In the training sector, protective digital practices are essential to create safe, trustworthy and respectful learning environments. They help ensure that learners, trainers and staff can participate confidently in digital activities without fear of data misuse, cyberattacks or online harm.

Every day, training organisations collect and process large amounts of personal information: names, email addresses, learning records, attendance data, assessment results and sometimes even sensitive information. Without proper safeguards, this data can be exposed, stolen or used inappropriately.

Cybersecurity incidents are becoming increasingly common worldwide. According to the European Union Agency for Cybersecurity (ENISA), phishing attacks, ransomware and data breaches remain among the most frequent threats affecting organisations, including schools and training centres.

Protective digital practices are therefore not only technical measures. They are also about respecting human dignity, privacy and trust in digital learning spaces.

What are protective digital practices?
Protective digital practices include all actions that help secure digital environments and protect users’ rights. Some examples include:

• using strong passwords and multi-factor authentication,
• regularly updating software and devices,
• limiting unnecessary data collection,
• choosing platforms compliant with data protection regulations such as the GDPR,
• training staff and learners to recognise phishing, scams and misinformation,
• limiting data collection to what is necessary, establishing clear access policies and ensuring safe and respectful online communication.

Cybersecurity and privacy are often seen as the responsibility of IT departments alone. In reality, protective digital practices involve everyone in an organisation. Trainers, administrative staff, managers and learners all play a role in maintaining secure digital environments.

Simple everyday actions can significantly reduce risks: checking links before clicking, protecting passwords, limiting file sharing, or thinking carefully before storing unnecessary data online.

Within the In-DigiT project, “Protective” is one of the seven qualities of responsible digitalisation. A truly responsible digital transformation cannot exist without safety, transparency and respect for users’ rights.By adopting protective digital practices, training organisations not only reduce risks, but also strengthen trust, inclusion and the quality of digital learning itself.

References
European Union Agency for Cybersecurity. (2023). ENISA threat landscape 2023: July 2022 to June 2023. ENISA. https://www.enisa.europa.eu/publications/enisa-threat-landscape-2023