That’s exactly what the EU has done. They only require that people consent to be tracked for non-essential reasons.

Don’t track people for non-essential reasons, then you don’t need to ask for consent, which means you don’t need a cookie banner.

It's not malicious if the user wants it to happen, that's why its asking.