diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/granular-controls.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/granular-controls.mdx
index b214728f7264c9..2f8897295ef52e 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/granular-controls.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/granular-controls.mdx
@@ -17,6 +17,7 @@ To use Application Granular Controls, you must:
 - Turn on [TLS decryption](/cloudflare-one/policies/gateway/http-policies/tls-decryption/).
 - Turn on the [Gateway proxy](/cloudflare-one/policies/gateway/proxy/#turn-on-the-gateway-proxy).
 - (Optional) If an application uses HTTP/3, turn on the [Gateway proxy for UDP traffic](/cloudflare-one/policies/gateway/http-policies/http3/#enable-http3-inspection).
+- (Optional) To turn on [AI prompt logging](/cloudflare-one/policies/data-loss-prevention/dlp-policies/logging-options/#log-generative-ai-prompt-content), create a [DLP payload encryption public key](/cloudflare-one/policies/data-loss-prevention/dlp-policies/logging-options/#set-a-dlp-payload-encryption-public-key).
 
 ## Create a policy with Application Granular Controls