Do Not Track Checker
Check if websites respect the Do Not Track (DNT) header.
What is Do Not Track (DNT)?
Do Not Track (DNT) is a web browser setting that requests that websites and online services not track your browsing activity. When enabled, your browser sends a DNT header with value "1" to every website you visit, signaling your preference for privacy.
The DNT header was introduced as a way to give users more control over their online privacy without requiring technical knowledge. However, honoring DNT is voluntary—websites are not legally required to respect it (except in specific jurisdictions like California under CalOPPA).
How DNT Works
- User Enables DNT: You enable DNT in your browser settings
- Browser Sends Header: Your browser includes "DNT: 1" in all HTTP requests
- Website Receives Signal: The website's server sees the DNT header
- Website Responds: The website can optionally send a "Tk" (Tracking Status) response header indicating how it handles DNT
- Website Decision: The website decides whether to honor the DNT request
The Tk (Tracking Status) Response Header
Websites that respect DNT can send a Tk response header to communicate their tracking status. Here are the possible values:
Tk: !
No Tracking - The site is not tracking this user, device, or browser. This is the only value that indicates full DNT compliance.
Example: A privacy-focused website that disables all analytics when DNT is present.
Tk: ?
Dynamic - The tracking status is still being determined. The site may still be evaluating its response to DNT.
Tk: G
Gateway - The site acts as a gateway or proxy but does not track. Used by intermediary services.
Tk: N
Not Tracking - The site is not tracking this particular request but may track other requests.
Tk: T
Tracking with Consent - The site is tracking but only with user consent (e.g., via a consent banner).
Tk: C
Tracking with Consent in Specific Context - Similar to "T" but limited to specific contexts.
Tk: P
Potential Consent - The site may track pending explicit consent.
Tk: D
Disregarding DNT - The site explicitly disregards the DNT signal and tracks regardless.
Tk: U
Updated - The tracking policy has been updated. Check for new information.
Current State of DNT
Despite its good intentions, DNT has had limited adoption and effectiveness:
- Voluntary Compliance: Most websites ignore DNT because it's not legally enforceable
- Browser Support Declining: Some browsers have removed or deprecated DNT support
- Industry Resistance: Ad networks and data brokers have largely ignored DNT
- Ambiguous Standard: Lack of clear definition of what "tracking" means
- Paradoxical Effect: DNT can actually make you more identifiable (fingerprinting)
Legal Requirements for DNT
California - CalOPPA
California's Online Privacy Protection Act (CalOPPA) requires websites to disclose how they respond to DNT signals. However, it doesn't require them to actually honor DNT—just disclose their practices.
European Union - GDPR
While GDPR doesn't specifically mention DNT, it requires consent for non-essential tracking. A DNT signal could be interpreted as withdrawing consent, but this is not explicitly stated in the regulation.
How to Enable DNT in Different Browsers
Google Chrome
- Go to Settings → Privacy and security → Cookies and other site data
- Enable "Send a 'Do Not Track' request with your browsing traffic"
Firefox
- Go to Settings → Privacy & Security
- Under Website Privacy Preferences, select "Tell websites not to sell or share my data"
Safari
Safari removed DNT support in 2019, citing ineffectiveness. Use Intelligent Tracking Prevention (ITP) instead, which is enabled by default.
Microsoft Edge
- Go to Settings → Privacy, search, and services
- Enable "Send 'Do Not Track' requests"
Better Alternatives to DNT
1. Global Privacy Control (GPC)
GPC is a newer standard that legally enforceable under privacy laws like CCPA and GDPR. It works similarly to DNT but has legal backing.
2. Browser Privacy Features
- Firefox Enhanced Tracking Protection: Blocks trackers by default
- Safari Intelligent Tracking Prevention: Limits cross-site tracking
- Brave Shields: Blocks ads and trackers automatically
3. Privacy Extensions
- uBlock Origin - Ad and tracker blocker
- Privacy Badger - Learns to block trackers
- DuckDuckGo Privacy Essentials - Comprehensive privacy protection
- Ghostery - Tracker blocker and privacy dashboard
4. VPN and Privacy-Focused Browsers
- Use a VPN to mask your IP address
- Consider privacy-focused browsers like Brave or Tor
Implementing DNT Support on Your Website
If you want to respect user privacy and honor DNT signals:
1. Detect the DNT Header
Check for the DNT header in incoming requests:
// JavaScript (server-side, e.g., Node.js)
if (req.headers['dnt'] === '1') {
// User has DNT enabled
// Disable tracking scripts
}
# Python (Flask)
from flask import request
if request.headers.get('DNT') == '1':
# Disable tracking2. Send the Tk Response Header
Indicate your tracking status:
# Python (Flask)
@app.after_request
def add_tracking_status(response):
if request.headers.get('DNT') == '1':
response.headers['Tk'] = '!' # No tracking
return response3. Disable Tracking Scripts
Conditionally load analytics and advertising scripts based on DNT status.
4. Update Your Privacy Policy
Clearly state how your website handles DNT signals.
DNT Browser Support
- Chrome: Supported
- Firefox: Supported (as "Do Not Sell")
- Safari: Removed in 2019
- Edge: Supported
- Opera: Supported
Limitations of DNT
- Not legally binding in most jurisdictions
- Widely ignored by websites
- Can increase fingerprinting
- Declining browser support
- No enforcement mechanism
Privacy Best Practices
- Use privacy-focused browsers
- Install tracker blocking extensions
- Clear cookies regularly
- Use private/incognito mode
- Consider a VPN
- Review privacy settings