You might not know this but your web browser -- out of the box -- isn't nearly as private or secure as you might want it to be. You see, most web browsers default to standard DNS, which is the service that translates things like zdnet.com to an IP address the web browser can locate. Without DNS, everyone would have to type http://34.149.132.124 instead of http://zdnet.com. 

I don't know about you, but I don't want to have to memorize a bunch of IP addresses.

The problem with standard DNS is that every time you do a search or even visit a web page, the search string or address is sent in plain text, which means anyone with the skills can intercept and read the traffic from your web browser. 

Also: Here's how to enable DoH in each browser, ISPs be damned

However, there's a little something called DNS over HTTPS that encrypts those searches and addresses. DNS over HTTPS can also prevent "man in the middle" attacks and spoofing