This really is a frequently asked question and more importantly, a misunderstood topic.
From Wikipedia: ” An HTTP cookie (also called web cookie, Internet cookie, browser cookie, or simply cookie) is a small piece of data sent from a website and stored on the user’s computer by the user’s web browser while the user is browsing. Cookies were designed to be a reliable mechanism for websites to remember stateful information (such as items added in the shopping cart in an online store) or to record the user’s browsing activity (including clicking particular buttons, logging in, or recording which pages were visited in the past). They can also be used to remember arbitrary pieces of information that the user previously entered into form fields such as names, addresses, passwords, and credit card numbers.”
Repeat – the cookie is data sent from a website and stored on the user’s computer by the user’s web browser while the user is browsing. The website visitor is in control of the actual cookies which are stored in their browser after they finish browsing, and they can delete them by cleaning their browser history.
F.A.Q. Part Two – I see these “accept cookies” disclaimers on websites recently, is there a law which requires me to add this information?
The General Data Protection Regulation [GDPR] is a European law. Unless you are in Europe or sell products in Europe, you are not required by US Law to add this disclaimer to your website.
Do you sell products from your website? Same thing; when a shopper wants to purchase a product most shopping carts allow you to set up the cart to make sure the customer themselves choose which cookies to allow.
It is very easy to add a simple disclaimer to your website using WordPress plugins made specifically for this purpose or which are part of an plugin like JetPack (the one I use). Then edit the generic, default policy provided as a model to reflect anything specific to your own website and you are all set!