thank you so much for your support and the quick replies.
Do you know how your other clients have categorized the Piwik PRO Cookies inside of OneTrust? I think to avoid the script being auto-blocked we would have to categorize all cookies as strictly necessary.
If you use anonymous tracking without cookies, there is no need to add the pk_ cookies as strictly necessary. If you have a setup for 30 minute cookies, you need to set it as necessary.
ppms_privacy_ is necessary to store the consent state.
The other cookies are based on the type of triggers and tags you have setup (have a look at the initially shared page on regarding the cookies, we tried to describe it as detailed as possible per type of cookie)