Czech Republic (EU member) data protection regulator is aware and ruled that if user has cookies enabled in his browser, that's enough and user gave cookie consent. If user doesn't want to have cookies stored, he can block them in the browser.
A simple off/on switch does not provide a sufficient level of control over cookie policy. It's reasonable to want to allow first-party cookies on certain sites, especially where they're needed for site functionality. But block third-party tracking cookies, or even block all cookies on others.
Cookie control/policy in browsers needs to become more sophisticated than what we have today.
