Regardless of whether or not you provide your own SSL certificates, cloudflare still uses their own between their servers and client browsers. So any SSL encrypted traffic is unencrypted at their end before being re-encrypted with your certificate. How can such an entity be trusted?
Thanks for the link, it’s an interesting read with more detail than I’ve ever heard (not having used cloudflare for this myself).