The Perils of Clicking: Tracking, Cookies, and Privacy in 2026

Last reviewed: June 2026. Clicking links is still one of the easiest ways to expose personal or business data, but the tracking landscape has changed since this article was first written.

What changed

Google's plan to broadly remove third-party cookies from Chrome changed. The UK Competition and Markets Authority noted that Google no longer planned to block third-party cookies in general browsing or prompt all users to make that choice in the originally proposed way.

What still matters

Trackers, cookies, malicious links, shortened URLs, fake login pages, and advertising profiles remain real privacy and security concerns. Businesses should combine browser settings, DNS filtering, password managers, multi-factor authentication, endpoint protection, and staff training.

Practical habit

Before clicking, check the sender, the domain, the destination, and whether the request makes sense. If a link asks for credentials, payment, or remote access, slow down and verify through a separate trusted channel.

Source checked

UK CMA Privacy Sandbox case update: https://www.gov.uk/cma-cases/investigation-into-googles-privacy-sandbox-browser-changes