Hello, I have a quick question. For a website that doesn't store any cookies, if I place the e-mail address on the website as email@example.com but the e-mails send there aren't stored on a server, but forwarded to a gmail address, what are the requirements to be GDPR compliant (if any). Do I need to mention that the e-mails are forwarded to gmail? I will only receive emails on the address on the website, i won't do any e-mail marketing. Thanks!
In a privacy notice, you need to be very precise regarding the processing of personal data that you, as a data controller, are doing. Transparency is one of GDPR’s most important principles, as it is required in Article 5.1.a. So you must tell your data subjects if their emails are landing on a server owned by a third party. If you are using Gmail, you need to make sure that you are using GMail from Google Workspace in order to have clear accountability (in this case Google would act as a Data Processor for your organization).