Private Browser – How to use Incognito Mode in Chrome and Safari

In today‘s digital landscape, online privacy has become a paramount concern for users and developers alike. With the proliferation of tracking technologies, targeted advertising, and data breaches, it‘s more important than ever to understand the tools available for protecting your privacy on the web. One such tool is private browsing, also known as "incognito mode" – a feature offered by most modern web browsers to provide an extra layer of local privacy when surfing the internet.

As a full-stack developer and professional coder, I often rely on private browsing to test websites and debug issues without interference from cached data or existing login sessions. But beyond its utility for developers, private browsing is an essential privacy tool that every internet user should understand. In this in-depth guide, we‘ll explore what private browsing is, how it works under the hood, and how to enable it in two of the most popular browsers: Google Chrome and Apple Safari. We‘ll also dive into the benefits and limitations of private browsing, discuss best practices for staying secure online, and explore some advanced privacy threats that even incognito mode can‘t protect against.

The State of Online Tracking

Before we dive into the specifics of private browsing, let‘s take a step back and look at the state of online tracking. When you browse the web, you leave behind a trail of digital breadcrumbs in the form of cookies, IP addresses, browser fingerprints, and more. This data can be used by websites, advertisers, and other third parties to track your activity across the internet and build detailed profiles of your interests, behaviors, and even your identity.

According to a 2019 study by Ghostery, 79% of websites globally contain at least one tracker, with an average of 9.47 trackers per page. Google, Facebook, and Amazon are among the most prevalent trackers, present on over 20% of sites. The study also found that news and media sites tend to have the highest number of trackers, with an average of 12.4 per page.

Category	Average # of Trackers
News/Media	12.4
Shopping	9.1
Travel	8.9
Business	8.2
Technology	7.9

Source: Ghostery Tracking the Trackers 2019 Study

This widespread tracking allows companies to gather vast amounts of data about users‘ online activities, which can be used for targeted advertising, personalization, and even more nefarious purposes like discrimination or manipulation. A 2020 survey by Pew Research Center found that 79% of Americans are concerned about how companies use their data, and 64% believe the government should do more to regulate data collection.

As developers, we have a responsibility to prioritize user privacy and be transparent about any data collection or tracking on the sites and apps we build. By promoting privacy-focused tools and practices, we can help create a safer and more trustworthy online ecosystem.

How Private Browsing Works

Private browsing, or incognito mode, is a feature offered by most modern web browsers that creates a temporary session isolated from your main browsing data. When you open a private browsing window, the browser creates a new cookie store and local data directory that is separate from your regular browsing session. Any cookies, site data, or browsing history generated during the private session are stored in memory only and are automatically erased once you close the incognito window.

Here‘s a simplified overview of how private browsing works under the hood in Chrome and Safari:

1. When you open a new incognito window, the browser creates a new session with a temporary cookie store and local data directory.
2. As you browse, any cookies set by websites are stored in the temporary cookie store only for the duration of the session.
3. Browsing history, search history, and download history are not recorded in the browser‘s main history database.
4. Autofill data and password saving are disabled in incognito mode to prevent sensitive data from being stored.
5. When you close the incognito window, the temporary cookie store and data directory are erased, leaving no trace of your activity on your local device.

It‘s important to note that private browsing only prevents data from being stored locally on your device. It does not hide your activity from the websites you visit, your internet service provider (ISP), or any network administrators. Your IP address and other identifying information can still be tracked and logged by these entities.

Additionally, any bookmarks created or files downloaded during a private browsing session will still be saved on your device after the session ends. Private browsing also does not protect against malware or phishing attacks, so it‘s crucial to still exercise caution when clicking links or downloading files from unfamiliar sources.

Enabling Private Browsing in Chrome

To open a new incognito window in Google Chrome, follow these steps:

1. Click the three-dot menu icon in the upper-right corner of the Chrome window.
2. Select "New Incognito Window" from the dropdown menu.
3. A new window with a dark theme and incognito icon will appear, indicating that you‘re now browsing privately.

Alternatively, you can use a keyboard shortcut to open an incognito window:

• Windows/Linux: Press Ctrl + Shift + N
• Mac: Press ⌘ + Shift + N

Once you have an incognito window open, any tabs you open within that window will be part of the private browsing session. To exit incognito mode, simply close the window.

Enabling Private Browsing in Safari

Enabling private browsing in Safari is a similar process:

1. Click "File" in the menu bar at the top of the Safari window.
2. Select "New Private Window" from the dropdown menu.
3. A new window with a dark address bar will appear, indicating that you‘re now in private browsing mode.

You can also use a keyboard shortcut to open a private browsing window in Safari:

• Press ⌘ + Shift + N

To exit private browsing mode, close the private window or select "Close All Private Windows" from the "File" menu.

Benefits of Private Browsing for Developers

As a full-stack developer, I find private browsing to be an invaluable tool for testing and debugging websites. By opening a new incognito window, I can ensure that I‘m viewing the site with a clean slate, free of any cached data, cookies, or login sessions that might interfere with the expected behavior.

Private browsing is particularly useful when testing features like user authentication and registration flows. By using an incognito window, I can simulate the experience of a new user visiting the site for the first time, without any existing cookies or session data. This helps me ensure that the registration and login processes are working smoothly and securely.

Incognito mode is also handy for testing responsive designs and cross-browser compatibility. By resizing an incognito window or opening the site in multiple incognito tabs set to different device sizes, I can quickly check how the layout and functionality adapt to various screen sizes and resolutions.

Lastly, private browsing can be a lifesaver when debugging issues related to browser caching. If I‘m seeing unexpected behavior on a site and suspect that cached data might be the culprit, I can open an incognito window and see if the issue persists. If it doesn‘t, then I know the problem is likely related to caching, and I can take steps to fix it.

Limitations of Private Browsing

While private browsing offers clear benefits for developers and users alike, it‘s not a silver bullet for online privacy. Here are some key limitations to keep in mind:

1. IP Address and Location Tracking: Private browsing does not hide your IP address or physical location from the websites you visit or your ISP. These entities can still track and log your online activity, even in incognito mode.
2. Network Monitoring: Private browsing does not encrypt your internet traffic or prevent network administrators from monitoring your activity. If you‘re using a public Wi-Fi network or a corporate network, your browsing data may still be visible to others.
3. Browser Fingerprinting: Even in private browsing mode, websites can use various techniques to uniquely identify your browser and track your activity across sessions. Browser fingerprinting involves collecting data points like your screen resolution, installed fonts, browser plugins, and more to create a unique "fingerprint" that can be used to track you, even without cookies.
4. Malware and Phishing: Private browsing does not protect against malware, viruses, or phishing scams. If you click on a malicious link or download an infected file while in incognito mode, your device can still be compromised.
5. Extension Activity: Some browser extensions may still track your activity or store data while in private browsing mode, depending on their permissions and configuration. It‘s important to be mindful of which extensions you have installed and to only trust extensions from reputable sources.

As developers, it‘s crucial that we educate users about the limitations of private browsing and encourage them to use additional privacy tools like VPNs, ad blockers, and privacy-focused browsers for more comprehensive protection.

Advanced Privacy Threats

Beyond the limitations of private browsing, there are some advanced privacy threats that even the most cautious users may not be aware of. As developers, it‘s important to stay informed about these threats and take steps to protect our users‘ privacy in the apps and websites we build.

One such threat is browser fingerprinting, which we mentioned briefly earlier. Fingerprinting scripts can collect a wide range of data points about a user‘s browser and device, including:

• User agent string
• Screen resolution and color depth
• Installed fonts
• Browser plugins and extensions
• Time zone
• System language
• Hardware specs (e.g. CPU, GPU, battery level)

By combining these data points, trackers can generate a unique fingerprint that identifies a specific browser instance with a high degree of accuracy. This means that even if a user clears their cookies or uses private browsing, they can still be tracked across sessions and websites.

To mitigate the risk of browser fingerprinting, developers can take steps like:

• Using generic user agent strings and minimizing the uniqueness of the browser environment
• Avoiding excessive use of plugins and extensions in production code
• Implementing anti-fingerprinting measures like canvas randomization or WebGL fingerprint blocking
• Encouraging users to use privacy-focused browsers with built-in fingerprinting protection, like Tor or Brave

Another advanced threat to be aware of is cross-site tracking via social media widgets and embedded content. Many websites include social media buttons, comment sections, or other third-party content that can be used to track users‘ activity across different sites. Even if a user doesn‘t interact with these elements, their presence on the page can still allow the third-party provider to log the visit and associate it with the user‘s profile.

To protect users from cross-site tracking, developers should:

• Minimize the use of third-party content and social media widgets where possible
• Use privacy-friendly alternatives like self-hosted comment systems or share buttons
• Implement Content Security Policy (CSP) headers to restrict the loading of external scripts and content
• Provide clear disclosures and opt-out mechanisms for any third-party tracking or data sharing

By staying informed about these advanced privacy threats and taking proactive steps to mitigate them, we can help create a more privacy-focused web for everyone.

Best Practices for Private Browsing

To get the most out of private browsing and minimize the risk of data leakage or privacy breaches, follow these best practices:

1. Use private browsing for sensitive tasks only: Private browsing is best used for specific, sensitive activities like online banking, shopping, or accessing medical information. For general browsing, it‘s okay to use a regular window.
2. Close all private windows when finished: To ensure that no data is left behind, always close all private browsing windows when you‘re done with your sensitive tasks. This will erase any temporary cookies or site data from memory.
3. Don‘t sign in to accounts unless necessary: While private browsing prevents your login details from being saved locally, signing in to accounts can still leave a trace on the website‘s servers. Only sign in if absolutely necessary for the task at hand.
4. Be cautious of downloads: Any files you download while in private browsing mode will still be saved on your device after you close the session. Be mindful of what you download and where you save it.
5. Use a VPN for added privacy: For an extra layer of privacy, especially on public Wi-Fi networks, use a reputable VPN service to encrypt your internet traffic and mask your IP address.
6. Enable additional privacy features: Many browsers offer additional privacy settings like "Do Not Track" headers, third-party cookie blocking, and tracker protection. Enable these features for even more privacy protection.
7. Keep your browser updated: Browser updates often include security patches and privacy improvements, so be sure to keep your browser up to date for the best protection.

Promoting Privacy as Developers

As developers, we have a unique opportunity and responsibility to promote privacy-focused tools and practices to our users. Here are a few ways we can make a difference:

1. Implement privacy by design: When building websites and apps, make privacy a core consideration from the start. Minimize data collection, use encryption wherever possible, and provide clear privacy policies and controls for users.
2. Choose privacy-focused tools: When selecting third-party libraries, APIs, or services for our projects, prioritize those with strong privacy protections and transparent data practices. Avoid tools that engage in excessive data collection or sharing.
3. Educate users about privacy: Use our platforms and interactions with users to raise awareness about online privacy risks and best practices. Provide tips and resources for staying safe online, and be transparent about any data collection or tracking in our own products.
4. Advocate for privacy legislation: As tech industry professionals, we can use our voices to advocate for stronger privacy laws and regulations. Support initiatives like GDPR, CCPA, and other efforts to give users more control over their data and hold companies accountable for privacy breaches.
5. Contribute to privacy-focused open source projects: Many of the most powerful privacy tools, like Tor, Signal, and GPG, are open source projects maintained by volunteers. Consider contributing code, documentation, or financial support to these projects to help strengthen the privacy ecosystem.

By promoting privacy as a core value and empowering users with the knowledge and tools to protect their data, we can help build a more privacy-respecting internet for everyone.

Conclusion

Private browsing is a valuable tool for maintaining local privacy on the web, but it‘s important to understand its benefits and limitations. As we‘ve seen, incognito mode can help prevent sensitive data from being stored on your device, but it doesn‘t provide complete anonymity or protection from tracking by websites, ISPs, or network administrators.

For developers, private browsing is a handy tool for testing and debugging, but it‘s only one part of a comprehensive privacy strategy. We must also be aware of advanced threats like browser fingerprinting and cross-site tracking, and take steps to minimize these risks in our own projects.

Ultimately, online privacy is a shared responsibility between users, developers, and policymakers. By adopting privacy-focused practices in our work, promoting privacy tools and education to our users, and advocating for stronger legal protections, we can help create a safer and more trustworthy internet for everyone.

Remember, privacy is not about hiding something shameful – it‘s about maintaining control over our personal information and online identities. As developers, we have the power and the responsibility to lead the way in building a more privacy-focused web. Let‘s embrace this challenge and work together towards a future where online privacy is the norm, not the exception.