This seminar aims to enhance teachers’ foundational understanding of school cybersecurity and data privacy, and to strengthen their ability to respond effectively in everyday practice. Drawing on real cases of cyber attacks and data breaches in Hong Kong schools, the session explains why schools are also common targets for hackers, and dispels the misconception that smaller schools face lower risks. Using examples from teachers’ daily teaching and administrative work, the lecture outlines the key requirements of the Personal Data (Privacy) Ordinance, covering common situations such as the use of messaging applications, USB storage devices and the handling of assessment data. It also introduces emerging scam tactics associated with the rise of AI, including practical examples of deepfake technology, to raise awareness and vigilance. Through practical advice and clear guidance, the lecture supports teachers in handling student data more securely and responsibly.

Teachers’ Practical Roles in Handling Cyber Incidents
• Outlines teachers’ key responsibilities before and after an incident, reducing the risk of ineffective responses caused by misjudgement

Immediate Response Principles When Abnormalities Are Detected
• Explains the essential steps and reporting channels to follow when a cyber breach or data leakage is suspected

Post‑Incident Remedial Actions and Risk Mitigation
• Introduces the necessary follow‑up measures after an incident to minimise further impact and reduce the likelihood of recurrence

Building Sustainable Information Security Practices in Schools
• Encourages teachers to integrate information security and data privacy principles into their daily teaching and administrative workflows