Re: Decline cookies -> refused access
GDPR requires that service providers do not withhold service if someone rejects cookies.
"Allow users to access your service even if they refuse to allow the use of certain cookies"
-- https://gdpr.eu/cookies/