I'm at the point that I wonder about the value of a VPN.
If you have something like nextdns.io and have that configured as Private DNS on Android, or within Firefox as your DNS-over-HTTPS endpoint... and then you browse sites over HTTPS... nothing is unencrypted any longer except the knowledge of which IP you are connecting to. But so many IPs are not shared, that direct meta-data attribution of what you looked at isn't possible.
There are weaknesses in this... putting nextdns.io into your router as the nameserver is probably using plain text UDP 53 still. But then, were you VPN'ing your DNS from the router? I don't think you were... and the above steps already take care of devices / web browsing.
The only remaining use for a VPN is geo-shifting to bypass restrictions on media streaming.
I've abandoned VPN use now... preferring encryption on every layer than encryption by tunnelling. But then, I'm not geo-shifting.