During the investigation, the CNIL delegation followed the path of a typical user to identify if cookies were being placed on the user's equipment. They visited the "bing.com" domain and continued browsing the search engine without clicking on any of the buttons or links displayed on the cookie management banner. Eventually, they were blocked by a pop-up window and clicked on the "Privacy statement" and "More options" links located on the window. From the "More options" link, the delegation authorized the deposit of cookies on their terminal by clicking on the "Allow all" button. The Restricted Committee concluded that until March 29, 2022, when a "Refuse all" button was implemented, the conditions for collecting consent that were offered to users constituted a violation of the law. The committee believed that the more complex refusal mechanism discouraged users from refusing cookies and encouraged them to favor the ease of the consent button appearing in the first window.