Browser Fingerprinting: How Websites Track You Without Cookies (And How to Fight Back)
Google now allows browser fingerprinting for advertisers. Learn what browser fingerprinting is, how it identifies you with 99% accuracy, and practical steps to reduce your digital fingerprint.
Browser Fingerprinting: How Websites Track You Without Cookies
Cookies are dying. Browsers block them, laws regulate them, users delete them. But the advertising industry has found something better — browser fingerprinting. And in 2025, Google officially reversed its position and began allowing fingerprinting for ad targeting, removing the last major barrier to its widespread adoption.
What Is Browser Fingerprinting?
Browser fingerprinting collects dozens of data points from your browser and device to create a unique identifier — your "fingerprint." Unlike cookies, fingerprinting does not store anything on your device. It identifies you by how your browser looks and behaves.
Data Points Collected
| Category | Examples |
|---|---|
| Browser info | User agent, version, language, installed plugins |
| Screen | Resolution, color depth, pixel ratio, screen orientation |
| Hardware | Number of CPU cores, GPU model (via WebGL), available memory |
| Fonts | List of installed fonts (varies by OS and user installation) |
| Canvas | How your browser renders a hidden image (unique per device) |
| Audio | How your browser processes audio signals (AudioContext) |
| WebGL | GPU rendering characteristics |
| Network | IP address, connection type, timezone |
| Behavior | Typing speed, mouse movement patterns, touch behavior |
Individually, each data point is common. Combined, they create a fingerprint that is unique with over 99% accuracy across millions of users.
Why Google's Policy Change Matters
Until 2024, Google publicly opposed browser fingerprinting, calling it a practice that "subverts user choice and is wrong." Their Privacy Sandbox initiative was supposed to replace tracking cookies with privacy-preserving alternatives.
In February 2025, Google reversed course. The updated Google Ads policy now permits fingerprinting for ad measurement and targeting. The company cited the need for "consistent identification across platforms" as the reason.
This matters because:
- Chrome has 65% market share — Google's policies affect the majority of web users
- Legitimization — When Google endorses fingerprinting, the entire ad industry follows
- No opt-out — Unlike cookies, fingerprints cannot be easily deleted or blocked
- Cross-device tracking — Fingerprinting can link your phone, laptop, and tablet activity
How Fingerprinting Differs from Cookies
| Feature | Cookies | Fingerprinting |
|---|---|---|
| Stored on device | Yes | No |
| User can delete | Yes | No |
| Requires consent (GDPR) | Yes | Legally gray |
| Survives incognito mode | No | Yes |
| Works across browsers | No | Partially |
| Accuracy | Exact match | 99%+ unique |
| User visibility | Can be viewed/managed | Invisible |
The fundamental problem: you cannot clear your fingerprint. You cannot opt out. You cannot even see it. It is generated from the inherent properties of your device and browser.
How to Reduce Your Fingerprint
No solution completely eliminates fingerprinting, but you can make your fingerprint less unique.
Browser Choice
- Tor Browser — Designed to make all users look identical. Most effective anti-fingerprinting tool, but significantly slower
- Firefox with resistFingerprinting — Enable
privacy.resistFingerprintingin about:config. Reports standardized values for many data points - Brave Browser — Built-in fingerprinting protection that randomizes canvas, WebGL, and audio fingerprints
- Safari — Apple limits fingerprinting APIs and presents simplified data to trackers
Browser Settings
- Disable JavaScript — Blocks most fingerprinting techniques, but breaks many websites
- Use standard fonts only — Custom font installations make your fingerprint more unique
- Set standard timezone — Consider matching a common timezone
- Disable WebGL — Prevents GPU-based fingerprinting
- Use browser extensions sparingly — Ironically, privacy extensions can make your fingerprint more unique
Extensions That Help
- Canvas Blocker — Randomizes canvas fingerprint data
- uBlock Origin — Blocks known fingerprinting scripts
- Privacy Badger — Learns and blocks invisible trackers
What Does NOT Work
- Incognito/private mode — Does not change your fingerprint
- VPN alone — Changes IP but not other fingerprint data
- Clearing cookies — Fingerprinting does not use cookies
- Multiple accounts — Same device produces same fingerprint
The Bigger Privacy Picture
Browser fingerprinting is one piece of a larger tracking ecosystem. Your online activity is tracked through:
- Browser fingerprints
- Cookies (where still available)
- Login state (Google, Facebook, etc.)
- IP address and network data
- Device advertising IDs
- Purchase history
- Location data
Each tracking method fills in gaps left by others. Even if you block fingerprinting, other methods continue to collect data.
This is why compartmentalization matters. Do not send sensitive information through channels that can be tracked back to your identity. When you share passwords, financial data, or private links, the platform you use becomes part of your tracking profile.
LOCK.PUB lets you share sensitive information through password-protected, self-expiring links that do not require accounts or logins. No tracking cookies, no fingerprinting, no persistent data trail. The information exists only until it expires or is accessed.
Practical Fingerprinting Defense Strategy
Perfect anonymity is nearly impossible for everyday browsing. Instead, aim for a practical balance:
- Use Brave or Firefox with anti-fingerprinting settings for general browsing
- Use Tor for activities requiring genuine anonymity
- Separate identities — Use different browsers for different purposes (work, personal, sensitive)
- Block JavaScript on sites where you do not need interactive features
- Keep software updated — Outdated browsers have more identifiable characteristics
- Use common configurations — The more standard your setup, the harder to fingerprint
Looking Ahead
The death of cookies is not the end of tracking — it is the beginning of something harder to fight. Fingerprinting operates invisibly, persists across sessions, and now has Google's endorsement.
The best defense is awareness combined with action. Adjust your browser, minimize your unique characteristics, and keep sensitive data off trackable platforms. Use tools like LOCK.PUB for sharing anything you would not want linked to your browsing profile.
Your browser tells more about you than you think. Make it tell less.
Keywords
You might also like
Facebook Marketplace & Craigslist Safety: Protect Your Personal Info
Stay safe on Facebook Marketplace and Craigslist. Learn how to protect your personal information, avoid scams, and securely share details during local transactions.
Food Delivery App Privacy Risks — How DoorDash & Uber Eats Handle Your Data
Your food delivery apps know your address, phone number, payment info, and eating habits. Learn how to protect your privacy on DoorDash, Uber Eats, and Grubhub.
Discord & Telegram Public Group Privacy Risks You Need to Know
Understand the privacy risks of joining public groups on Discord and Telegram. Learn how to protect your identity, manage your profile, and communicate safely.
Create your password-protected link now
Create password-protected links, secret memos, and encrypted chats for free.
Get Started Free