KCSIE 2026 is published. It comes into force on 1 September 2026.

Book a demo →
KCSIE 2026 is published | Safeguarding, AI and digital safety governance

KCSIE 2026 is published. See how the Diamond Formation puts it into practice.

The finalised guidance introduces major changes, including paragraph 171 on filtering and monitoring, that need academic, safeguarding, technology and privacy teams working together, not in isolation. Book a demo to see how the 9ine Platform brings your Diamond Formation together, with evidence ready for September.

See how the Diamond Formation works ↓

Complimentary access to the 9ine Platform. Test it out for yourself — just ask our team.

Book your KCSIE 2026 demo

No cost, no commitment.

Academic
Teaching & assessment
Safeguarding
Online harms & risk
Technology
Filtering & access
Privacy
Data & vendors
The Diamond Formation

Schools need a Diamond Formation to govern AI and digital safety properly.

AI and emerging technology cannot be governed by one person, one policy or one department. Academic opportunity, safeguarding risk, technical implementation and data protection all need to be considered together.

Academic

Ensures technology and AI support teaching, learning, assessment, workload and student agency.

Safeguarding

Identifies risks linked to online harms, child protection, digital safety and harmful interactions.

Technology

Assesses implementation, access, configuration, monitoring, filtering and cyber security.

Privacy

Reviews personal data, lawful processing, DPIAs, vendor due diligence and data-sharing risks.

The Diamond Formation is not another committee for the sake of it. It is the operating model that helps schools turn strategy into action and policy into practical decision-making.

KCSIE 2026 evidence challenge

KCSIE 2026 is not just a policy update. It is an evidence challenge.

The finalised guidance, in force from 1 September 2026, points schools towards a more joined-up approach to safeguarding in a digital environment. Most schools already have policies. The harder question is whether they can evidence that those policies are working in practice.

01 | AI and generative tools

Paragraphs 165–166 bring generative AI explicitly into the statutory framework. Identify where AI is being used, which tools are approved, what risks have been assessed, and how use is reviewed.

02 | Online safety and digital harms

Evidence age-appropriate education and risk management around online safety, including AI-generated content, deepfakes, harmful content and digital contact risks.

03 | Filtering and monitoring

Paragraph 171 now names who must lead the annual review: the SLT member responsible for filtering and monitoring, supported by the DSL and IT support. It also requires a formal record of checks on every internet-connected device.

04 | Data protection and information governance

Maintain evidence of lawful processing, Records of Processing, DPIAs, retention, rights requests, incidents and vendor involvement.

05 | Cyber security and access management

Show that technology systems are being managed securely, with appropriate controls to protect children's personal information and reduce safeguarding and data breach risk.

06 | Governor and leadership assurance

Provide senior leaders and governors with clear reporting on progress, risk, ownership, review status, training, incidents and outstanding actions.

See your Diamond Formation working together: Academic, Safeguarding, Technology and Privacy in one place.

A live walkthrough, not a sales pitch.

Book a demo →
Why spreadsheets are not enough

KCSIE evidence cannot live across spreadsheets, inboxes and disconnected documents.

Schools may have policies, risk assessments, approved tools, contracts and incident records. The issue is whether all of this work is connected, owned, reviewed and ready for leadership assurance.

Requirement9ine PlatformSpreadsheetsDisconnected tools
Paragraph 171 filtering & monitoring review Named owners, device checks, recordsManualPartial
AI tool visibility and review Approved tools and review workflowManualPartial
Vendor risk across privacy, AI, safeguarding and cyber Multi-lens vendor assessmentPartial
Records of Processing and DPIA workflows ROPA and DPIA workflowsManualPartial
Staff training evidence Training records and completion evidenceManualPartial
Governor-ready reporting Dashboards and assurance reportingPartial
How it works

From published guidance to operational evidence.

A practical route from reviewing the finalised requirements to a cross-functional operating model, platform workflows and leadership-ready assurance.

01

Map your exposure

Review the finalised KCSIE 2026 requirements and identify where evidence needs strengthening before September.

02

Build your Diamond Formation

Define roles, responsibilities, reporting cadence and escalation routes.

03

Configure the platform

Set up the right modules, workflows, registers and dashboards for your school.

04

Assess your environment

Review vendors, AI-enabled systems, applications, risks, contracts and training needs.

05

Report with confidence

Give senior leaders and governors clearer evidence of progress, risk and ownership.

What schools say

One operating model, felt across every part of the school.

Feedback from leaders working across the four areas of the Diamond Formation.

Academic
★★★★★

"Giving teachers agency has been the difference. We can now show how AI is genuinely supporting teaching and learning, not just point to a policy on a shelf, and that evidence has driven real buy-in from staff."

Head Teacher · Independent School · London, UK
Safeguarding
★★★★★

"For the first time, online safety, filtering and monitoring and our DSL's oversight all sit in one place. When governors ask us to evidence it, I can produce it in minutes rather than piecing it together from inboxes."

Designated Safeguarding Lead · All-Through School · North West England
Technology
★★★★★

"Paragraph 171 turned the annual review into a named responsibility. Having the checks, device records and owners tracked in one platform means nothing gets missed, and my team can focus on the work that actually matters."

Director of IT · Multi Academy Trust (MAT) · West Midlands
Privacy
★★★★★

"DPIAs, records of processing and vendor due diligence used to live across spreadsheets nobody trusted. Now it is connected, owned and reviewed. I feel ready for scrutiny rather than braced for it."

Data Protection Officer · Independent School · South East England

Prepare for KCSIE 2026 with evidence, not guesswork.

Book a demo to see how the 9ine Platform brings your Diamond Formation together, academic, safeguarding, technology and privacy, to manage KCSIE 2026 evidence, including paragraph 171, ahead of September.

Built around the Diamond Formation. One operating model, not four disconnected teams.

No cost, no commitment. The demo is free either way.

Ready before September. A full term to get evidence in place.

Book your KCSIE 2026 demo

No cost, no commitment.