For the compliance of GDPR, the cookie that is used to uniquely identify the person or device should be treated as personal data. (according to the 'General Data Protection Regulation Recital 30'). Consider the following original quotation:
Therefore, under the GDPR, the development ...