I know how to solve their problem. If they only use cookies for the reason written here (to remember preferences)
they should not need to store any cookies as soon as I just visit their site and therefore they should not need to
show any annoying text about cookies until I change any preferences.<p>But for some reason they did send two cookies to me when I just visited the site without doing anything.<p>And "because other sites do it" is not enough reason to use cookies.
The problem is not using cookies, it's collecting personal data about users, which is aided by cookies. This requires active consent in Europe, which this website does not allow.<p>If I'm not mistaken, you don't need to have a cookie banner if you only have essential cookies.
> they seemed to indicate that because we still use other types of cookies (again, including cookies to say "don't show this person any ads"), we had to put up the notification anyway.<p>A cookie like "show_ads:false" contains zero personal information.
GDPR does not regulate cookies and does not require cookie banners (search <a href="https://gdpr.algolia.com/" rel="nofollow">https://gdpr.algolia.com/</a> for “cookie” and you’ll get no article hits).<p>It does, however, say that you own your own personal information, and your permission is required before it can be used.<p>CCPA is toothless and offers no PII protections (and definitely does not require a cookie banner).