How is that ironic? GDPR does not say that you cannot use cookies. It says that you must apply limits to the scope of data that you collect about users regardless of the means that you use to store or collect that data.

Also cookies are not stored on their systems. The result though is that they also have to comply with EU "cookie law".