How to stop websites from tracking you (10 proven ways)

Disclaimer: Third-party tools and services mentioned in this article are for informational purposes only. NordProtect is not affiliated with or endorsed by these brands and makes no guarantees regarding their performance or security.

What is a web tracker?

A web tracker is a tool that website owners and third parties embed in websites to monitor your online activity and collect personal information. These trackers come in the form of cookies (small text files stored in your browser), tracking pixels (invisible images that load in the background), and scripts (code that runs on web pages) but they’re all invisible to you as you browse. The goal of web tracking with these tools is to record everything from which pages you visit and how long you stay, to what you click on and what products you look up.

While first-party trackers help websites remember your preferences, third-party trackers follow you across multiple sites to build detailed profiles of your behavior — often without your direct knowledge.

Why should you stop websites from tracking you? 

Website tracking isn’t just an abstract privacy concern — it has real consequences for your security, wallet, and personal autonomy. The main risks include:

• Your personal data gets sold. Data brokers compile and sell information on your browsing habits, location, and interests to advertisers and third parties, often without your knowledge.
• You experience price discrimination. Some websites show you different prices based on your browsing history, location, or device, which means you could pay more for the same product.
• Data breaches expose your information. There is no guarantee that companies that collect tracking data secure it properly. If they get breached, your personal information will end up on the dark web.
• You’re profiled without knowing it. Cross-site tracking builds a detailed record of your habits, interests, and behavior that you never consented to and can’t access or remove.
• You may become a target for scams. Tracking data can end up in the hands of cybercriminals (through breaches or data broker sales), who then use your browsing habits and personal details to craft convincing phishing attacks or target you with online scams.

The good news is that you can take control with the right tools and settings.

10 ways to stop websites from tracking you

Now that you understand the risks, let’s look at what you can actually do about it. While completely eliminating all tracking is nearly impossible, the following steps will significantly cut down on how much you’re being tracked and keep your personal information more private.

1. Block tracking cookies in your browser

Tracking cookies are the most common method websites use to follow your activity across the web. However, all major browsers now let you block third-party cookies — and it only takes a few clicks:

• Chrome: “Settings” > “Privacy and security” > “Third-party cookies” > “Block third-party cookies.”
• Safari: “Safari” > “Settings” > “Privacy” > enable “Prevent cross-site tracking” (enabled by default since iOS 11 / macOS High Sierra) and “Hide IP address.”
• Firefox: “Settings” > “Privacy and security” > “Enhanced tracking protection” > “Strict.”

Blocking third-party cookies is one of the simplest and most effective steps you can take. That said, it won’t prevent all forms of tracking — websites can still use techniques like browser fingerprinting and tracking pixels. But it significantly reduces how much you’re followed around the web.

2. Use a privacy-focused browser

If you want stronger protection right out of the box, consider switching to a browser designed with privacy as its core feature. The top options include:

• Firefox: Comes with “Enhanced tracking protection” that blocks third-party trackers, cookies, cryptominers, and fingerprinting scripts. It’s built by a nonprofit and offers a good balance between privacy and everyday usability.
• Brave: Blocks ads, trackers, and fingerprinting scripts by default without requiring any setup or extensions. Brave also blocks third-party cookies automatically and speeds up page loading by removing unwanted content.
• Tor Browser: Provides maximum anonymity by routing your traffic through multiple encrypted nodes, which makes it nearly impossible for websites to track you or identify your location. However, it’s noticeably slower than other browsers due to the encryption layers.

Keep in mind that each browser has its trade-offs. Tor offers the highest level of anonymity but sacrifices speed, while Firefox and Brave balance privacy protections with fast, everyday browsing performance.

3. Install anti-tracking browser extensions

Even with built-in browser protections, extensions add an extra layer of tracking defense. These tools work on top of your browser’s native features to catch trackers that might slip through:

• Privacy Badger: Developed by the Electronic Frontier Foundation, this extension automatically blocks trackers as you browse. It doesn’t rely on preset filter lists. Instead, it observes which domains are tracking you across multiple sites and blocks them automatically.
• uBlock Origin: A lightweight, open-source extension that blocks ads, tracking scripts, and malicious domains with minimal impact on your browser’s performance. It uses multiple filter lists to block known trackers and gives you better control over what content loads on each website.

These extensions can be used alongside browser-level cookie blocking for stronger protection. Think of them as a second filter that catches what your browser’s default settings might miss.

4. Enable Do Not Track and Global Privacy Control

Both Do Not Track (DNT) and Global Privacy Control (GPC) are browser settings that send signals to websites asking them not to track you but they work a bit differently.

DNT is an older browser setting that tells websites you don’t want to be tracked. The problem? It’s completely voluntary, and most websites simply ignore it. Studies show compliance rates below 20%, which is why major browsers like Firefox have largely phased it out in favor of GPC.

GPC is a newer, more powerful alternative. Unlike DNT, GPC is legally enforceable in U.S. states with comprehensive privacy laws, including California, Colorado, Connecticut, Delaware, and more than a dozen others as of 2026. When you enable GPC, websites in these jurisdictions are legally required to honor your opt-out request or face penalties. Keep in mind, though, that GPC’s legal force is limited to certain U.S. states — it remains a voluntary signal in most of the world.

How to enable GPC:

• Firefox: “Settings” > “Privacy and security” > scroll to “Website privacy preferences” > check “Tell websites not to sell or share my data.”
• Brave: GPC is enabled by default.
• Chrome and other browsers: Install an extension like Privacy Badger, DuckDuckGo Privacy Essentials, or the dedicated Global Privacy Control extension.

While GPC won’t stop all tracking everywhere, it’s a significant step up from Do Not Track, especially if you’re in a state where it’s legally backed.

5. Clear cookies and browsing data regularly

Clearing cookies, cache, and browsing history removes stored tracking identifiers that websites use to recognize and follow you. You can follow these easy steps to clear them in the most popular browsers:

• Chrome: Click the three dots in the top-right corner > “Settings” > “Privacy and security” > “Delete browsing data” > check “Cookies and other site data” and “Cached images and files” > click “Delete data.”
• Safari (Mac): “Safari” > “Settings” > “Privacy” > “Manage website data” > “Remove all.”
• Safari (iPhone/iPad): “Settings” > “Safari” > “Clear history and website data.”
• Firefox: Click the menu button (three lines) > “Settings” > “Privacy and security” > “Cookies and site data” > “Clear data.”

Keep in mind that this is a temporary fix because new tracking cookies are created as soon as you start browsing again. For ongoing protection, clear them regularly and use other methods in this guide, or set your browser to automatically delete cookies when you close it.

6. Opt out of personalized advertising

Major tech platforms collect data about your activity to serve you personalized ads. While opting out won’t stop tracking entirely, it does prevent these companies from using your data to target you with ads. You can disable personalized advertising on the biggest platforms by following these steps:

• Google: Go to “My ad center” > click on your profile icon > select “Ad settings” > turn off “Personalized ads.”
• Apple: “Settings” > “Privacy and security” > “Apple advertising” > turn off “Personalized Ads.”
• Microsoft: Go to your Microsoft account privacy settings > sign in > turn off “Personalized ads.”

Keep in mind that opting out simply prevents these platforms from using that data to show you targeted ads. You’ll still see ads, but they won’t be based on your browsing history and behavior.

7. Review and decline cookie notices

Under privacy laws like the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA), websites are required to ask for your consent before using non-essential cookies. This is why you see those cookie banners pop up on almost every site you visit, so how you respond to them matters.

When a cookie banner appears, always look for options like “Reject all” or “Essential cookies only” and choose them whenever possible. This blocks tracking, analytics, and advertising cookies while keeping only the essential ones needed for the site to function, like remembering items in your shopping cart or keeping you logged in.

If there’s no clear reject button, click “Customize” or “Manage preferences” to see a breakdown of cookie categories. These categories typically include analytics, advertising, functionality, and personalization cookies. Uncheck everything except essential or strictly necessary cookies.

Keep in mind that GDPR requires websites to get your active consent before placing non-essential cookies, meaning the default should be “off.” If a banner tries to trick you into accepting by making the “Accept” button more prominent or hiding the reject option, that’s a red flag — and likely not compliant.

8. Create fewer online accounts

Every online account you create increases your digital footprint and the amount of data available for tracking. Here’s how to protect your personal information online by limiting account creation:

• Be selective about creating accounts. Before signing up for a new service, ask yourself if you really need an account. Many sites pressure you into registering when you could browse or purchase as a guest.
• Use social login sparingly. Logging in with Google or Facebook might seem convenient, but it gives those companies even more data about you.
• Delete unused accounts. Old accounts you no longer use still hold your data and can be breached years later. Take time to identify and delete accounts you haven’t touched in months or years.
• Provide only mandatory information. When you do create an account, give only the information required to complete registration. Skip optional fields like phone numbers, addresses, or date of birth.

The fewer accounts you have, the smaller your attack surface and the less data you’re handing over to trackers.

9. Remove your data from data broker sites

Even after blocking trackers, your personal information may already be sitting in data broker databases. Data brokers are companies that collect and sell your personal details (including your name, address, phone number, browsing habits, and purchase history) to advertisers, marketers, and sometimes even scammers.

The good news is that you have the right to request removal. Under privacy laws like the CCPA and GDPR, data brokers are required to delete your information when you ask. You can approach it this way:

1. Identify which data brokers have your information. Search for your name on popular people-search sites like Whitepages, Spokeo, and BeenVerified to see what’s publicly available.
2. Submit opt-out requests. Visit each data broker’s website and look for their opt-out, privacy request, or “Do not sell” page (these are often buried in the footer). Follow their process to request deletion.
3. Be persistent. Data brokers are required to process deletion requests within 45 days under laws like the CCPA, but compliance rates vary and your data may reappear over time, which means you’ll need to request deletion again and again.

For a more comprehensive approach, check out our blog post on how to delete yourself from the internet, including removing accounts and cleaning up old profiles.

10. Use a VPN to hide your IP address

A virtual private network (VPN) encrypts your internet connection and masks your IP address, which prevents websites from identifying your real location and makes it harder for your internet service provider (ISP) to monitor your browsing activity. When you connect to a VPN, your traffic is routed through an encrypted tunnel to a remote server, so websites only see the VPN server's IP address instead of yours.

However, on its own, a VPN is not a complete solution for avoiding tracking. You should use it alongside other methods.

Pro tip: A VPN doesn’t block cookies, tracking pixels, or browser fingerprinting. Even with your IP address hidden, websites can still track you through cookies stored in your browser, tracking scripts embedded in web pages, and unique fingerprints based on your device and browser configuration. A VPN also won’t prevent platforms like Google or Facebook from tracking you if you’re logged into their services. Think of a VPN as one layer of protection that works best when combined with tracker blocking, cookie management, and privacy-focused browsing habits.

How to stop apps and websites from tracking you on your phone

Your phone is tracked even more aggressively than your desktop browser. Apps can access your location, contacts, camera, and microphone, while unique advertising IDs allow companies to track your activity across every app you use. The following steps will help you take control of tracking on both iPhone and Android.

iPhone

Take control of app-level tracking with these steps:

1. Disable app tracking requests. Go to “Settings” > “Privacy and security” > “Tracking” and turn off “Allow apps to request to track.” This prevents apps from asking permission to track you across other companies’ apps and websites.
2. Review and revoke app permissions. Go to “Settings” > “Privacy and security” and tap on individual categories like “Location services,” “Contacts,” “Camera,” and “Microphone.” Review which apps have access and revoke permissions for apps that don’t genuinely need them. For example, a flashlight app doesn’t need your location.
3. Turn off personalized ads. Go to “Settings” > “Privacy and security” > “Apple Advertising” and turn off “Personalized ads.” This prevents Apple from using your data to show you targeted ads.

Android

Android requires several steps to limit tracking.

1. Delete your advertising ID. Go to “Settings” > “Google” > “Ads” and tap “Delete advertising ID.” This removes the unique identifier that apps use to track you across different services and significantly reduces cross-app ad tracking.
2. Review app permissions. Go to “Settings” > “Privacy” > “Permission manager.” Here you’ll see categories like “Location,” “Camera,” “Microphone,” and “Contacts.” Tap each one to see which apps have access, and revoke permissions for apps that don’t need them.
3. Disable “Web and app activity.” Open your Google account settings (“Settings” > “Google” > “Manage your Google account” > “Data and privacy”) and turn off “Web and app activity.” This stops Google from logging your searches, browsing, and app usage across all your devices.

Comparison table: Tracking methods and how to block them

A quick reference for the most common tracking methods and how to stop each one:

Disclaimer: The browser extensions, VPN services, and third-party tools mentioned in this article are provided for informational purposes only. NordProtect is not affiliated with, endorsed by, or in partnership with any of these brands. We do not receive compensation for mentioning these products and make no guarantees regarding their performance, security, or privacy practices.

How to protect yourself from tracking-related risks

Even with all these prevention steps in place, some of your personal data may already be exposed through past tracking, data breaches, or data broker sales. That’s why blocking trackers is only half of the equation — you also need to find out whether your information has already been compromised.

• Monitor your personal information for leaks. Use a dark web monitoring service to scan underground marketplaces, forums, and breach databases for your email addresses, phone numbers, credit card details, and SSN. Identity theft protection services like NordProtect not just scan the dark web but also send immediate alerts if they find your information exposed so you can take action to protect your accounts and identity.
• Watch for signs of identity theft. Stay alert for signs of identity theft like unexpected credit inquiries, unfamiliar accounts or charges on your statements, missing bills or mail, denial of credit for unknown reasons, or notifications about data breaches from companies you’ve used. The earlier you catch identity theft, the easier it is to contain the damage.

NordProtect’s identity theft protection goes beyond dark web monitoring to include credit monitoring and alerts about suspicious financial account activity — such as new accounts opened in your name or changes to your credit file. You also receive security tips so you know exactly what to do if something looks wrong. And if identity theft happens, NordProtect has your back with assistance from dedicated specialists and financial support for bouncing back.