GDPR doesn't mandate cookie banners, it says that you simply cannot store irrelevant PII for the sake of it. That's the point of it: to protect the privacy of the public against "data brokers" and other scum. You're welcome.

People seem to have forgotten, but cookie banners were a pest before GDPR. And newsletters and login popovers, those are GDPR?