01 | AI and generative tools
Identify approved use and risk
Identify where AI is being used, which tools are approved, what risks have been assessed, what staff and pupils are allowed to do, and how use is reviewed.
KCSIE 2026 draft guidance | Safeguarding, AI and digital safety governance
Turn KCSIE 2026 expectations into evidence-led action.
9ine helps schools move from policy documents and spreadsheets to a connected operating model for safeguarding, online safety, AI oversight, privacy, technology risk and governance evidence.
Built for schools
Safeguarding governance
Digital safety evidence
Privacy, AI and technology risk
KCSIE 2026 evidence challenge
KCSIE 2026 is not just a policy update. It is an evidence challenge.
The draft guidance points schools towards a more joined-up approach to safeguarding in a digital environment. Most schools already have policies. The harder question is whether they can evidence that those policies are working in practice.
02 | Online safety and digital harms
Evidence digital safeguarding
Evidence age-appropriate education and risk management around online safety, including AI-generated content, deepfakes, harmful content and digital contact risks.
03 | Filtering and monitoring
Review provision and ownership
Assign roles, review provision, evidence annual checks and demonstrate that filtering and monitoring arrangements support safeguarding without unnecessarily restricting teaching and learning.
04 | Data protection and information governance
Maintain privacy evidence
Maintain evidence of lawful processing, Records of Processing, DPIAs, retention, rights requests, incidents and vendor involvement.
05 | Cyber security and access management
Protect systems and information
Show that technology systems are being managed securely, with appropriate controls to protect children’s personal information and reduce safeguarding and data breach risk.
06 | Governor and leadership assurance
Report clearly to leaders
Provide senior leaders and governors with clear reporting on progress, risk, ownership, review status, training, incidents and outstanding actions.
Diamond
Formation
Formation
Academic
Technology
Privacy
Safeguarding
The Diamond Formation
Schools need a Diamond Formation to govern AI and digital safety properly.
AI and emerging technology cannot be governed by one person, one policy or one department. Academic opportunity, safeguarding risk, technical implementation and data protection all need to be considered together.
Academic
Ensures technology and AI support teaching, learning, assessment, workload and student agency.
Safeguarding
Identifies risks linked to online harms, child protection, digital safety, inappropriate content and harmful interactions.
Technology
Assesses implementation, access, configuration, monitoring, filtering, cyber security and operational controls.
Privacy
Reviews personal data, lawful processing, DPIAs, vendor due diligence, records of processing and data-sharing risks.
The Diamond Formation is not another committee for the sake of it. It is the operating model that helps schools turn strategy into action and policy into practical decision-making.
Further reading
Read more about why schools need a governance structure for AI →
Where 9ine fits
9ine gives your Diamond Formation the platform to work from.
The 9ine platform connects the people, workflows and evidence schools need to manage safeguarding, privacy, AI, vendor, application, contract and governance risk.
| Diamond Formation need | 9ine capability |
|---|---|
| Know what systems and AI tools are being used | Application Library Vendor Management |
| Assess safeguarding, AI, privacy and cyber risk | Vendor Management Privacy Governance |
| Guide staff on approved tools | Application Library |
| Evidence Records of Processing, DPIAs and retention | Privacy |
| Assign actions, risks, issues and reviews | Governance |
| Train staff in AI, privacy and cyber responsibilities | Academy LMS |
| Link technology use to contracts, renewals and cost | Contract |
| Report progress and risk to leaders and governors | Governance dashboards Reporting |
Why spreadsheets are not enough
KCSIE evidence cannot live across spreadsheets, inboxes and disconnected documents.
Schools may have policies, risk assessments, approved tools, contracts and incident records. The issue is whether all of this work is connected, owned, reviewed and ready for leadership assurance.
| Requirement | 9ine Platform | Spreadsheets | Disconnected tools |
|---|---|---|---|
| AI tool visibility and review | Approved tools and review workflow | Manual | Partial |
| Online safety and digital risk evidence | Structured digital risk evidence | Manual | Partial |
| Vendor risk across privacy, AI, safeguarding and cyber | Multi-lens vendor assessment | No | Partial |
| Records of Processing and DPIA workflows | ROPA and DPIA workflows | Manual | Partial |
| Filtering, monitoring and technology risk actions | Owners, actions and review dates | Manual | Partial |
| Staff training evidence | Training records and completion evidence | Manual | Partial |
| Governor-ready reporting | Dashboards and assurance reporting | No | Partial |
| Audit trail, owners and review dates | Controlled audit trail | Manual | Partial |
How it works
From draft guidance to operational evidence.
A practical route from reviewing the draft changes to creating a cross-functional operating model, platform workflows and leadership-ready assurance.
01
Map your KCSIE 2026 exposure
Review the relevant areas of draft guidance and identify where safeguarding, AI, digital safety, privacy, cyber and governance evidence needs strengthening.
02
Build your Diamond Formation
Define roles, responsibilities, reporting cadence and escalation routes across academic, safeguarding, technology and privacy teams.
03
Configure the platform
Set up the right modules, workflows, registers, dashboards and evidence structures for your school.
04
Assess your environment
Review vendors, AI-enabled systems, approved applications, data processing, risks, contracts and training needs.
05
Report with confidence
Give senior leaders and governors clearer evidence of progress, risk, ownership, decisions and outstanding actions.
Prepare with evidence, not guesswork
Prepare for KCSIE 2026 with evidence, not guesswork.
Book a 30-minute walkthrough to see how 9ine helps schools operationalise the Diamond Formation and manage KCSIE-related evidence across safeguarding, AI, digital safety, privacy, technology and governance.
Please complete the form below to request your walkthrough.
