Many UK internet users are unaware of the extent to which their online activity is monitored and recorded. Under the Investigatory Powers Act 2016, ISPs are legally required to retain detailed records of your internet use.
What Your ISP Can See
Your internet service provider has visibility into:
- Every website you visit: The domain names of all websites you access, stored for 12 months
- When you access them: Timestamps of each connection
- How much data you transfer: Upload and download volumes
- Your IP address: Linked to your account and home address
Note that ISPs cannot see the specific pages you visit on HTTPS sites (they can see the domain but not the full URL), nor can they see the content of encrypted communications.
Who Can Access This Data
Under the IPA, your browsing data can be accessed by dozens of government agencies without a warrant, including:
- Police forces
- HMRC
- Home Office
- Local councils
- Various intelligence agencies
How a VPN Protects You
When you use a VPN, your ISP can only see that you have connected to a VPN server. They cannot see which websites you visit, when you visit them, or what data you transfer. Your DNS queries are also encrypted, preventing DNS-based monitoring.
Beyond Your ISP
Your ISP is not the only entity tracking you online:
- Advertisers use cookies, fingerprinting, and tracking pixels
- Search engines build detailed profiles of your queries
- Social media platforms track you across the web
A VPN addresses ISP surveillance but not browser-level tracking. For comprehensive privacy, combine a VPN with a privacy-focused browser and tracker blockers.
Practical Steps for UK Users
- Use a reputable VPN with a verified no-logs policy
- Enable encrypted DNS (DNS over HTTPS) in your browser
- Use browser extensions like uBlock Origin for tracker blocking
- Consider a privacy-focused search engine like DuckDuckGo
Compare VPNs for privacy to find the most secure option for UK users.