These concerns are not unique to Jamaica. In Barbados, we operate under a comparably robust Data Protection Act, which similarly mandates the protection of personal information, particularly when it pertains to children. Under our legislation, data related to minors is classified as especially sensitive and must be handled with heightened security and strict compliance to legal and ethical standards.

With the increasing reliance on digital tools and online platforms—a shift that accelerated significantly during the COVID-19 pandemic—schools are now managing larger volumes of sensitive data than ever before. However, many institutions struggle with implementing adequate data protection measures, leaving them vulnerable to breaches, unauthorised access, and data misuse.

The article further highlighted several critical areas of concern, including:

• Inadequate cybersecurity infrastructure – Many schools lack robust security measures, making them susceptible to cyber threats such as hacking, phishing attacks, and ransomware.
• Absence of comprehensive data privacy policies – Without well-defined guidelines, schools may unknowingly mishandle personal information, increasing the risk of non-compliance with data protection laws.
• Limited awareness among educators and administrators – Many school officials are not adequately trained in data privacy best practices, leading to gaps in how information is collected, stored, and shared.
• Regulatory compliance challenges – Some institutions may be unaware of or fail to fully comply with existing data protection regulations, exposing students and staff to potential privacy violations.

One particular area of concern I have is the increased use of security cameras in schools without a clearly defined CCTV policy that outlines the purpose, use, storage, and oversight of the recorded footage. While surveillance can enhance security, the lack of a structured framework governing how these systems operate poses serious privacy risks. Without clear policies, those with access to CCTV footage may misuse it, leading to potential violations of student and staff privacy. Proper oversight is critical to ensure that security cameras serve their intended function—protecting school communities without infringing on personal privacy rights.

Experts and stakeholders cited in the article stressed the urgent need for proactive measures to close these gaps, including:

• Strengthening regulatory frameworks to ensure schools meet the highest standards of data security and compliance.
• Implementing mandatory training programmes for educators, administrators, and IT staff to enhance awareness and best practices in data privacy management.
• Developing clearer guidelines and policies to govern how student and staff data is collected, stored, and shared within the educational sector.
• Introducing CCTV policies that define where cameras are placed, who has access to footage, how long recordings are retained, and the measures in place to prevent unauthorised use.
• Launching public awareness campaigns to educate parents, teachers, and students on the importance of data protection and their rights under the law.

The piece concludes with calls for policy reforms and stronger enforcement mechanisms to ensure Jamaican schools align with international data privacy standards. Given the similarities between Jamaica’s and Barbados’ data protection landscapes, these issues are just as relevant in our jurisdiction. Schools across the region must take immediate and decisive action to safeguard the privacy and security of student data, ensuring that digital transformation does not come at the cost of fundamental rights and protections.