1. Introduction

At Cyber Rebels, safeguarding is at the heart of everything we do. We recognise our responsibility to protect the welfare of all children, young people, and vulnerable adults we work with — whether in person, online, or through digital learning environments.

We believe that everyone has the right to feel safe, respected, and supported, and that effective safeguarding is fundamental to responsible cybersecurity education. Our duty extends beyond compliance: it’s about creating secure spaces — both digital and physical — where learning, trust, and awareness can thrive.

2. Purpose of This Policy

This policy sets out how Cyber Rebels prevents and responds to concerns about abuse, exploitation, or neglect. It provides a framework for staff, contractors, and partners to identify, report, and manage safeguarding issues in line with current UK legislation and guidance.

3. Scope

This policy applies to all Cyber Rebels staff, trainers, contractors, associates, and partners. It covers all delivery formats, including on-site training, live online sessions, and digital resources, involving children, young people, or vulnerable adults.

4. Our Safeguarding Commitment

• Promoting the welfare, safety, and dignity of all participants.
• Maintaining an environment free from abuse, neglect, bullying, harassment, and discrimination.
• Responding swiftly and appropriately to safeguarding concerns or disclosures.
• Working in partnership with schools, employers, parents, and statutory agencies.
• Embedding Prevent Duty awareness and counter-extremism principles where relevant.
• Ensuring all staff understand and apply this policy in practice.

5. Roles and Responsibilities

Designated Safeguarding Lead (DSL): Andy Longhurst, Director of Training & Development — [email protected]

• Acts as the first point of contact for all safeguarding concerns.
• Maintains secure records and liaises with relevant authorities.
• Ensures all staff receive appropriate safeguarding and Prevent training.

All Staff, Trainers & Associates: Must recognise signs of concern, report immediately to the DSL, and complete annual safeguarding training.

6. Safer Recruitment

• Enhanced DBS checks for anyone working directly with children, young people, or vulnerable adults.
• Verification of identity, references, and qualifications.
• Safeguarding induction for all new trainers and staff.

7. Code of Conduct

• Treat all learners with respect and maintain professional boundaries.
• Use appropriate language and communication channels.
• Report any inappropriate or concerning behaviour immediately.
• Avoid one-to-one online contact unless pre-approved and logged.

8. Online & Digital Safeguarding

• Live sessions use secure, password-protected platforms.
• Access is restricted and attendance is monitored.
• Sessions are not recorded without prior consent.
• Trainers model safe digital behaviour and promote responsible online practices.

9. Recognising and Responding to Concerns

1. Listen carefully and reassure — do not promise confidentiality.
2. Record facts accurately.
3. Report immediately to the DSL using the internal safeguarding form.
4. The DSL decides next steps, which may include contacting statutory agencies.

10. Confidentiality and Record-Keeping

All safeguarding records are stored securely in compliance with UK GDPR. Information is shared only on a need-to-know basis.

11. Training and Awareness

All personnel complete safeguarding and Prevent Duty training appropriate to their role and refresh it annually. Updates are issued when legislation or guidance changes.

12. Working with Partners

• Cyber Rebels adheres to client safeguarding policies during joint delivery.
• Confirms staff DBS status before training begins.
• Reports any concerns to both Cyber Rebels’ DSL and the host organisation’s DSL.

13. Whistleblowing

Concerns about safeguarding practice or staff behaviour can be reported to the DSL, Director, or external agencies such as the NSPCC Whistleblowing Helpline (0800 028 0285). No one will face victimisation for reporting in good faith.

14. Monitoring & Review

This policy is reviewed annually or sooner if required by legislative or organisational change. Updates are approved by the Director of Training & Development.

15. Contact Details

Designated Safeguarding Lead (DSL): Andy Longhurst – [email protected]

Emergency: Call 999 if someone is in immediate danger.
NSPCC Helpline: 0808 800 5000

Youth Sessions – Data Protection and DPIA Assurance

Cyber Rebels Ltd is committed to protecting the privacy, safety, and wellbeing of all children and young people who take part in our cyber safety sessions. To support this commitment, we have completed a Data Protection Impact Assessment (DPIA) covering all youth-focused activities, including KS2 and KS3 school workshops, youth groups, and community-based sessions.

The assessment confirms that we only process minimal, non-sensitive information during these sessions and do not collect or store personal data about children unless explicitly agreed with the responsible organisation. All youth sessions are delivered with a responsible adult present at all times, and activities are designed to avoid the sharing of personal or identifying information. Any temporary data used during interactive exercises is securely deleted shortly afterwards.

The DPIA concludes that these sessions are low-risk, proportionate, and fully aligned with UK GDPR, safeguarding best practice, and the expectations of schools and youth organisations. A summary of this assessment is available upon request.

Our Safeguarding Promise

At Cyber Rebels, safeguarding isn’t an add-on — it’s part of our DNA. We believe digital empowerment and protection go hand in hand. By creating safe, inclusive, and supportive learning environments, we help every participant build stronger cyber resilience with confidence.