Every website you visit, every video you stream, every app that pings home — your ISP is the last hop, and they see all of it. Here's how that tracking actually works, what's logged, and what you can do.

What your ISP can see

• Every domain you connect to — even with HTTPS, the domain name leaks via DNS and TLS Server Name Indication (SNI).
• Every IP you communicate with — including game servers, IoT devices, app backends.
• How much data and when — bandwidth patterns reveal streaming, gaming, video calls, even which streaming service.
• Your real-world identity — they billed you for the line, with your name and address.

What HTTPS hides from them

The page contents — what you read, type, click. They see you went to nytimes.com but not which articles. Encrypted SNI (ECH) and DNS-over-HTTPS hide the rest, but most users don't have both enabled.

How long they keep it

Varies by country and ISP. In the US: typically 6 months to 2 years. EU: 6–24 months under various data-retention laws. Australia: 2 years mandated. UK: 12 months. Court orders can compel ISPs to retain a specific user's logs longer.

What ISPs do with the data

• Network management and abuse response
• Compliance with subpoenas and law enforcement requests
• In some jurisdictions: targeted advertising or data sales
• Bandwidth-shaping decisions (throttling streaming or P2P)

How to limit what your ISP sees

1. Use a VPN — your ISP sees only encrypted traffic to one IP (the VPN). They can't see which sites you're visiting.
2. Enable DNS-over-HTTPS in your browser — Settings → Privacy & Security → DNS. Pick Cloudflare or Google.
3. Use Encrypted Client Hello (ECH) where supported.
4. Use Tor for the cases where even your VPN provider shouldn't know.

More ways to hide your IP.

Try it now

Curious what your IP is showing the world right now? Check your IP address & location instantly with our free tool — no signup, nothing stored. Or trace any other IP to see its geolocation, ISP, and network details.