You close the incognito tab. You think your browsing is private. Your ISP has a complete log of every site you visited.

Incognito mode is one of the biggest privacy myths on the internet. It hides your history from your browser, but your internet provider, websites, and network admins can still see everything.

Here’s exactly what your ISP tracks, why incognito mode doesn’t help, and how to actually browse privately.

What your ISP can see (everything)

1. Every domain you visit

When you type “reddit.com” into your browser, your device asks a DNS server to translate that into an IP address. Your ISP runs those DNS servers (unless you changed them), so they log every domain request.

What they see: reddit.com, netflix.com, amazon.com — every single site.

What they don’t see: Specific pages (reddit.com/r/privacy vs reddit.com/r/cats) if the site uses HTTPS.

2. Timestamps of every connection

Your ISP logs when you visit sites and how long you stay connected.

Example log entry:
2026-04-03 14:32:15 – User connected to reddit.com
2026-04-03 14:45:22 – User disconnected from reddit.com

3. Bandwidth and data usage

They can see how much data you transfer to/from each site. Streaming 4K video uses more bandwidth than reading text.

What this reveals: Whether you’re streaming video, downloading large files, or just browsing.

4. Your IP address and location

Every connection shows your IP address, which reveals your approximate location (city/region).

Check what your IP reveals: What Is My IP tool

5. Device information

Your device sends identifying information (User-Agent string) with every request. ISPs can see whether you’re on a phone, laptop, or tablet.

What incognito mode actually does

Incognito (or Private Browsing) only prevents your local browser from saving:

• Browsing history
• Cookies and site data
• Form autofill entries
• Download history (files remain on disk)

What it does NOT hide:

• Your activity from your ISP
• Your IP address from websites
• Your browsing from network admins (work/school)
• Your traffic from government surveillance

Think of incognito mode as covering your tracks on your device only. Everyone else still sees everything.

Why ISPs track your browsing

1. Data retention laws (mandatory logging)

Many countries require ISPs to store browsing data for 6 months to 2 years.

Examples:

• UK: Investigatory Powers Act requires 12 months of browsing history
• Australia: 2 years of metadata retention
• EU: Varies by country (some have data retention, others don’t)
• US: No federal requirement, but ISPs voluntarily log for months

2. Targeted advertising

ISPs sell anonymized browsing data to advertisers. You visit car websites, then see car ads everywhere.

In 2017, the US Congress repealed rules preventing ISPs from selling browsing history without consent.

3. Traffic management (throttling)

ISPs monitor which services you use so they can throttle bandwidth-heavy traffic like Netflix or torrents.

Related: Is Your ISP Throttling Your Internet?

4. Law enforcement requests

ISPs must provide browsing logs when served with subpoenas or court orders.

In the US, emails and browsing data older than 180 days can be accessed with just a subpoena (no warrant needed).

Who else can see your browsing (besides your ISP)

1. Network administrators (work, school, public Wi-Fi)

If you’re on someone else’s network, they can see the same data your ISP sees.

Work Wi-Fi: Your employer can log every site you visit, even on personal devices connected to company Wi-Fi.

Related: Can Your Boss See Your Personal Browsing?

2. VPN providers (if you use one)

A VPN hides your traffic from your ISP but shifts visibility to the VPN provider. Choose a verified no-logs VPN:

• PureVPN — Audited no-logs policy
• IPVanish — Independently verified

3. Websites you visit

Websites see your IP address, browser fingerprint, and behavior. They track you with cookies, pixels, and scripts.

Related: Browser Fingerprinting Explained

4. Government surveillance programs

NSA, GCHQ, and other agencies have direct access to ISP data through programs like PRISM.

Edward Snowden’s 2013 leaks revealed mass surveillance of internet traffic.

How to actually browse privately

1. Use a VPN (encrypts all traffic)

A VPN creates an encrypted tunnel between your device and the VPN server. Your ISP can see you’re connected to a VPN but can’t see which sites you visit.

How it works:

1. You connect to VPN server
2. All traffic is encrypted before leaving your device
3. ISP sees encrypted data going to VPN (can’t read it)
4. VPN server decrypts and forwards to destination
5. Response comes back through VPN, encrypted again

Best VPNs for privacy:

• PureVPN — 6,500+ servers, no-logs audited by KPMG
• IPVanish — Unlimited devices, annual third-party audits

Verify your VPN works: VPN Leak Test

2. Change your DNS server

Stop using your ISP’s DNS servers. Switch to privacy-focused alternatives:

Best DNS servers:

• Cloudflare: 1.1.1.1 and 1.0.0.1 (fastest, privacy-focused)
• Quad9: 9.9.9.9 (blocks malware domains)
• OpenDNS: 208.67.222.222 (family filter available)

How to change DNS:

1. Windows: Control Panel → Network and Sharing Center → Change adapter settings → Properties → Internet Protocol Version 4 → Use the following DNS server addresses
2. Mac: System Preferences → Network → Advanced → DNS → Add 1.1.1.1 and 1.0.0.1
3. Router: Log in to router admin panel → DNS settings → Replace ISP DNS with 1.1.1.1

Verify DNS change: DNS Checker Tool

Note: Changing DNS only hides which domains you look up. Your ISP still sees the IP addresses you connect to.

3. Use DNS over HTTPS (DoH)

DoH encrypts DNS queries so ISPs can’t see which domains you’re looking up.

Enable in browsers:

• Firefox: Settings → Privacy & Security → Enable DNS over HTTPS → Choose Cloudflare
• Chrome: Settings → Privacy and security → Security → Use secure DNS → With Cloudflare
• Edge: Settings → Privacy, search, and services → Use secure DNS → Choose provider

Related: What Is DNS-over-HTTPS (DoH)?

4. Use Tor Browser (maximum anonymity)

Tor routes your traffic through multiple encrypted nodes, making it nearly impossible to trace.

Pros:

• Hides browsing from ISP completely
• Anonymizes your IP address
• Free and open-source

Cons:

• Very slow (expect 5-10x slower than normal)
• Some websites block Tor exit nodes
• Not practical for streaming or downloads

Best for: Maximum privacy needs (journalists, activists, whistleblowers)

Learn more: How Tor Works

5. Use HTTPS everywhere

HTTPS encrypts the content of your browsing. Your ISP can still see which domain you visit (netflix.com) but not which page (/watch/stranger-things).

Force HTTPS: Install HTTPS Everywhere extension (by EFF) or use browsers that force HTTPS by default (Brave, Firefox with strict mode).

6. Disable WebRTC (prevents IP leaks)

WebRTC can leak your real IP even when using a VPN.

Disable in browsers:

• Firefox: Type about:config → Search media.peerconnection.enabled → Set to false
• Chrome: Install WebRTC Leak Prevent extension
• Brave: Built-in WebRTC protection (enabled by default)

Test for leaks: VPN Leak Test (includes WebRTC check)

What data can ISPs sell?

In the US, ISPs can sell “anonymized” browsing data to advertisers without your explicit consent.

What they sell:

• Browsing history (sites visited, times, duration)
• App usage data
• Location data (from mobile connections)
• Demographic information

Who buys it: Ad networks, data brokers, market research firms

How to opt out:

• AT&T: Account settings → Privacy choices → Uncheck all marketing options
• Verizon: My Verizon → Privacy settings → Custom Experience → Turn off
• Comcast: Account → Privacy Center → Do Not Sell My Personal Information

Better solution: Use a VPN so they can’t collect the data in the first place.

Can incognito mode ever be useful?

Yes, but only for local privacy:

Good uses:

• Shopping for gifts on a shared computer
• Logging into multiple accounts on same site
• Testing websites without cached data
• Preventing cookies from being stored locally

Bad uses (doesn’t work):

• Hiding from ISP
• Bypassing paywalls (most detect incognito)
• Hiding from work/school network admins
• Avoiding targeted ads (advertisers track via fingerprinting)

Frequently Asked Questions

Can my ISP see HTTPS websites I visit?

They can see the domain (google.com) but not the specific page (/search?q=privacy+tips) or content. HTTPS encrypts the data but not the destination.

Does incognito mode hide my IP address?

No. Your IP address is visible to websites and your ISP regardless of browser mode. Use a VPN to hide your IP: PureVPN.

Can my ISP see what I watch on Netflix?

They can see you’re connected to Netflix and how much data you’re using, but can’t see which shows you watch (Netflix uses HTTPS).

Will changing DNS stop ISP tracking?

Partially. Changing DNS hides domain lookups from your ISP, but they still see the IP addresses you connect to. For full privacy, use a VPN.

Can police request my browsing history from my ISP?

Yes, with a subpoena or court order. In the US, data older than 180 days requires only a subpoena (easier to obtain than a warrant).

Does clearing browser history hide browsing from ISP?

No. Clearing history only removes it from your device. Your ISP’s logs remain intact. Why Clearing Browser History Doesn’t Delete Anything.

Bottom line: Incognito mode is theater, not security

Incognito mode gives you privacy from people using your device. It gives you zero privacy from your ISP, websites, or network admins.

For real privacy:

1. ✅ Use a VPN: PureVPN or IPVanish
2. ✅ Change DNS to Cloudflare (1.1.1.1)
3. ✅ Enable DNS over HTTPS in your browser
4. ✅ Use HTTPS Everywhere extension
5. ✅ Disable WebRTC

Test your privacy:

• Check what your IP reveals
• Test for VPN leaks
• Verify DNS settings

Your ISP sees everything. Incognito mode doesn’t change that. A VPN does.