Laptop, desktop and tablet standards
Find out what standards your school or college should meet on laptops, desktops and tablets.
Having the right devices for students and staff will help support the digital technology strategy of the school or college.Ìý
Throughout these standards we refer to:Ìý
- Ìýlaptops, desktops and tablets as devicesÌý
- Ìýthe person in the senior leadership team (SLT) who is responsible for digital technology as the SLT digital lead (for more information on this role see our digital leadership and governance standards)Ìý
- in-house or third-party support as IT support
The job titles in these standards may not fit in a school or college’s educational setting, but the responsibilities described should be applied to the most relevant person.Ìý
You can also see more details on how to use the standards to help your school or college meet their digital technology needs.
Why this standard is importantÌýÌý
Providing devices that meet educational needs and support the digital technology strategy will help:Ìý
- curriculum planning and deliveryÌýÌý
- administration, including data and financial managementÌýÌý
- flexible and cross-site workingÌýÌý
Devices that are not suitable may:ÌýÌý
- lead to lost learning or disrupt day to day operationsÌý
- not be safe and secure Ìý
- need to be repaired and replaced more oftenÌýÌý
- cost more in the long runÌý ÌýÌýÌýÌý
Who needs to be involvedÌýÌý
The senior leadership team (SLT) digital lead should work with:Ìý
- other SLT members to make sure any decisions on devices fits with the school or college’s digital technology strategyÌý
- IT support to assess if devices meet the needs of students and staff, and identify any additional technical requirementsÌý
How to meet this standardÌý
To meet this standard, the SLT should follow this 3-step process to understand which devices are needed.Ìý
1. Create a digital technology strategyÌý
For more details, see our standards on digital leadership and governance.Ìý
2. Identify the device needs of students and staffÌý
The SLT digital lead should assess how devices will support the needs of students and staff, based on the school or college’s digital technology strategy.ÌýÌý
They should look at how devices are being used, including who uses them, where they are being kept and what they are being used for. This will help them identify:Ìý
- the number and type of devices neededÌý
- any specific physical requirements for devicesÌý
- the level of technical support neededÌý
- training requirements for students and staffÌý
3. Assess the security and technical requirements of the devicesÌýÌý
The SLT digital lead should work with IT support to assess the security and technical requirements of devices. This will help determine whether they need to buy new devices or if they can repurpose existing ones.Ìý
When to meet this standardÌý
This standard should be met when the SLT review the use of laptops, desktops and tablets, or buy new devices.Ìý
Related standardsÌý
The following standards should also be considered when reviewing your use of laptops, desktops and tablets: ÌýÌýÌý
Why this standard is importantÌý
Keeping devices safe and secure will protect those who use them, the network and the data on them. This will:Ìý
- make it easier to apply security and safeguarding policies to each deviceÌý
- minimise the risk of cyber security incidents and data breachesÌý
The risks of not doing this include:Ìý
- students accessing harmful or inappropriate materialÌý
- lost learning due to cyber incidents or data breachesÌý
- difficulty managing safeguardingÌýÌý
- loss of public confidence and reputational damageÌý
Who needs to be involvedÌý
To meet this standard, the SLT digital lead should make sure all devices are centrally managed and meet the needs of those using them.Ìý
IT support should check all devices are configured securely. They should also work with the designated safeguarding lead to review the filtering and monitoring requirements of the devices.Ìý
The data protection officer should also be involved, when reviewing data security.ÌýÌý ÌýÌý
How to meet this standardÌý
To meet this standard, the SLT digital lead should protect all devices against the risk of data breaches, and cyber security and safeguarding incidents.ÌýÌý
To do this, IT support should work with the designated safeguarding lead to check and confirm all devices meet the Keeping children safe in education (KCSIE) requirements for:Ìý
- information security and access managementÌý
- filtering and monitoringÌý
All new devices must be compatible with existing filtering, monitoring and security systems.ÌýÌýÌý
If any existing devices are not compatible with existing filtering, monitoring and security systems, you should look to alternative solutions before using the device.Ìý
Filtering and monitoring, and cyber security for all devices must be reviewed regularly.
For more details see the standard topics:ÌýÌý
- Filtering and monitoring standards for schools and collegesÌý
- Cyber security standards for schools and collegesÌý
Configuring devices securelyÌý
IT support should also check all devices are configured securely:Ìý
- with a protective firewall on the network or device Ìý
- by using virtual area local networks (VLANs) which add separate layers of protection on the network between different types of devices and usersÌý
- with managed anti-virus and anti-malware softwareÌý
- with enterprise or education-grade operating systems, including support and up-to-date security patchesÌý
- with labels or tags to keep track of them when you buy them and add them in an asset register Ìý
- with accessibility features that are not blocked by security policiesÌý
For further support, the National Cyber Security Centre (NCSC) has published Ìý
Centrally managing devices for greater securityÌý
Devices should be centrally managed by IT support. This includes:Ìý
- making sure security and safeguarding policies are applied consistentlyÌý
- updating and applying security patches to software and applicationsÌý
- recording up-to-date information about the device in the asset registerÌý
- restricting and monitoring access to browsers by making changes to the technical policies and settings set on core systemsÌý
Mobile and portable devices should have mobile device management to minimise safeguarding and security risks. This means IT support can remotely manage devices, including:ÌýÌý
- locking or wiping themÌýÌý
- securing apps and softwareÌý
Carrying out a data protection impact assessmentÌý
The data protection officer should support the creation of a data protection impact assessment (DPIA) for all existing devices and whenever new ones are bought. This assesses the risk:Ìý
- to personal or sensitive dataÌý
- of taking school or college owned devices offsiteÌý
- of bring your own device strategies, making sure they comply with security and safeguarding requirementsÌý
When to meet this standardÌýÌý
This standard should be met now for all laptops, desktops and tablets currently used.Ìý
Related standardsÌý
When disposing of devices, see the standard in this topic, â€�Make sure devices are energy efficient, and they are bought and disposed of sustainablyâ€�.Ìý
The following standard topics should also be considered when reviewing the safety and security of your devices:Ìý
Devices should be assessed against the needs of students and staff. All devices should also meet or exceed the minimum requirements set out in this standard.ÌýÌý
This will make sure devices are:Ìý
- safe and secureÌýÌý
- stable and reliableÌýÌý
Not meeting these requirements could mean your devices:Ìý
- negatively impact teaching and learningÌý
- are at risk of malware, ransomware and potential data breachesÌý
- are not value for moneyÌý
IT support should work with the SLT digital lead to make sure all devices meet the requirements in this standard.Ìý
How to meet this standardÌý
IT support should review the minimum requirements set out in this standard.Ìý
Devices should also be reviewed once a year to take account of any changes to the minimum requirements set out in this standard.Ìý
Minimum requirementsÌý
The purpose of the requirements in this section is to make sure schools and colleges have reliable and durable devices which support curriculum delivery.ÌýÌý
This is not a fully inclusive list for all device requirements, as these will depend on specific needs.ÌýÌý
IT support should make sure all devices meet or exceed the minimum requirements set out in this table.Ìý
| Minimum requirements | What you need |
|---|---|
| Operating system | Enterprise or education-grade operating systems, which means they are designed for professional rather than home use. |
| Support and security | When repurposing, upgrading or buying new devices tablets should have 3 years of manufacturer support and security patches. Laptops and desktops should have 5 years ofÌý support and security patches. |
| Warranty length | 3 years for laptops and desktops 2 years for tablets The warranty durations listed here have been set to cover the minimum amount of time manufacturers usually offer support for security updates and bug fixes. |
| Wirelessly connecting to the IT network (for portable devices) | Devices should support the wifi standard 802.11ac Wave 2. But it’s recommended that devices meet wifi 6 (802.11ax). |
| Screen size (for tablets only) | 9.7 inches |
When to meet this standardÌý
Laptops, desktops and tablets should be replaced or upgraded now if they do not meet the operating system requirements of this standard.ÌýÌý
For everything else:Ìý
- check whether they can be upgraded or repurposed before choosing to buy any new devicesÌýÌý
- make sure this standard is met when investing in new devicesÌý
Related standardsÌý
The following standard topics should also be considered when reviewing device requirements:Ìý
- filtering and monitoringÌýÌýÌýÌýÌý
- cyber securityÌýÌýÌý
- cloud solutionsÌýÌý
- wireless networkÌýÌý
- broadband internetÌýÌý
- leadership and governance standardsÌý
Why this standard is importantÌý
Devices can be one of the biggest sources of energy use in schools and colleges. Taking an energy efficient approach to the buying, setting up, using and disposal of devices will help with cost savings and sustainability.ÌýÌý
If this standard is not met, there is a risk of:ÌýÌý
- increased costs by using more energy than you needÌý
- creating unnecessary wasteÌý
- it negatively impacting the environmentÌý
Who needs to be involvedÌý
To meet this standard the senior leadership team (SLT) digital lead should work with:Ìý
- the school, college and trust business professionalsÌý
- IT supportÌýÌý
How to meet this standardÌý
The SLT digital lead should review the use of both existing and new devices.Ìý
For existing devices make sure they:Ìý
- are switched off when not in useÌýÌý
- automatically power off when they do not need to be used out of hoursÌý
- are only using the tools neededÌý
When buying new devices check whether:
- existing ones can be repurposed
- they are rated with a low energy certification, such as Energy StarÌý
When disposing of devices, IT support should make sure that:Ìý
- Waste Electrical and Electronic Equipment (WEEE) regulations and data protection requirements are metÌýÌý
- they have certificates for WEEE, disposal and destruction of data ÌýÌý
- the IT asset register is updatedÌý
- action is taken to prevent security incidents by removing or destroying any data on the devicesÌý
ÌýFor more information refer to the National Cyber Security Centre’s (NCSC) guide to the Ìý
When to meet the standardÌý
The WEEE regulations are a legal requirement. The SLT should consider energy efficiency the next time they invest in new devices. They should also review how existing devices are used, as set out in this standard.ÌýÌý
Related standardsÌý
The following standard topics should also be considered when reviewing device requirements:Ìý
For more details on asset registers visit the digital leadership and governance standard, ‘Keep registers relating to hardware and systems up to date�.