Free HHF Training Resource Library

AI, assessment and governance resources for real organisations.

Practical templates, checklists and guidance for schools, colleges, training providers, councils, businesses and community organisations that want safer AI use, stronger quality assurance and clearer decision-making.

Choose the resource your organisation needs.

Each resource is written in plain English and structured so leaders, teachers, assessors, IQAs, managers and governors can understand what to do next.

Schools

AI Policy Template for Schools

A practical school policy structure covering staff use, learner use, safeguarding, GDPR, assessment and parent communication.

  • For: schools, colleges, MATs
  • Includes: acceptable use statements and checklists
Training Providers

AI Policy Template for Training Providers

Policy guidance for assessment authenticity, awarding organisation expectations, assessor/IQA practice and learner declarations.

  • For: centres, providers, assessors
  • Includes: AI declaration and IQA checks
Readiness

AI Readiness Checklist

A maturity and action-planning tool to assess leadership, governance, staff, technology, assessment and risk readiness.

  • For: any organisation adopting AI
  • Includes: scoring and maturity model
Risk

AI Risk Assessment Template

A risk register and heat map model covering data protection, cyber security, safeguarding, bias, legal and reputational risks.

  • For: leaders, compliance teams
  • Includes: risk owner and review date fields
Governance

AI Governance Framework

A practical governance model for boards, senior leaders, steering groups, AI tool approval and ongoing monitoring.

  • For: governors, boards, senior leaders
  • Includes: terms of reference template
Assessment

AI Assessment Integrity Guide

Guidance for authentic assessment design, evidence verification, professional discussion, oral questioning and malpractice escalation.

  • For: teachers, assessors, IQAs
  • Includes: acceptable vs unacceptable AI use
SP

AI Policy Template for Schools

A school-ready structure for safe, fair and responsible AI use by staff and learners.

Overview

This template helps a school explain how AI may be used, what is not allowed, who is responsible, and how safeguarding, data protection and assessment integrity will be protected.

Purpose

To support useful AI practice while reducing risks linked to personal data, over-reliance, unsafe content, unfair advantage, inaccurate outputs and learner misuse.

Who it is for

  • Headteachers and senior leaders
  • Teachers, support staff and pastoral teams
  • Learners, parents and carers
  • Governors, trustees and safeguarding leads

Why it matters

AI tools can support planning, accessibility and feedback, but they can also expose personal data, create inaccurate content, bypass learning and affect fairness in assessment.

Policy scope and definition

AI means software that can generate, summarise, classify, predict, translate, transcribe, recommend or assist with text, images, audio, video, coding or decisions. This policy applies to staff, learners, visitors, contractors and any AI tool used for school activity.

Roles and responsibilities

  • Governors: approve the policy and review risk reports.
  • Senior leaders: decide approved use, training and monitoring.
  • DSL: reviews safeguarding risks and reporting routes.
  • DPO or data lead: advises on GDPR and personal data.
  • Staff: use AI professionally and check outputs.
  • Learners: follow acceptable use rules.

Key principles

  • AI supports education; it does not replace professional judgement.
  • Personal, sensitive or safeguarding information must not be entered into unapproved tools.
  • AI output must be checked before use.
  • Learners must not submit AI-generated work as their own.
  • Parents and carers should receive clear guidance.

Step-by-step guidance

  1. List approved and unapproved AI tools.
  2. Decide what staff can use AI for, such as lesson ideas, differentiation prompts and resource drafts.
  3. Decide what learners can use AI for, such as revision support or explanation practice.
  4. Set rules for assessment, homework and coursework.
  5. Train staff on checking accuracy, bias, copyright, safeguarding and GDPR.
  6. Review incidents and update the policy each term or annually.

Staff acceptable use statement

Staff may use approved AI tools to support planning, resource drafting, accessibility and administration where this improves education and does not expose personal data. Staff remain responsible for checking accuracy, suitability, bias and age appropriateness.

Learner acceptable use statement

Learners may use AI only when a teacher allows it. Learners must explain how AI helped them and must not present AI-generated work as their own learning, thinking or assessment evidence.

Safeguarding and GDPR

  • Do not enter names, addresses, health data, behaviour records or safeguarding details into public AI tools.
  • Report unsafe, harmful or inappropriate AI output through the normal safeguarding route.
  • Use privacy checks before approving AI tools.

Assessment integrity

Teachers should state when AI can be used, require learner declarations where needed, and use discussion, drafts, in-class work or questioning to confirm understanding.

Practical example

A teacher asks AI for three ways to explain photosynthesis to different reading levels. The teacher checks the output, removes inaccurate claims, adapts it to the class and does not enter learner names or learning plans into the tool.

Staff checklist

I used an approved tool.
I did not enter personal data.
I checked accuracy and bias.
I adapted the output for my learners.

Learner checklist

My teacher allowed AI use.
I understand the work.
I have not copied AI output as my own.
I declared how AI helped me.

Monitoring and review

Review AI use at least annually, and sooner after a safeguarding incident, assessment concern, data protection issue or major change to AI tools. Keep a record of approved tools, incidents, actions and staff training.

TP

AI Policy Template for Training Providers

A provider policy for assessment authenticity, compliance and quality assurance in the age of AI.

Overview

This template helps centres and providers set expectations for AI use in delivery, assessment, evidence production, assessor judgement and IQA monitoring.

Purpose

To protect qualification integrity, learner fairness, awarding organisation requirements, data protection and the reliability of assessment decisions.

Who it is for

  • Training providers and approved centres
  • Assessors, tutors and IQAs
  • Quality managers and curriculum leads
  • Learners and apprentices

Key principles

  • AI must not replace learner competence.
  • Assessment evidence must remain authentic and traceable.
  • Assessors must verify understanding before making decisions.
  • IQA must sample AI-related risk.
  • Awarding organisation rules must be followed.

Assessor responsibilities

  • Explain permitted AI use before assessment.
  • Review evidence for authenticity and consistency.
  • Use professional discussion or questioning where needed.
  • Record concerns clearly and follow malpractice procedures.

IQA responsibilities

  • Check assessment plans include AI controls.
  • Sample high-risk evidence types.
  • Review assessor feedback and declarations.
  • Record standardisation actions linked to AI risk.

Step-by-step guidance

  1. Map where AI could affect each qualification, unit or assessment method.
  2. Clarify acceptable and unacceptable AI support.
  3. Add learner declarations to relevant submissions.
  4. Use evidence triangulation: product, discussion, observation, questioning and workplace records.
  5. Update IQA sampling plans for AI-related risk.
  6. Review awarding organisation updates and communicate changes to staff.

Remote assessment considerations

Remote assessment should include identity checks, clear instructions, time boundaries, evidence logs, questioning and documented judgement. Where risk is high, add live discussion or practical demonstration.

Malpractice and plagiarism

Submitting AI-generated evidence as independent learner work may be treated as malpractice. Decisions should follow the provider and awarding organisation malpractice policy.

AI declaration form

Learner name:
Qualification/unit:
Assessment title:
AI tool used, if any:
How AI supported the work:
What the learner completed independently:
Learner signature/date:
Assessor review/date:

IQA monitoring checklist

AI guidance was given before assessment.
Evidence authenticity was checked.
Professional discussion was used where needed.
Assessor judgement is valid and recorded.
AI concerns were escalated correctly.
Standardisation actions were recorded.
AR

AI Readiness Checklist

A simple scoring tool to understand how ready your organisation is for responsible AI adoption.

Overview

Use this checklist to identify strengths, gaps and immediate actions before rolling out AI tools or AI-supported working practices.

Scoring system

Score each area from 0 to 3. 0 means not started, 1 means early discussion, 2 means partly in place, and 3 means embedded and reviewed.

AI Readiness Framework

Leadership
Governance
Staff Skills
Assessment
Risk Review

Checklist areas

  • Leadership readiness: clear ownership and priorities.
  • Governance readiness: policy, approval and oversight.
  • Staff readiness: training, confidence and boundaries.
  • Technology readiness: approved tools and access controls.
  • Assessment readiness: authenticity and evidence checks.
  • Risk readiness: data, safeguarding, bias and cyber controls.

Maturity model

1Unaware
2Exploring
3Controlled
4Embedded
5Improving

Readiness checklist

We have named AI leadership responsibility.
We have a draft or approved AI policy.
Staff know what data must not be entered into AI tools.
We have reviewed assessment integrity risks.
We have an approved tool list.
We review AI risk and incidents regularly.

Action plan template

PriorityActionOwnerTimescaleEvidence of completion
HighCreate AI acceptable use guidance.Senior leader30 daysApproved guidance shared with staff.
MediumTrain staff on safe prompting and data protection.CPD lead60 daysTraining register and resources.
RA

AI Risk Assessment Template

A practical risk register and heat map for AI use in education, training, governance and business activity.

Overview

This template helps organisations identify, score, control and monitor AI risks before tools are approved or used with staff, learners or customers.

Likelihood and impact scoring

Score likelihood from 1 to 4 and impact from 1 to 4. Multiply the scores to identify low, medium, high or critical risk.

AI Risk Heat Map

Impact
1 Low
2 Moderate
3 High
4 Severe
4 Likely
4
8
12
16
3 Possible
3
6
9
12
2 Unlikely
2
4
6
8
1 Rare
1
2
3
4

Risk areas to review

  • Data protection and privacy
  • Cyber security and account access
  • Safeguarding and harmful content
  • Bias, fairness and discrimination
  • Assessment integrity and malpractice
  • Legal, copyright and compliance
  • Reputation and public trust

Control measures

  • Approved tool list
  • Data entry rules
  • Human review before decisions
  • Staff training
  • Learner declarations
  • Incident reporting
  • Regular review dates

Risk register template

RiskLikelihoodImpactControlsOwnerReview date
Staff enter learner personal data into an unapproved AI tool.34Training, approved tools, DPO review and clear policy.Data LeadTermly
Learner submits AI-generated evidence as own work.33Declaration, questioning, drafts and assessor checks.Quality LeadMonthly sample
GF

AI Governance Framework

A clear model for oversight, decision-making, approval, monitoring and continuous improvement.

Overview

AI governance means having clear responsibility, rules and review processes so AI tools are used safely, lawfully and in line with organisational values.

AI Governance Structure

Board or Governors
Senior Leadership
AI Steering Group
Operational Leads
Staff and Learners

Board or governor responsibilities

  • Approve the strategic approach to AI.
  • Ask for risk and compliance updates.
  • Ensure safeguarding, data and equality duties are considered.

Senior leadership responsibilities

  • Assign owners for AI policy and risk.
  • Approve tools and training priorities.
  • Ensure incidents are reviewed and acted on.

AI tool approval workflow

Need identified
Risk checked
Data reviewed
Pilot approved
Monitor impact

Risk reporting framework

Report high-risk AI use, data concerns, safeguarding concerns, assessment concerns, staff training gaps and incidents to the named AI governance lead and the relevant existing committee.

Governance maturity model

1No owner
2Informal controls
3Policy in place
4Monitored
5Improving

Terms of reference template

Group name: AI Steering Group
Chair:
Members:
Meeting frequency:
Responsibilities:
Reporting route:
Decision authority:
Review date:
AI

AI Assessment Integrity Guide

Practical guidance for protecting authentic assessment and learner evidence when AI tools are available.

Why assessment integrity matters

Assessment must show what the learner knows, understands and can do. If AI produces the work and the learner cannot explain or demonstrate it, the evidence may not be valid.

Key principles

  • Be clear about permitted AI use before assessment.
  • Design tasks that require personal, practical or contextual evidence.
  • Use more than one evidence source.
  • Check understanding through discussion or questioning.
  • Record judgement and concerns clearly.

Acceptable vs unacceptable AI use

Acceptable supportUnacceptable use
Using AI to explain a topic before writing independent work.Submitting AI-generated answers as the learner's own assessment evidence.
Using AI to plan revision questions, then answering independently.Using AI to produce reflective accounts, witness statements or portfolio evidence.
Using AI to improve grammar where content is already the learner's own.Using AI to invent workplace examples, observations or practical activity.

Evidence verification methods

  • Professional discussion
  • Oral questioning
  • Observation
  • Practical demonstration
  • Draft review
  • Workplace records
  • Learner declaration

Assessment redesign examples

  • Replace a generic essay with a scenario linked to the learner's own setting.
  • Add a short viva-style discussion after written evidence.
  • Require annotated drafts showing decision-making.
  • Use practical demonstration where competence is required.

Assessment Integrity Workflow

Set AI rules
Collect evidence
Check authenticity
Question learner
Record judgement

Assessor checklist

AI rules were explained before assessment.
Evidence matches the learner's level and context.
Understanding was checked where risk was present.
Decisions and concerns were recorded.

IQA checklist

High-risk assessment methods are sampled.
Assessor judgements are consistent.
Learner declarations are used where needed.
Malpractice escalation is followed.

Malpractice escalation process

  1. Record the concern and preserve evidence.
  2. Do not make an unsupported allegation.
  3. Discuss with the quality lead or exams/assessment lead.
  4. Follow provider and awarding organisation procedure.
  5. Inform the learner of the process and possible outcomes.
  6. Record outcome, actions and prevention steps.