Your browser is spying on you. Change these 5 settings now

Most people assume their web browser is a neutral tool. In reality, it’s a keen observer. Every site you visit leaves a trail of data—your browsing history, device details, location, and even keystroke patterns. This information is collected and often sold to advertisers, data brokers, and sometimes shared with third parties you never intended to involve.

Recent updates to major browsers have made some privacy features easier to find, but they’ve also added new data-collection defaults. For example, Chrome’s Privacy Sandbox and Microsoft Edge’s “Personalization” settings enable tracking by default. Meanwhile, Safari and Firefox offer stronger protections, but only if you tweak the right toggles.

The good news? You don’t need to be a privacy expert to regain control. Here are five practical settings you can change today.

What happened

A wave of browser updates over the past two years has shifted the data collection landscape. Chrome introduced Topics API for ad targeting. Edge began collecting browsing activity for “personalized news and ads.” Even Safari, long considered privacy-friendly, now requires users to manually disable certain cross-site tracking exemptions. A detailed analysis by PCWorld (June 2026) highlighted how default settings in all four major browsers lean toward maximum data collection, often with minimal user-facing explanation.

Why it matters

When your browser collects your data, it isn’t just about serving you relevant ads. The same data can be used for profiling, price discrimination, or even shared with law enforcement without a warrant. Browser fingerprinting—a technique that identifies your device based on settings, fonts, and screen resolution—is nearly impossible to block entirely, but you can reduce its effectiveness. And location tracking from your browser can reveal where you live, work, and spend your free time. These risks are not theoretical. In 2025, researchers demonstrated that simple browser settings could expose enough information to reconstruct a user’s daily routine.

What readers can do

1. Block third-party cookies and trackers

  • Chrome: Go to Settings > Privacy and security > Third-party cookies. Select “Block third-party cookies” or “Block all third-party cookies” (the latter may break some sites). Also enable “Send a ‘Do Not Track’ request with your browsing traffic.”
  • Firefox: Settings > Privacy & Security > Enhanced Tracking Protection. Choose “Strict” to block trackers, cookies, and fingerprinters.
  • Edge: Settings > Privacy, search, and services > Tracking prevention. Set to “Strict.” Also under “Cookies and site permissions,” select “Block third-party cookies.”
  • Safari: Safari > Preferences > Privacy. Enable “Prevent cross-site tracking” and “Block all cookies.”

2. Disable location sharing and sensor access by default

  • On Chrome, Firefox, and Edge, go to Site settings (or Permissions). Set Location, Camera, Microphone, and Motion sensors to “Block” by default. Only allow them for specific sites you trust.
  • Safari: Preferences > Websites > Location. Set to “Deny without prompting.” For camera and microphone, set to “Deny.”

3. Use private browsing modes effectively

Private mode (Incognito in Chrome, Private Window in Firefox and Safari, InPrivate in Edge) does not prevent your ISP or employer from seeing your activity, but it stops the browser from saving history, cookies, and site data. To make it more useful, set your browser to always start in private mode. Then configure it to delete all data automatically when you close the last private window. In Firefox, this is under Privacy & Security > History > “Use custom settings” and check “Clear history when Firefox closes.”

4. Turn on “Do Not Track” and Global Privacy Control

Do Not Track (DNT) is a voluntary request that many websites ignore. However, Global Privacy Control (GPC) is a newer signal that has stronger legal backing in some jurisdictions (e.g., California, Colorado). Enable both where available.

  • Chrome: Settings > Security and Privacy > Do Not Track. Turn it on. Chrome does not yet support GPC natively, but you can install extensions.
  • Firefox: Privacy & Security > Send websites a “Do Not Track” request. Also enable “Tell websites not to sell my data” (Global Privacy Control) if available in your region.
  • Edge: Under Privacy, search, and services > Do Not Track requests. Turn on “Send ‘Do Not Track’ requests.”
  • Safari: Preferences > Privacy > Uncheck “Allow cross-site tracking” for DNT. Safari supports GPC automatically when you have “Prevent cross-site tracking” enabled.

5. Review and revoke unnecessary permissions

Many sites ask for permission to send notifications, access your clipboard, or keep background sync active. Each can leak data. Go to your browser’s permissions list and revoke anything you didn’t explicitly approve.

  • Chrome: Settings > Privacy and security > Site Settings > Permissions. Click each item (Notifications, Clipboards, Background Sync) and set the default to “Block.”
  • Firefox: Preferences > Privacy & Security > Permissions. Uncheck “Warn you when websites try to install add-ons” unless you want prompts.
  • Edge: Settings > Cookies and site permissions > All permissions. Review each item and block by default.

Ongoing habits: Check these settings once every few months after browser updates. Browser vendors sometimes reset or change defaults during major releases. Also consider using a dedicated privacy-focused browser, such as Firefox with uBlock Origin, for additional coverage.

Sources

  • PCWorld, “Your browser is too nosy. Change these 5 settings now,” June 2026.
  • Google Chrome Privacy Help Center
  • Mozilla Firefox Privacy & Security Settings
  • Microsoft Edge Privacy Features
  • Apple Safari Privacy & Security Guide

Note: Browser features change over time. The steps above are current as of mid-2026. If you encounter different options, check the browser’s official support page for the latest guidance.