I noticed that about Slate too, yesterday, when another HN article linked to them. Now I just open sites that break GDPR laws in a private tab, accept all of their cookie things and skim the article and determine if it's worth properly reading (while blocking ads, canvas super cookies, etc.). When I'm done I close the window and all the data they place on my machine is wiped. This means the outcome for them is even worse than if they had behaved themselves and offered a "minimum required" box that I would have probably ticked.