Another common method for cross-website tracking are unique identifiers embedded into URLs, for example, in query parameters. To give people control over where they can be tracked, another new protection is removal of tracking parameters as part of browser navigation, and when copying a link. When a tracking parameter is detected,
What is the detection rule of the request browser?
For reference I believe the referenced change is "Added blocking for known tracking query parameters in links in Private Browsing. (99360362)": https://developer.apple.com/documentation/safari-release-notes/safari-17-release-notes
I would also love to know how the filtering logic works. Primarily, I'm wondering if/how Safari would be able to leave alone valid campaign IDs (not tied directly to user).