Be vigilant when you engage with third party service providers. Ultimately it is your responsibility under the GDPR when cyber attacks and data breaches occur, not solely your service providers.
Qualifying Data Protection Officer at The Privacy Factory
Majority of CEOs may severely underestimate the consequences of GDPR non-compliance, and more worrisome are unaware of what had to be done or had been done by their staff to implement compliance measures.