If you have looked at some of the network requests, such as those involving our embed code, you may have seen a cookie called __cfduid being set.

That cookie is set by Cloudflare as we use their network protection to mitigate various attack vectors, including DDoS.

Despite its name, that cookie is not used to track users (as it sounds like a user ID). It is part of their machine learning to detect bots and automated activity. It can not identify an individual user.

As it is a strictly necessary cookie, it is permitted under legislation covering cookie consent. As they confirmed in community guidance https://community.cloudflare.com/t/disable-cfduid-cookie-for-eu-law-compliance/19323.

However the good news is it is being removed as it is deprecated. Cloudflare have announced that from May 2021 they will be removing it. Find out more in their announcement: https://blog.cloudflare.com/deprecating-cfduid-cookie/.