Published Dec 4, 2025, 6:00 PM EST
Gavin is the Segment Lead for the Technology Explained, Security, Internet, Streaming, and Entertainment verticals, former co-host on the Really Useful Podcast, and a frequent product reviewer. He has a degree in Contemporary Writing pillaged from the hills of Devon, more than a decade of professional writing experience, and his work has appeared on How-To Geek, Expert Reviews, Trusted Reviews, Online Tech Tips, and Help Desk Geek, among others. Gavin has attended CES, IFA, MWC, and other tech-trade shows to report directly from the floor, racking up hundreds of thousands of steps in the process. He's reviewed more headphones, earbuds, and mechanical keyboards than he cares to remember, and enjoys copious amounts of tea, board games, and football.
If you ask most people how they stay private online, they’ll give you a familiar list: incognito mode, rejecting cookies, maybe switching to a “privacy browser.” It sounds sensible. It feels responsible. Unfortunately, most of it doesn’t actually protect you in any meaningful way.
Browser privacy myths stick around because they’re comforting. They create the illusion of control without requiring much effort, understanding, or behavioural change. But modern tracking doesn’t work the way people think it does — and relying on outdated ideas leaves you far more exposed than you realise.
Incognito mode makes you anonymous
This is one of the most common browser privacy misonceptions
Private or incognito browsing does exactly three things: it doesn’t save your browsing history locally, it isolates cookies for that session, and it deletes them when you close the window. That’s it. Nothing about incognito mode hides your activity from websites, advertisers, employers, schools, Wi-Fi operators, your ISP, or browser vendors themselves.
If you open an incognito tab and visit a website, that site still sees your IP address, device details, screen resolution, installed fonts, timezone, and browser behaviour. Tracking scripts still run. Fingerprinting still works. If you log into an account, your activity is fully attributable — incognito or not.
Now, there is one reason why folks think incognito or private browsing modes actually deliver privacy: messaging. While browsers explain that "incognito mode doesn't protect your privacy," it still carries a very cloak and dagger name for the setting. It's no wonder so many folks still think incognito will actually protect your privacy.
Rejecting cookies will solve your privacy problems
Those pop-up boxes don't do what you think
Constant cookie banners have trained us to believe that rejecting them in a magical privacy salve. Well guess what? It isn't.
Rejecting cookies can help a little, but they're just one one tracking mechanism, and increasingly not the most important one. Modern websites rely heavily on fingerprinting, server-side tracking, session correlation, and account-based analytics. None of these require third-party cookies at all.
The problem is that even when you reject cookies, you're not actually rejecting all of those other forms of tracking. Using the site or service gives it implicit approval to capture other forms of data used to profile you.
Cookie banners exist largely to satisfy regulatory requirements, not to meaningfully protect users.
The padlock means privacy
I can understand why this one is hazy
Credit: Robert Avgustin/Shutterstock
The HTTPS padlock icon doesn't appear front and center in the browser address bar these days. Google was the first browser company to remove the HTTPS icon from the address bar, reasoning (correctly) that the familiar, friendly icon was actually giving us a false sense of security.
HTTPS is secure and stops your data being stolen in transit. This is true. But HTTPS doesn't stop cookies, fingerprinting, and other forms of tracking, which is why it's misleading.
Built-in browser privacy options are enough to protect you
Surprise! They're definitely not
Modern browsers are undeniably better than they used to be. Tracking protection, cookie partitioning, permission prompts, and sandboxing all help. But default settings are built around compromise.
Browsers have to balance privacy against compatibility, performance, advertising ecosystems, and user retention. As a result, built-in protections usually block known trackers using detection lists, but miss out anything novel, obfuscated, or otherwise.
These defaults reduce background noise, but they don’t prevent correlation. If your browser leaks enough stable signals across sites, you can still be tracked with surprising reliability.
A fancy "privacy-focused browser" will fix your problems
It's not a magic cloak
I don't want scare people away from privacy-focused browsers. They're definitely better than sticking with Google Chrome while it hoovers up every bit of your data. Or the rise of the new "AI-browsers" like ChatGPT Atlas and Perplexity Comet, which masquerade as the new generation but are just as bad for your privacy.
The problem with privacy browsers isn't that they don't focus on privacy. They do. The problems arise when you start logging into Amazon, Meta, Microsoft, and so on, and the tracking starts all over again.
It's a bit like using Tor browser to access your Facebook account. The authorities don't know where you are, but anything you do online is still being tracked.
Using a privacy browser can protect your data and identity, so don't shy away from using one. It's just not going to make you completely anonymous, as that's a behavioral problem.
The browser privacy change that actually works
This is the first place to start clawing back your privacy
You have to use a browser. It's the easiest way to navigate the internet. But that doesn't mean you have to give over all of your data. At least, not without a fight.
I'd strongly suggest using a script blocking tool to boost your browser privacy. In most cases, a script blocking tool can reduce your exposure to advertising, cookies, and other forms of tracking by stopping the data collecting script from running to begin with.
Try using a Chrome extension like uBLock Origin Lite or AdGuard AdBlocker to reduce the number of scripts that run on each web page you visit.
Or, if you want a more powerful and customization open-source option, No Script is the next tier up and will block out a huge amount of tracking and other nasties. It's actually used in the Tor browser, so you know it's up to the task. Either way, all of these options will cut down on the number of deeply irritating popups you encounter on the web.
Related
Reduce your browser expsoure now
Browser privacy myths persist because they’re easy and reassuring. But they don’t reflect how tracking actually works anymore.
If you want real protection, stop relying on rituals like incognito tabs and cookie pop-ups. Focus instead on reducing data exposure, limiting correlation, and cutting tracking off at the source.
You don’t need to vanish from the internet. You just need to stop believing the wrong things — and start making choices that actually work.