A Safeguarding Failure Hidden in Plain Sight for Swansea University
A convicted child sex offender worked inside a university that houses some of the UK's most advanced child protection research. An FOI investigation reveals the institutional gap that made it possible and why it matters for every organisation working with children.
In 2024, a jury at Swansea Crown Court convicted Kerry James Price, an IT technician employed by Swansea University, of fifteen counts including sexual assault of a child under thirteen, causing or inciting a child under thirteen to engage in sexual activity, making and possessing indecent images of children, voyeurism, and recording images under clothing.
Price was employed by the university at the time of his conviction.
The case received limited press coverage. It did not prompt a public statement from the university. No formal lessons-learned process directly addressing the conviction has been publicly disclosed.
That alone would be concerning. But what makes this case particularly striking, and what prompted this investigation, is where Price worked.
He worked at Swansea University. The same institution that hosts Project DRAGON-S.
What is Project DRAGON-S?
Project DRAGON-S (Developing Resistance Against Grooming Online) is a research initiative based in Swansea University's College of Arts and Humanities. Led by Professor Nuria Lorenzo-Dus, the project has developed some of the most sophisticated AI-powered tools in the world for detecting and resisting the online grooming of children.
Its outputs include DRAGON-Spotter, a tool that analyses linguistic patterns in online conversations to identify grooming behaviour, and DRAGON-Shield, designed to help children and young people recognise and resist grooming attempts. The project has received international recognition and represents genuinely world-class work in child protection.
The irony is not subtle. A university producing cutting-edge research on how to protect children from predators employed a convicted child sex offender in its IT department.
That irony, however, is not the central argument of this piece. The central argument is more uncomfortable.
The Gap Between Research and Governance
The existence of excellent research does not automatically produce excellent institutional practice. This is a governance problem, and it is far more common than most organisations are willing to admit.
To test whether Swansea University had any mechanism connecting its own child safety research to its own safeguarding governance, a Freedom of Information request was submitted in April 2026. The questions asked were deliberate and specific.
The response, dated 29 April 2026 and now publicly available, is instructive.
On DBS checking procedures for non-academic staff including IT personnel, the university confirmed that role assessments are conducted by line managers using the standard DBS online tool. No specific policy for staff with unsupervised access to student data or university IT systems was provided. The policy attached in response was last updated in November 2013, over a decade ago, and applies primarily to student admissions rather than employee vetting.
On whether a lessons-learned exercise had been conducted following any criminal conviction of a staff member since January 2020, the university confirmed that in March 2022 it commissioned an external safeguarding review by Plinth House Limited. The review was described as having been triggered by changes to HEFCW guidance and the post-Covid landscape. An action plan was produced. Whether that review was initiated in response to the Price case, or whether its timeline overlaps with the criminal proceedings, is not clear from the response.
On the most significant question, what oversight mechanisms exist to ensure the university's own safeguarding governance practices are aligned with the research outputs of its own child safety programmes, the university's response was as direct as it was revealing.
"The University does not have specific Safeguarding guidance in relation to research outputs and recommendations."
That sentence, from the university's own written response, is worth sitting with.
A university whose researchers have spent years building tools to detect child predators has no formal mechanism to ensure those same insights inform how it governs itself.
Why This Matters Beyond Swansea
It would be easy, and unfair, to treat this as a Swansea University problem. It is not. It is a sector-wide problem, and arguably an organisational governance problem that extends well beyond higher education.
The gap between what an institution researches, advocates for, or publicly champions, and how it actually governs its own operations, is one of the most persistent and underacknowledged failures in institutional governance. We see it in charities that campaign against poverty while failing to pay living wages to their own staff. We see it in law firms that advise clients on data protection while maintaining inadequate internal data hygiene. And we see it in universities that produce world-leading child safety research while operating DBS checking frameworks last updated over a decade ago.
The issue is not malice. The issue is structural disconnection. Research sits in one part of the institution. HR and safeguarding sit in another. Governance sits somewhere else entirely. Nobody is responsible for the bridge between them.
This is precisely the kind of gap that a mature governance framework is designed to close.
What Good Governance Would Look Like
A genuinely well-governed institution, particularly one producing research in a high-stakes area like child protection, would do the following as a minimum.
It would conduct a regular mapping exercise asking a simple question: do our internal policies and procedures reflect the best available evidence, including evidence we ourselves have produced? For a university with a child safety research unit, this means the safeguarding team and the research team should be in active dialogue. Research outputs should feed directly into policy review cycles.
It would ensure that DBS checking frameworks for non-academic staff are reviewed at least every three years, not left static for over a decade. Roles with unsupervised access to student data, university systems, or physical premises should be assessed with the same rigour applied to roles involving direct contact with children.
It would establish a clear accountability line, a named individual or committee, responsible for ensuring that safeguarding governance keeps pace with both research developments and operational risk. Not a passive compliance function, but an active one.
And when a criminal conviction involving a member of staff occurs, it would conduct a mandatory, documented lessons-learned process. Not as an admission of liability, but as a basic commitment to improvement. The 2022 Plinth House review, whatever its merits, does not appear to have been framed in those terms.
A Constructive Note
This article is not a prosecution of Swansea University. The FOI responses were handled professionally and within the statutory timeframe. The university does have safeguarding policies and research ethics frameworks in place. The DRAGON-S project represents genuinely important work.
But the gap this investigation has documented is real. It is confirmed in the university's own written response. And it is the kind of gap that allows harm to occur in institutions that, on paper, should know better.
The question for every organisation reading this is not whether Swansea University failed. The question is whether your organisation has the same structural disconnection between what you know and how you govern.
Most do. Some do not.
The work of closing that gap is governance work. It is not glamorous. It does not generate headlines. But it is the work that prevents the next case from being written about.
The author is a governance and compliance professional based in Swansea, Wales, advising charities, social enterprises, and public sector organisations on safeguarding governance, regulatory compliance, and responsible technology. cymuned.ltd
The Compliance Project covers governance, regulatory compliance, and institutional accountability across the UK and beyond. If this piece has raised questions about your organisation's safeguarding governance framework, you are welcome to get in touch.