According to GDPR, as the Personal Data Administrator you are responsible for the proper selection of your data processors (FreshMail, for example). This means that you are responsible for choosing a company that complies with the requirements of GDPR and meets your business needs. Entrusting data to be processed must therefore be documented and supported by a contract in which information about possible transfers to third parties or other processors is available.
