Hi Raven,
As you accept users in the European Union you are subject to the General Data Protection Regulation. Having your servers outside the EU does not protect you from the law. It's where the users are resident that matters.
This law requires you to notify all users those in countries of the Europen Union of changes in the way you handle their data.
At the time when Hugo introduced the "Cookie Law Compliance Solution" I thought that was sufficient to cover you, but I now realise that the more recent GDPR requires much more of you.
Nabble needs to have at least a "Privacy Policy" statement always accessible to any user (a link in the footer would be the conventional approach) and changes to this need to be notified to all users (normally this is done by email that includes a summary of the changes and a link to the revised policy document) as they are made.
Volunteer Helper - but recommending that users move off the platform!
Once the admin for GregHelp now deleted.