For large organizations, there are two ways to limit consequences for individual webdevs:
1. Get fingerprints of the browsers of your superiors (or simply use IP addresses), and don't show the popups on those browsers.
2. Let the script be hosted by a central authority (say eff.org), so they can activate it centrally and the popup appears on many websites at the same time, which will make you look less bad.
1. Get fingerprints of the browsers of your superiors (or simply use IP addresses), and don't show the popups on those browsers.
2. Let the script be hosted by a central authority (say eff.org), so they can activate it centrally and the popup appears on many websites at the same time, which will make you look less bad.