Yes you heard right, the private data modes which are offered by Chrome, Firefox & Co. are useless, they don’t prevent you from been tracked, what they basically do is that they block the access to the local storage and restricting several other mechanisms, but modern tracking technologies don’t need local storage access.
These modes are ‘optional’ and in my opinion, the logic behind is horribly wrong because:
Developers often need to implement other ways to e.g. not break AV products, because odern AV products interceptingininto your HTTP/HTTPS traffic directly to filter it, which is a complicated process and some browser security mechanism might get problems with such techniques, such process means more work, because Browser developer need to fix the ‘AV mess’ and self-created problems because of that.
All security-related Browser mechanism are behind of the current web-tracking defaults and because of these people going to trust add-ons instead, this is another horrible failure and the Browser Developer should be made responsible to at least provide or explain that there certain things which are not blocked by default, so that the default user is aware that there techniques out there which he needs manually to take care of, ideal the developer would work on this and provide an own implementation to ‘fix’ this. It’s not that Canvas & Co. are new, there exist since many many years and there are easy solutions available like e.g. to fake the output data but Chrome, Firefox & Co. refuse to implement something to avoid this - for no reason.
If you use Firefox Chrome, at the end it doesn’t matter, cause you need to manually tweak them anyway, install add-ons and if you do not want to waste your lifetime on this you are mostly the same way vulnerable. I’ve not seen any ‘privacy’ focused Browser ever, every Browser collects data, every Browser needs addons to fix 10 or more years old tracking mechanism and at the end the normal user will never spend his entire day to adjust each domain, only a handful of people really doing it, instead there just installing an adblocker, but the thing is that an adblocker doesn’t protect you from the pages which you allowed, which means if you whitelisted/allowed example.com because you need to login into that page you’re almost as vulnerable as not using any ads-blocker or security addon because you can be monitored anyway with programs like OpenPWM (WebTAP) or other third-party scripts which are maybe implemented into the domain. Blocking 3rd-party scripts only helps as long you do not need them, as soon as some functions are depending on them and you whitelisted them you’re ‘doomed’ since you Browser won’t take care of it.
The problem is because of the tracking, spying and so people not turn their adblockers off for pages which are depending on it and I understand it because you never know if it’s infected or compromised or if it’s not trying to track you. At the end, the ads industry doomed themselves with it because people trying to ‘overblock’ everything to avoid malware/crypto hijacking & co.
There is no solution for this, some pages now trying to integrate buttons to support the page with ads or via crypto background mining but this is maybe not what most people want - and again the little pages suffering from it.
In my opinion, we need solutions directly implemented into the Browser for everyone, not optional - just for everyone out of the box, box about:config, about:flags or add-ons. Because how many time you overall waste to configure your Browser just to gain a little bit more privacy is not worth at the end you still getting tracked from those sites you allowed.
Tracking gets more and more aggressive, ironical with more anti-tracking add-ons you only force the ads industry to come up with something new and the circle is then closed. What can you do, use a Pi-Hole and block the tracking domains, and all other domains?! Or you go the addon day and waste your entire day trying to get the website running, who really does that?
Hell no! But maybe take the pressure on the Browser creator and ask them why he doesn’t implement something against IFrames, Canvas & Co. instead of installing add-ons, that would maybe the better decision to get attention to the real problem, of course installing an add-on in the meantime is a workaround.
It’s really hard these days and there seems to be no solution, everything has pros and cons like with almost everything in life but it could be easier.