Thanks @bhukkel

That seems to work. Your code with the spaces filled in by someone who knows nothing about Javascript (works when bunged onto a PHP page somewhere).

<script>
function setCookie(cname, cvalue, exdays) {
 var d = new Date();
 d.setTime(d.getTime() + (exdays*24*60*60*1000));
 var expires = "expires="+d.toUTCString();
 document.cookie = cname + "=" + cvalue + "; " + expires;
} 
</script> 
<?php
if(!isset($_COOKIE['eucookies'])) {
?>
<div id="eucookies">Because of a <a href="privacy-policy.htm">stupid EU law</a> we need tell you 
 we use cookies. <a href="privacy-policy.htm">Read more</a> | <a href="" onclick="setCookie('eucookies', 'y', 365);document.getElementById('eucookies').hidden=1;">Dismiss</a></div>
<?php
}
?> 

It is useful to be able to bung the code anywhere on the page, but it might be refined by offering the javascript version in javascript, then offering a different noscript version to those who do not accept javacscipt so they can dismiss the message too. Those who don't accept cookies will be stuck, but we can only code the possible.

@vordmeister

i do not know how many non_EU visitors you have but i would add a GEO lookup in the IF statement.

Almost entirely EU until we get the UK referendum in the next couple of years. I did a quick poll and 78% are planning to vote out so fingers crossed.

The EU rubbish can be quite discreet at the bottom of the page. I haven't finished my CSS for the message but here it is at the moment:

#eucookies {
  position:fixed;
  left:0px;
  bottom:0px;
  height:20px;
  width:100%;
  background:#ccc;
}

A shame that UK internal politics ( and your UKIP aligned position ) makes up 50% of what would otherwise be your helpful posts..
Here is not the place for political remarks..and is well "off topic"..

What Google is requiring from webmasters as regards to notifying visitors about 3rd party cookies etc ( as stated in the OP ) is not required from webmasters by the EU..

The EU requires that webmasters notify about cookies that the webmaster sets..not those set by Google..

I am still wondering how Google would react with all those fixed banners hiding the ads while scrolling. This is against here policy.

Knowing Google, they'(d)ll ban some webmasters for using the fixed "cookie" banners, ( as you say..if they cover adsense it is against adsense TOS ) and hope that some webmasters will say it is the EU's fault that some webmasters got banned..apparently there will be some webmasters that will fall for Google's FUD if that happened..

technically Google could even say that such banners are "drawing attention to ads" and as such ban one for doing precisely what Google insist that one does..not that making illogical actions or contradictory or misleading*,policies and statements ever worried Google..

* I could have said dishonest there..and still been totally correct..possibly not politically correct..but definitely factually correct..

...is not required from webmasters by the EU.

The EU doesn't actually require anything of webmasters. It imposes certain rules on all member states, and each country then creates its own cookie laws, which will incorporate but may still differ from (indeed be stricter than) the original guidelines.

I presume that you would thus agree with me that the EU has never ( nor have any EU member states ) required what Google is insisting that all adsense publishers ( no matter where they may be , as long as they have even one EU based visitor ) do..
Require notifying visitors about 3rd party cookies via optin/opt out cookie policies when the visitor arrives at the site..
The EU, via member states requires webmasters to notify about cookies which the website itself sets..if indeed the website sets any..
This is not the EU, nor any EU member state requiring notifying visitors about 3rd party cookies ..this is Google..

This is not the EU, nor any EU member state requiring notifying visitors about 3rd party cookies ..this is Google..

Absolutely, 6 pages and it's finally getting through however do remember that if YOUR site is setting cookies that's a different thing altogether.

The EU, via member states requires webmasters to notify about cookies which the website itself sets

I'm not sure about the exact contents of the EU directive, but many member states, such as The Netherlands, require you to not just notify of but also seek permission for all tracking cookies, first- and third-party, placed by or through your website, with exceptions for Analytics and the like, but only under strict circumstances (e.g. force SSL, disable data sharing, anonymize IPs). The emphasis with these cookie laws has always been on third-party cookies, and I don't think you can get away with saying you're not responsible for the placement of third-party cookies through your website.

The Netherlands has ( from what I have been told, I don't read the Dutch* language fluently at all ) what is probably the strictest version/ interpretation of "the EU cookie law"..which does indeed require that the webmaster notify all visitors of 3rd party cookies ( if they are placed by the 3rd party sites ) however it ( "the EU cookie law" ) does not make the webmaster "responsible" for the 3rd party cookies, because the webmaster cannot know what ( if any ) cookies are placed by 3rd parties, nor if when 3rd parties place cookies, if they place the same cookies to each visitor from the EU, or if they "tailor" the cookies according to which EU country the visitor is in at the time of their visit..
the webmaster also cannot know what the 3rd party does with the data that they receive when they read a cookie that they have placed on the visitor machine..the webmaster cannot read the cookie(s)..in fact they do not have any way of knowing if a 3rd party actually places a cookie or cookies or not, nor of what type they may be, nor of what duration..

The emphasis has always been on what we refer to as 3rd party cookies, this is why session cookies, and those required to hold data for shopping carts etc were not included in the "EU webmaster must notify and obtain consent from the visitor" parts of the directive..

The EU ( who both Google and facebook "advised"/lobbied/"persuaded" on the matter prior to the issuing of the directive..some might say "advised" with the aim of totally obfuscating the issues and the responsibilities, and technical abilities and possibilities of the 1st ( webmasters ) and 3rd ( Google and facebook ) parties in the minds of the woefully ignorant EU officials and politicians..those EU officials who did understand some of the issues, unfortunately for us ( but fortunately for Google and facebook ) raised no objections to the fact that the EU directive did not put the onus to notify and obtain permission squarely upon the 3rd party entities, and left it vague..which was exactly what Google and facebook wanted..Although the texts, at least in English and French do say "applies to websites that use and store" cookies..We all know ( I hope ) that, websites don't store cookies on the site, scripts on them may read cookies that they have set on visitor machines, but they don't store them on the website..and if the site didn't "set" the cookies, it cannot "use" them, because, it cannot "read" them..But of course Google and facebook know this, as we do, they also know that the concern was never with what webmasters do with cookies, only with what Google and facebook et al do with the tracking and profiling of EU citizens when they set cookies via the calls to their systems from webmasters pages..Almunia pretty much wrote what Eric told him to, and the EU officials signed off on it..

Now Google are expecting major incoming flack ( on a number of counts , including the privacy and tracking ones ) from Vestager ( who, like virtually all women will not have things in her search history that might leave her open to "persuasion" )..so ..They are "blame shifting", "responsibility shifting", in the hope that those amongst the EU officials who do not understand the technicalities might "persuade" Vestager to "ease off on them directly over the privacy thing"..and some "uproar" and EU blaming from webmasters ( who, if they run adsense, wherever they might be based, will blame anyone but the hand of the plex that distributes the webmaster welfare )..It might work, Vestager might be persuaded by others in EU officialdom that the privacy/tracking thing is too complex to implement, and not to insist that Google , facebook et al stop or at least severely curtail it..

I personally hope that she stands her ground..

Despite the fact that it was never in the spirit of the EU directive that webmasters would have to take responsibilty for 3rd party cookies placed by Google or facebook et al ( what about "social buttons", that track visitors when placed on webpages ? ), the fact that Google are now "blame shifting" and "responsibility shifting" the notification and acceptance issues onto webmasters who run adsense ( at pain of losing their accounts if the webmasters do not do what Google says )..it is really not much inconvenience, nor effort, to add such notifications to any of our sites or pages..Anyone could have written the required scripts in the time it has taken them to read this thread..

As to customers ( visitors) being "put off" by the presence of such "notifications"..Those of us who live within the EU, or who run sites with EU traffic, or who run EU based sites, or even who merely surf EU sites, already know that both we , and our customers/visitors just click "Ok" and continue on sites that "notify"..we have been doing so since a couple of years or so already..No "fall off in traffic"..No "huge" ( or even insignificantly small ) numbers of visitors who "back out" or "bounce" because of such notifications..Thoe of us who are EU based ( and who already implemented such things ) know this, our logs are the proof..

We should not have to do this,( but that would require Google to not be sneaky and misleading, and maybe even to stop tracking, aint gonna happen while Eric is in charge ) but it isn't going to hurt our sites..Those of us in the EU who have already been doing it on our sites whether adsense or ecom, know this..

edited..Some types of analytics are "exempt"..Ganalytics is not ( and thus sites which use it are not "exempt" )..see the site I linked to in my first post in this thread for explanation as to the types of Cookies that Ganalytics sets..

*Is it even called the Dutch language, or is it Flemish ? In France it is referred to as "Flamand"

ps..Maybe Google will buy Maxmind..or give away a geo IP database system access to webmasters..
or provide a "cookie text" ( they say that they can't, but they don't say why they can't ?..I think that the long answer is plausible deniabilty..the short answer is "lawyers" ) But maybe they'll give everyone a ready made Geo IP look up script, with a step by step "how to use it to implement cookie compliance notification for EU visitors"..

Maybe I'll win the EU lottery..

As an aside - this EU cookie law could be the thing that will flip the UK referendum vote from staying in the EU to pulling out, as it will be something most people will see as an irritation caused by being in the EU.

@bhukkel
I am still wondering how Google would react with all those fixed banners hiding the ads while scrolling. This is against here policy.

I've started to look at that too!

I'm using Silktide's banner - all their themes fixed or popup could technically cover ads while scrolling. Google list them as a 'vendor' on the cookiechoices.org website so you would hope they won't start banning people!

In theory a top loading banner that scrolls with the site like the UK Government use would fit their terms better: [gov.uk...]

In theory a top loading banner that scrolls with the site like the UK Government use would fit their terms better:

I don't think this conforms since I just tested it and it only appears on the main index page. I entered several search terms and all the results delivered me pages without any cookie notification and only a cookie information link at the very bottom of the page.

Try searching for car tax online and you'll see what I mean.

IMHO their index page implementation is fine though.

It is on all pages - but they set a cookie so you only see the banner once.
I've also implemented things like that.

A good way to test things (very useful when developing!) is to use your browsers 'private window/incognito' so you don't get retained cookies :)

Hmmm...ah yep, I allow cookies on Firefox however delete them when closing but on Opera I don't allow them at all and that does show it correctly.

I don't use GA but noticed this:

We use Google Analytics software to collect information about how you use GOV.UK.

<snip>

We don’t allow Google to use or share our analytics data.

Is that possible with GA?

Yes you can turn data sharing off

[support.google.com...]

Just reading this on [adexchanger.com...]

A Google spokesperson said its policy does not specify if publishers need to obtain consent before dropping cookies.
Google also left notification language up to publishers in its website cookiechoices.org, which will help publishers make the switch. But that, too, can be highly subjective.

Adsense is served using JavaScript so a notification completely written in JavaScript should satisfy Google. It might even satisfy the EU if you argue that people who turn JavaScript off probably know about cookies already. A JavaScript only solution would protect those visitors who already have cookies switched off so can't dismiss the message.

Another benefit of JavaScript is the whole thing could be included in the same file that serves the ads, avoiding messing with the head section which can be tricky in some software. I'm a convert - planning to learn how to use it unless someone would be kind enough to post very simple code.

I'm now aiming for a simple static message in the left of the scren. "We use cookies. More | Dismiss" which fits on a single line of an iphone without having to mess making it responsive.