Pastoral Leadership, Incident Management & Strategic Communication
NAS Jiaxing | Updated: 2026-06-19
A VP uploaded a pastoral incident report to ChatGPT to "make it sound more professional." The report contained:
Result: Data processed on US servers. Potential PIPL violation. No audit trail. No way to delete.
| Task | What Gets Leaked | Risk Level |
|---|---|---|
| Drafting incident reports | Student names, behavioral details, safeguarding flags | CRITICAL |
| Summarizing parent emails | Parent contact info, family issues, medical details | HIGH |
| Writing staff communication | Staff performance issues, disciplinary context | HIGH |
| Strategic planning documents | School vulnerabilities, future plans | MEDIUM |
Current (Dangerous): Copy-paste into ChatGPT
Local AI Method: Use the anonymized prompt template
Current (Dangerous): Upload full email thread to cloud AI
Local AI Method: Summarize context, generate neutral draft
Current (Risky): Use cloud AI to organize sensitive topics
Local AI Method: Generate structured agenda from anonymized topics
Current (Risky): Upload full policy to cloud AI for "review"
Local AI Method: Check specific sections against guidelines
| Task | Cloud Tool (Risky) | Local Alternative (Safe) |
|---|---|---|
| Document drafting | ChatGPT, Claude, Gemini | Ollama + Qwen/Llama (self-hosted) |
| Email summarization | Grammarly, Notion AI | Local LLM with privacy-preserving prompts |
| Meeting notes | Otter.ai, Microsoft Copilot | Whisper (local transcription) + Ollama |
| Document storage | Google Drive, OneDrive | Nextcloud (self-hosted) + Tailscale |
| Calendar/scheduling | Google Calendar | Calendar + local ICS files |
We have already built and deployed these tools:
All data stays on school premises. Full audit logs. Zero cloud exposure.