My school in Australia did it completely transparently through a company named "CyberHound" of all things. It advertises in a similar way "protect the children from mental health issues" by running an MITM on all SSL traffic over your school network to inspect all all the push notifications, webpages et cetera sent to your students' devices. The difference is this was transparent and consenting.
The thing is I would not expect any institution's internal network to be un-logged, be that the company I work for, or a school or government. Passive logging of internet sessions and metadata is totally acceptable, its this kind of analysis and information sharing that can be really harmful.
Although I suppose I only say that because my shool actually had mental health support that was very visibly available, and the tracking was quite easily circumvented.
1: Root certificate we have to install on devices
2: All school machines have an "I agree to acceptable use" prompt on login and we have to install certificates ourselves.