
Many internet users believe that browsing in Incognito Mode, using a VPN, or enabling Cloudflare WARP makes them completely anonymous online. This belief is especially common among people who visit private websites, adult websites, discussion forums, or sensitive content platforms.
But is that actually true?
To find out, we conducted a real-world experiment on our own website using Cloudflare Workers and server-side logging. We visited the website under multiple browsing conditions and analyzed the exact information visible to a website owner.
The results may surprise you.
In this article, you'll learn:
- What information websites can see about visitors
- What changes when using Incognito Mode
- How VPNs and Cloudflare WARP affect tracking
- What browser fingerprinting really is
- What website owners cannot see without permission
- Whether adult websites can identify who you are
Why We Conducted This Test
Privacy is one of the most misunderstood topics on the internet, especially when users fail to recognize signs of potential security breaches on their own devices.
People often assume:
- Incognito Mode hides them from websites
- VPNs make them untraceable
- Cloudflare WARP completely anonymizes browsing
- Website owners can see everything on a user's device
In reality, none of these assumptions are entirely correct.
To understand the truth, we tested multiple browsing scenarios using our own Cloudflare-powered website and examined the data recorded in real server logs.
The findings in this article are based on actual Cloudflare Worker log data collected during testing. :contentReference[oaicite:0]{index=0}
Browsing Scenarios Tested
We visited our website using five different configurations:
1. Normal Chrome Browser
Standard browsing without any privacy tools.
2. Chrome Incognito Mode
Private browsing mode with no local history storage.
3. Chrome Incognito + Cloudflare WARP
Private browsing combined with Cloudflare's encrypted network service.
4. Chrome + VPN
Regular browser with a third-party VPN connection.
5. Chrome Incognito + VPN
Maximum privacy setup used by many users.
Also Read: What Are Signs My iPhone Is Hacked?
After each visit, we analyzed the server logs generated by Cloudflare.
What Information Can a Website See by Default?
Most websites can access significantly more information than users realize.
When a visitor opens a webpage, the browser automatically sends technical information through HTTP headers and network requests.
A website owner may see:
Network Information
- IP Address
- IPv4 or IPv6 Address
- Internet Service Provider (ISP)
- Autonomous System Number (ASN)
- Connection Type
Location Information
Based on IP geolocation databases:
- Country
- State/Region
- City
- Postal Code (Approximate)
- Latitude and Longitude (Estimated)
- Time Zone
Browser Information
- Browser Name
- Browser Version
- Rendering Engine
- Supported Features
Device Information
- Mobile or Desktop
- Operating System
- OS Version
- Device Model (Sometimes)
- Screen Characteristics
Technical Connection Information
- HTTP Protocol Version
- TLS Version
- Encryption Cipher
- Request Headers
- Accepted Languages
- Cookie Presence
- Referrer Information
During our test, Cloudflare logs displayed information such as:
- Country
- State
- City
- ISP
- Browser Version
- Android Version
- Device Model
- TLS Details
- HTTP Protocol Information
All of this was visible without the user entering any personal details. :contentReference[oaicite:1]{index=1}
Real Example From Our Logs
In one of our tests, Cloudflare recorded:
- Country: India
- State: Uttar Pradesh
- City: Kanpur
- ISP: Reliance Jio
- Browser: Chrome 148
- Device Type: Android Phone
- Device Model: Infinix X669C
- TLS Version: TLS 1.3
- Protocol: HTTP/3
The visitor never manually provided any of this information. It was automatically transmitted as part of the web request. :contentReference[oaicite:2]{index=2}
Comparison Table: What Changes With Incognito, WARP, and VPN?
| Information Visible to Website | Normal Chrome | Incognito | Incognito + WARP | VPN | VPN + Incognito |
|---|---|---|---|---|---|
| Real IP Address | Yes | Yes | No | No | No |
| Approximate Location | Yes | Yes | VPN/WARP Location | VPN Location | VPN Location |
| ISP Name | Yes | Yes | Usually Hidden | Hidden | Hidden |
| Browser Version | Yes | Yes | Yes | Yes | Yes |
| Device Type | Yes | Yes | Yes | Yes | Yes |
| Operating System | Yes | Yes | Yes | Yes | Yes |
| Language Settings | Yes | Yes | Yes | Yes | Yes |
| Browser Fingerprinting | Possible | Possible | Possible | Possible | Possible |
| Previous Session Cookies | Yes | Limited | Limited | Limited | Limited |
| Actual Identity | No | No | No | No | No |
Does Incognito Mode Make You Anonymous?
The short answer is no.
Incognito Mode mainly prevents data from being stored locally on your device.
It does:
- Not save browsing history
- Delete session cookies after closing
- Avoid saving form data
- Avoid saving searches locally
However, websites can still see:
- Your IP Address
- Browser Version
- Device Information
- Operating System
- Location Estimates
- Browser Fingerprint
This means Incognito protects privacy from other users of your device, not from websites.
What Does Cloudflare WARP Actually Hide?
Cloudflare WARP is often misunderstood.
WARP encrypts your connection and routes traffic through Cloudflare's network.
As a result:
Hidden Information
- Real IP Address
- Original ISP
- Actual Network Path
Still Visible
- Browser Type
- Operating System
- Device Characteristics
- Language Settings
- Screen Properties
- Fingerprinting Signals
A website may no longer know your exact internet provider, but it can still recognize many characteristics of your device.
What Does a VPN Hide?
VPN services primarily protect network-level privacy.
A VPN generally hides:
- Your Real IP Address
- Your ISP
- Your Approximate Physical Location
But VPNs do not automatically prevent:
- Browser Fingerprinting
- Cookie Tracking
- Account-Based Tracking
- Device Profiling
This is why logging into the same account while using a VPN does not make you anonymous.
Browser Fingerprinting: The Tracking Method Most Users Ignore
Even if your IP changes, modern websites can often identify returning visitors through browser fingerprinting.
Browser fingerprinting combines dozens of small details such as:
- Screen Resolution
- Time Zone
- Browser Version
- Installed Fonts
- Language Settings
- CPU Information
- Device Memory
- Canvas Rendering
- WebGL Characteristics
- Audio Processing Data
Combined, these details can create a highly unique browser profile.
Also Read: 10 mind blowing ai tools you must try in 2026
Can Adult Websites Know Who You Are?
This is one of the most searched privacy questions online.
In most cases, an adult website cannot directly see:
- Your Name
- Your Phone Number
- Your Aadhaar Number
- Your WhatsApp Chats
- Your Bank Account Details
- Your Passwords
However, the website can often see:
- Your IP Address (Unless Hidden by VPN/WARP)
- Your Device Type
- Your Browser
- Your Country
- Your Session Behavior
- Tracking Identifiers
- Browser Fingerprint
If you create an account, subscribe, make payments, or provide personal information, the website can obviously know much more.
What Additional Tools Can Website Owners Use?
Cloudflare is only one part of the picture.
Website owners often integrate additional tracking tools.
- Google Analytics
- Microsoft Clarity
- Meta Pixel
- Hotjar
- Mixpanel
- FingerprintJS
- Adobe Analytics
These tools can provide insights such as:
- Which pages you visited
- How long you stayed
- Where you clicked
- Scroll behavior
- Returning visits
- Traffic sources
- Conversion actions
What Websites Cannot Access Without Permission
Modern browsers enforce strict permission controls.
Without explicit user approval, websites generally cannot access:
- Camera
- Microphone
- Photo Gallery
- Contacts
- SMS Messages
- WhatsApp Chats
- Installed Applications List
- Banking Apps
- Device Files
If a website requests such access, the browser will usually display a permission prompt.
Biggest Privacy Myths Debunked
Myth 1: Incognito Mode Makes Me Invisible
False. It only prevents local history storage.
Myth 2: VPN Makes Me Untraceable
False. VPN hides your IP but not necessarily your browser fingerprint.
Myth 3: Websites Can See My Phone Number
False. Unless you provide it.
Myth 4: Adult Websites Know My Real Identity
Usually false. They know technical information, not necessarily who you are.
Myth 5: Website Owners Can Access My Phone
False. Modern browsers heavily restrict access to user devices.
Final Verdict
Our real-world Cloudflare log testing demonstrates that websites can collect a surprising amount of technical information about visitors, even when Incognito Mode is enabled. VPNs and Cloudflare WARP can effectively hide IP addresses and locations, but they do not automatically prevent browser fingerprinting, device identification, or behavioral analytics. :contentReference[oaicite:3]{index=3}
The most important takeaway is this:
Incognito Mode protects local privacy. VPNs protect network privacy. Neither guarantees complete anonymity online.
Understanding what websites can and cannot see is the first step toward making informed decisions about your digital era health and security.