Unless you use shady 3rd party software (hint: it is one if it costs money) or shady browser plugins that are not transparent (meaning, not open source), or install an extension viewer app, such as the one that the now-defunct R18.com forced people to install-- it ran on Silverlight, which is essentially a license to snoop and collect user behavior on behalf of Microsoft and its client media companies.
Also, I would assume the OP is using a VPN, and not a bullshit one. By bullshit one, I refer to VPNs like NordVPN, or any VPN which chooses shadow its software under the hood and irl identity. Nordvpn, incidentally, was caught years ago not only failing to provide an actual VPN tunnel for its users, but selling their data. It's remarkably hard to find news about vpns-- I can't find the original source in the see of vpn search fodder...anyways...
If you are not using a VPN: DRM now uses geolocation data linked to an IP address to filter and observe user activity.
Netflix uses this data to know the exact physical location of the device, partly to crack down on account sharing and theft, in addition to content management where stuff is licensed to be viewable in one country but not another.
As far as privacy laws go, when you consented to use the DRM software, you probably consented to surrender some aspects of your privacy, too. Here's one example with Adobe:
I don't see why OF would be above doing this.
I'll repeat what I said when this thread started: Go for open, non-profit VPNs like ProtonVPN or AirVPN. Mullvad is not non-profit, but they are more transparent than most. I can't say I trust any others rn.