Exploring the key principles of GDPR
Exploring the key principles of GDPR • Version 1 (November 2018) © Girlguiding 2018 Registered charity number 306016 2
Legitimate interest means Girlguiding being able to use
an individual’s personal data for guiding purposes, which
is necessary for their participation within Girlguiding – for
example, texting all parents/carers that a meeting is
cancelled due to a problem with the venue. Legitimate
interest is also relevant to Girlguiding when emailing
members with essential information. For example,
regarding your role, as commissioner, in guiding, such as an
update on Girlguiding policies and procedures, providing
volunteer care and support, managing guiding activities,
and making sure the right care is in place for activities.
Our Privacy notice explains what Girlguiding does with
this information. It tells members and volunteers how we
gather, use, disclose and manage their personal data. Non-
essential use of data requires additional written consent.
Gaining consent for sending marketing information is
managed via the preference centre within GO.
As a volunteer, you have regularly been sending
out e-newsletters to parents/carers, members and
volunteers, which contain information on offers
available to members, information about local events
and other information on what the unit is doing over
the coming weeks.
You have consent to collect and use photo for all
of the girls in your unit, except one, through their
Starting forms. Therefore, when your unit goes on
outings and does activities, you ensure all photos taken
don’t include this girl. The unit will soon be attending
a county event, and you are concerned photos may be
taken that will include this girl. What are your options?
What should you be aware of?
Is this OK? If yes, why and what should you be aware of?
If no, why?
In what ways can you use personal data based on
What do you do if a parent/carer comes to you and
wants to change the consent for her daughter (for
example, to withdraw photo consent?
and will not be used for any other purpose. This means we
can’t collect members’ or volunteers’ personal information
for one reason, and then use it for something else. When
members and volunteers join Girlguiding, we tell them that
the data they give us is for administration and managing
their membership through our Privacy notice. We can’t use
it for anything else, unless we tell them about this new
purpose. That means no marketing or fundraising emails,
unless they decide to change their opt-in preferences
through their GO account settings.
We must gather written ‘consent’ for things like trips and
events – for example, to take girls on a residential or a trip
to a local attraction.
We ask for consent to collect and use media content at a
unit level when members and volunteers join Girlguiding.
We must be explicit about how we plan to use the data
– for example, using photos for Girlguiding publicity or
sharing them with news outlets.
Finally, we must have consent to communicate anything
electronically about marketing and fundraising – members
and volunteers control this by setting their preferences on
GO. Marketing refers to things like letting members know
about a discount offer or non-essential event (for example,
Big Gig). We don’t need consent when communicating
in person verbally or for printed communications (for
You belong to several unofcial Facebook groups for
guiding where you chat, share details on event and
discount offers related to guiding with members,
parents/carers and other volunteers. You also use
WhatsApp with other leaders and parents/carers to
discuss guiding activities.
Collected for specied, explicit and
Links to further information