School-issued devices occupy a peculiar middle space between institution and home. The laptop your child carries back and forth runs filtering software that blocks content categories on school networks, and it arrives with a set of policies (usually a document signed during orientation, largely unread by either party) that governs what is and is not permitted. At school, on the school network, this creates a managed environment. At home, connected to your Wi-Fi, most of those institutional controls no longer apply. The device looks the same. The environment it operates in is different in ways most students have not been explicitly told about and most families have not thought through.
This gap matters more than it might seem. A student who has navigated the internet primarily through filtered school infrastructure may not have good judgment about what they encounter when the filters are absent, not because they are reckless, but because they have not had to develop it. A student who has absorbed "the school monitors my device" as a background fact but has not connected it to "and at home that is not the case" may be operating under a mistaken assumption about their privacy in both directions. The device itself is not particularly safe or unsafe in isolation. What provides real protection is the habit of thinking about what kind of environment you are in and what that means for what you do, which is something no content filter can install.
Passwords are a more concrete place to start, and probably the most underestimated piece of practical digital safety for students. The habit of reusing the same password across multiple accounts is nearly universal and genuinely costly. A breach on any one platform exposes everything else connected to that password, and credential breaches happen often enough that this is not a theoretical risk. The fix is not technically complicated. A password manager (Bitwarden is free and well-regarded; iCloud Keychain works well in Apple households) removes almost all the friction of maintaining unique passwords per account. This is a skill worth teaching the same way you would teach someone to lock a door, not because you expect the worst, but because the habit is simple and the consequences of not having it are not.
What school platforms do not protect against
Cyberbullying is the area where school platforms often fall short in ways parents do not anticipate. The assumption is that school-managed tools (school email, LMS messaging, shared documents) are safer because they are supervised. They are monitored, which is a different thing. Monitoring means documented incidents can be addressed after the fact. It does not prevent students from being cruel to each other in comments on a shared document, in the chat during a video call, or through the message feature of a learning platform, all of which happen in spaces the school nominally controls and does not watch continuously.
One of the most teachable concrete skills in online safety is recognizing a phishing attempt, which is a fake message designed to get someone to hand over their login credentials or click a malicious link. These arrive through school email accounts regularly, and students who have never been shown what to look for are genuinely vulnerable to them.
Beyond any specific skill, the more consequential protective factor is a relationship in which your child feels able to tell you when something has gone wrong online. This sounds obvious, and yet the most common pattern in school-related cyberbullying situations is a student who experienced something upsetting, did not tell a parent, and had the situation worsen. The instinct to respond to online problems by removing device access is understandable, because the device is the visible and controllable element, but it tends to confirm for a student that disclosing a problem will cost them something they value. It rarely resolves the underlying situation and reliably makes future disclosure less likely.
A more useful conversation than a list of prohibitions is something like: "What would you do if something felt wrong or weird online, and would you feel comfortable telling me about it?" That question, asked with genuine curiosity and without a punitive subtext, builds more safety than any filtering software can. The goal is a student who can navigate situations as they arise and knows they have someone to turn to when they cannot, rather than one who has memorized a set of rules they will eventually encounter exceptions to anyway.