Officials also feel that Microsoft's security provision for Windows 10 is too lax, thanks to the unlimited times you can enter a PIN. That opens the door for any enterprising attacker to simply brute-force the combination, which CNIL feels makes the operating software "not secure or confidential." Then there's the fact that Windows 10 applies a unique identifier for the purposes of targeted advertising. No guesses for how French officials feel about that, given all you know about 'em.

The last major objection is that Microsoft is still pushing personal data around following the principles of Safe Harbor. These were the set of EU-US privacy protections that were declared invalid late in 2015, with a replacement, called Privacy Shield, only coming into force this month. Naturally, that's the point that Microsoft is fastest to refute, with deputy general counsel David Heiner telling The Register that it will "adopt the Privacy Shield," in the near future. In addition, Microsoft will work with CNIL to ensure that it doesn't have to suffer the pain of penalties.