You Cleared Your Cookies. The Tracking Didn't Stop.
Four common ways people try to dodge cookie tracking — and why most of them quietly do nothing.
You cleared your browsing history. Maybe you flipped on a VPN, opened an incognito window, or dug into settings and switched on "Do Not Track." It feels like locking the front door before you leave the house.
For cookie tracking, three of those four moves change almost nothing. The advertisers building a profile of you barely notice. And the one habit most people skip is the only one that actually cuts the wire.
This is a correction, and a quick one. Once you see what each tool really does, the fix takes about thirty seconds.
First, what a cookie actually is
A cookie is a small text file a website saves in your browser so it can recognize you later. Most are harmless and genuinely useful. The cookie that keeps you logged in, or remembers what's in your cart, is a first-party cookie set by the site you're actually visiting.
The ones people worry about are third-party cookies: files dropped by companies you never chose to visit — ad networks and analytics firms whose code rides along on the page. A single article can load a dozen of them. They follow you from site to site, stitching your visits into one profile that gets bought and sold.
So the goal is to stop the third-party ones from watching you, while the useful first-party kind keeps working. With that in mind, look at what the popular "fixes" really do.
The four defenses, and what they actually stop
| What you do | What you think it does | What it actually does |
|---|---|---|
| Clear your cookies | Wipes the tracking | Deletes files after your data has already been sent. Trackers simply set new ones on your next visit. |
| Turn on a VPN | Makes you anonymous | Changes your IP address and encrypts your connection. The cookies already in your browser keep identifying you regardless. |
| Browse in incognito | Hides you from sites | Hides history from other people on your device. Websites and their trackers can still see you. |
| Switch on "Do Not Track" | Tells sites to stop | Sends a polite request almost no site is required to honor, and most ignore. |
Take them one at a time.
Clearing cookies is a postmortem. By the time you hit delete, the tracker already logged today's visit and shipped it off. You've cleaned the scene, not prevented the crime. The same trackers reload the moment you return.
A VPN protects the wrong thing. It's a real privacy tool, but its territory is the connection. It swaps your IP address and hides your traffic from your internet provider. Cookies live inside your browser, and the website reads them no matter which IP you arrive from. A VPN never touches them.
Incognito was never private from websites. Google paid to make this point. In 2024 it settled a lawsuit, Brown v. Google, that accused Chrome of tracking users who believed Incognito mode was private — agreeing to delete billions of browsing records and change its disclosures. Incognito stops your housemates from seeing where you've been. It was never built to stop the sites themselves.
"Do Not Track" is effectively dead. The setting asked websites to opt you out, but honoring it was always voluntary, and the industry mostly shrugged. Mozilla removed the option from Firefox entirely in early 2025 because it did so little. Its replacement, Global Privacy Control, actually carries legal weight in places like California. But only some sites honor it, and only where the law forces them to.
Where the tracking went instead
You may have heard Google was killing third-party cookies. That was the plan for years. Then it changed its mind. As of 2025, Google keeps third-party cookies in Chrome and leaves them on by default, handing the choice to users instead of removing them.
Meanwhile, the tracking industry stopped depending on cookies alone. The newer method is browser fingerprinting: instead of saving a file on your device, a site reads dozens of small details — your screen size, fonts, time zone, graphics hardware — and combines them into an ID that's often unique to you. No cookie required, and clearing your data does nothing to it.
You can see this for yourself. The Electronic Frontier Foundation runs a free page called Cover Your Tracks that acts like a real tracker and tells you, in plain numbers, how identifiable your browser is and whether your privacy tools block anything at all. For a lot of people, the result is a wake-up call.
What actually works: don't let the tracker load
One rule cuts through all of it: a tracker can't read a cookie, run a fingerprinting script, or log your visit if its code never loads in the first place.
Every other approach reacts after the fact — clean up, hide, or ask nicely. Blocking the request is the only one that stops the data from being collected at all. When a tracker or ad network tries to load on a page, a blocker refuses the connection. There's nothing left to read you with.
A good ad blocker does this quietly in the background: it strips out the ad slots and the trackers riding on them, and it can wave off the cookie-consent banners too. Pages also tend to load faster, because all that tracking code was never lightweight to begin with.
If you want one that does this without setup, Total AdBlock is a straightforward pick. It blocks ads, hidden trackers, and third-party cookies at the browser level, and independent testers at AdBlock Tester consistently rate its blocking among the strongest they measure.
**Start blocking trackers free →**
The one move to remember
Clearing cookies, a VPN, incognito, and "Do Not Track" each do something — just not the thing you reached for them to do. None of them stops a tracker from collecting you.
If you change one habit this week, make it this: block the trackers before they load, then run the EFF's test and watch your "uniqueness" score drop. That's the difference between cleaning up after you've been followed and not being followed in the first place.