undertaking new activities, and ensure you and your staff are following your own health and safety guidelines.

Learn more about Famly

Find out below how Famly ensured the Tenderlinks team felt well-supported in managing their nursery, and see what we can do for you in a personal demo.