A Cookies Policy, or better yet the disclosure of cookies, is required by many privacy laws such as GDPR. In addition to the actual document where you inform website visitors of the use of cookies on your website, getting consent is already required (for example, GDPR requires consent before cookies can be placed on your website).
The cookie disclosures can be part of your overall Privacy Policy, but it's recommended to have a separated Cookies Policy to better inform website visitors of your policy on cookies:
- What cookies are
- What type of cookies your website is using (categories of cookies)
- How visitors can delete / block cookies