GDPR Basics Booklet
For more general information on cookies see the Wikipedia article on HTTP Cookies.
Remember that the middle two letters of GDPR stand for Data Protection—this means taking proper cybersecurity measures. Probably 50% of GDPR compliance relies on healthy IT systems, and the other half is split between legalities such as privacy notices and contracts, and organisational measures such as staff training and assigning of data access privileges. If you can prevent a data breach from happening in the first place, you’ve done well. Enjoy the booklet!