Technologies · Year 6

Active learning ideas

Protecting Personal Data Online

Active learning builds lasting digital safety habits better than lectures because students confront real risks through hands-on practice. When they test passwords and adjust settings themselves, they experience the consequences of weak choices instead of just hearing about them.

ACARA Content DescriptionsAC9TDI6K03AC9TDI6P07
25–45 minPairs → Whole Class4 activities

Activity 01

Decision Matrix30 min · Pairs

Pairs Challenge: Strong Password Design

Pairs brainstorm memorable phrases then convert them into strong passwords using four criteria: length over 12 characters, mixed case, numbers, symbols. They swap and attempt to guess each other's password. Debrief on what worked best.

Design a strong and memorable password using best practices.

Facilitation TipDuring Pairs Challenge: Strong Password Design, move between pairs to ask guiding questions like 'How might a hacker guess this phrase?' instead of giving answers.

What to look forPresent students with several example passwords. Ask them to identify which passwords are strong and which are weak, providing a brief justification for each choice based on length, character types, and predictability.

AnalyzeEvaluateCreateDecision-MakingSelf-Management
Generate Complete Lesson

Activity 02

Decision Matrix45 min · Small Groups

Small Groups: Privacy Settings Simulation

Provide screenshots of social media profiles with default settings. Groups adjust settings to private, justify choices for different scenarios like family sharing versus public posts, and present one change to the class.

Justify the importance of regularly updating privacy settings on social media.

What to look forPose the question: 'Imagine a friend wants to share their location on a social media app. What information should they consider before enabling this feature, and what privacy settings could help them stay safe?' Facilitate a class discussion on PII and data sharing risks.

AnalyzeEvaluateCreateDecision-MakingSelf-Management
Generate Complete Lesson

Activity 03

Decision Matrix40 min · Whole Class

Whole Class: Security Measure Evaluation

Display common measures like passwords, biometrics, and updates. Class votes on effectiveness via polls, discusses evidence from scenarios, and ranks them for protecting data.

Evaluate the effectiveness of different security measures in protecting personal information.

What to look forStudents design a strong password for a fictional online account. They then swap their password ideas (without revealing the actual password) and provide feedback to their partner on whether their design meets the criteria for strength, using a simple checklist: Includes uppercase, lowercase, numbers, symbols, and is not a common word or phrase.

AnalyzeEvaluateCreateDecision-MakingSelf-Management
Generate Complete Lesson

Activity 04

Decision Matrix25 min · Individual

Individual: Personal Data Audit

Students review their own device or app privacy settings, note one change to make, and write a justification. Share anonymously via class padlet for collective feedback.

Design a strong and memorable password using best practices.

What to look forPresent students with several example passwords. Ask them to identify which passwords are strong and which are weak, providing a brief justification for each choice based on length, character types, and predictability.

AnalyzeEvaluateCreateDecision-MakingSelf-Management
Generate Complete Lesson

A few notes on teaching this unit

Start with low-stakes practice so students feel safe making mistakes. Avoid overwhelming them with too many rules at once. Research shows that repeated, brief exposures to concepts like complexity and visibility build stronger retention than single, long lessons.

Successful learning shows when students can explain why complexity matters in passwords and adjust privacy settings without teacher reminders. They should justify choices using specific criteria like character types and visibility restrictions.

Watch Out for These Misconceptions

  • During Pairs Challenge: Strong Password Design, watch for students who favor long passwords with only letters, assuming length alone guarantees security.

    Have these students test their passwords using a simple checklist that includes character variety. Ask them to compare their 'long-letter' password with one that mixes cases, numbers, and symbols to see which meets the criteria better.

  • During Small Groups: Privacy Settings Simulation, watch for students who assume privacy settings only need checking at setup.

    Give each group a mock profile that has been updated by the teacher to include new default settings. Ask them to identify what changed and how to adjust it, reinforcing that settings require regular review.

  • During Individual: Personal Data Audit, watch for students who believe personal details like pet names can’t be guessed in passwords.

    Ask peers to share one personal detail from a bio (real or fictional) and have the student guess if their pet’s name could fit. Use this to show how social media exposes such details and how to avoid using them.

Methods used in this brief

More in Connected Worlds: Networks and Security

Introduction to Computer Networks

Students learn the basic components of a network and how devices connect to share resources.

2 methodologies

How Information Travels Online

Students explore the idea that information sent online is broken into small pieces and sent along different paths, eventually rejoining at its destination.

2 methodologies

Rules for Online Communication

Students learn that computers follow common rules (like a shared language) to understand each other when communicating across networks, ensuring smooth information exchange.

2 methodologies

The World Wide Web vs. The Internet

Differentiating between the physical infrastructure of the internet and the information system of the World Wide Web.

2 methodologies

Introduction to Cybersecurity Threats

Identifying common threats to digital information, such as viruses, malware, and phishing.

2 methodologies