Browser & Tracking

Do Not Track (DNT)

About 3 min read

Last updated: 2026-01-18

What Is Do Not Track

Do Not Track (DNT) is an HTTP header mechanism that signals websites from the browser that the user prefers not to be tracked. When a user enables DNT in their browser settings, a DNT: 1 header is appended to all HTTP requests.

DNT standardization was initiated following a 2009 proposal by the FTC (U.S. Federal Trade Commission), and it was implemented in major browsers around 2011. However, subsequent developments diverged significantly from expectations.

Why DNT Does Not Work

The biggest problem with DNT is its lack of legal binding force. Websites have no obligation to comply with the DNT header. In practice, the vast majority of major ad networks and social media platforms ignore the DNT signal.

The W3C (World Wide Web Consortium) officially discontinued DNT standardization work in 2019. The main reasons were:

  • The advertising industry refused to support DNT, making it ineffective
  • The percentage of users enabling DNT was too low, giving websites no incentive to comply
  • Paradoxically, having DNT enabled itself became a browser fingerprinting element, potentially aiding user identification

Alternatives to DNT

Following DNT's failure, more effective mechanisms have emerged.

  • GPC (Global Privacy Control): Proposed in 2020 as DNT's successor. Its key difference from DNT is that it works in conjunction with California's CCPA and the EU's GDPR, giving it legal backing. Firefox and Brave enable it by default.
  • Browser tracking protection features: Safari's ITP, Firefox's ETP (Enhanced Tracking Protection), and similar features technically block tracking at the browser level. Since they don't require website cooperation, they work reliably.
  • Cookie consent banners: Under GDPR, websites in the EU are required to obtain explicit user consent before using tracking cookies.

Recommended Countermeasures Today

While enabling DNT is harmless, relying on it alone is risky. Combine it with effective countermeasures:

  • Block third-party cookies in your browser settings
  • Use browsers with strong tracking protection, such as Firefox or Brave
  • Install extensions that block tracking pixels (such as uBlock Origin)
  • Use browsers or extensions that support GPC
  • Use privacy-focused search engines

History of DNT and Evolution to GPC

Looking back at DNT's history reveals the lesson that technical standards alone cannot achieve privacy protection.

DNT standardization timeline: In 2009, the FTC proposed a "Do Not Track" mechanism, and in 2011, Firefox 4 became the first browser to implement the DNT header. IE 9, Safari, and Chrome followed suit the same year. In 2012, the W3C established the Tracking Protection Working Group to begin standardization. However, advertising industry representatives and consumer groups could not even agree on the definition of "tracking," and discussions stalled. In 2015, advertising industry representatives withdrew from the Working Group, and in 2019, the W3C officially abandoned standardization.

GPC's legal backing: GPC (Global Privacy Control) was designed with legal enforceability in mind, learning from DNT's lessons. California's CCPA/CPRA legally recognizes GPC signals as "opt-out requests for the sale or sharing of personal information." In 2024, the California Attorney General took enforcement action against a company that ignored GPC signals. Colorado and Connecticut privacy laws also recognize GPC, and legal backing is expanding.

Practical privacy enhancement strategies: Browser choice and configuration are the most effective countermeasures. Firefox has ETP (Enhanced Tracking Protection) enabled by default, automatically blocking known trackers. Its "Container Tabs" feature can isolate tracking from social media and shopping sites on a per-site basis. Brave blocks ads and trackers by default and has GPC enabled. Among extensions, uBlock Origin blocks a wide range of trackers using filter lists, and Privacy Badger automatically detects trackers using machine learning. Combining these achieves effective privacy protection without relying on DNT.

To learn more about this topic, see What Is Do Not Track (DNT)? How to Set It Up and Its Real Effectiveness.

Common Misconceptions

Enabling Do Not Track prevents websites from tracking you
DNT is merely a preference signal and has no legal binding force. The vast majority of websites and ad networks ignore the DNT signal.
Do Not Track has been discontinued, so there is no point in enabling it
While W3C standardization was discontinued, some privacy-focused websites still respect DNT. Additionally, its successor GPC has legal backing and is becoming more effective. There is no downside to enabling it.
Share

Related Terms

Cookie A small data file stored in the browser by a website to remember user preference… Tracking Pixel A transparent 1x1 pixel image (also called a web beacon or pixel tag) embedded i… Browser Fingerprint A technique that identifies and tracks users based on unique combinations of bro… GDPR (General Data Protection Regulation) The European Union's comprehensive regulation governing the protection of person… Privacy-Focused Search Engine A search engine designed to protect user privacy by not collecting, storing, or … App Tracking Transparency A privacy framework introduced by Apple in iOS 14.5 (April 2021) that requires a…

Related Articles

What Is Do Not Track (DNT)? How to Set It Up and Its Real Effectiveness Learn about the Do Not Track browser setting, how to enable it in each browser, its limitations, and… Cookies and Tracking: How Your Online Behavior Is Being Monitored Understand the differences between first-party and third-party cookies, how ad tracking works, and h… Why Time Synchronization Matters - NTP and the Failures Caused by a One-Second Drift Learn about NTP's Stratum hierarchy, why TLS certificates, TOTP, and Kerberos depend on accurate tim…
← Glossary