No, it is not a legal requirement to have a cookie policy. However, if your site uses cookies and is subject to comply with the GDPR or CCPA, you need to explain your use of cookies in your privacy policy.
You’re subject to comply with the CCPA if you have consumers in California, and you’re subject to comply with the GDPR if you have users in Europe. Both laws require you to explain how you use cookies and what cookies you use.
Although you can detail your cookie use in your privacy policy, consider customizing a cookie policy template and linking to it from your privacy policy for even greater legal protection.
Trusted by thousands of companies worldwide, Termly’s intuitive software generates legal policies and handles consent management for any business in minutes.
Termly allows our users to focus more on their business instead of spending countless hours figuring out data privacy compliance. - Jona, Senior Product Manager @ Termly
