I'm not sure if the details of the cookies, GDPR policies, should be on by default or not? Is it bad or just convenient for the company? And should I have a Reject All and Accept All?