Again, depends how fancy and bullet proof you want to get.
I would not go as far as sending a "Yes, I just received your data packet" string back in an ACK, you're just going to spin CPU wheels and memory reading that back and forth.
A CRC would be much more appropriate. If you want really strong protection then make up a two or more bytes CRC. Even 2 bytes CRC is really strong.
You could calculate that same key at the sender and upon ACK receipt, you can compare the returned CRC to your local key.