Privacy Policy and Cloudflare



I’m not sure if I’m posting this in the right section, but here we go… I serve a cookieless website (a simple REST backend serving static data) through Cloudflare (proxied) and, while Cloudflare tracks users (has cookies, analytics, etc), I don’t gather any kind of data from users (really no data at all).

So, is it required to create a Privacy Policy for my app/website?

And if I do, should I tell the users they’re being tracked by Cloudflare? Or by simply accessing a website that’s served by Cloudflare the user accepts Cloudflare’s Privacy Policy?

Thank you!