Use a modern browser and follow the instructions here: https://www.eff.org/https-everywhere For keeping data private while in-flight between your computer and the destination website, you don't need a VPN - you need HTTPS. Like @Kurlon noted, most websites (and ALL medical and financial websites) already implement this and you're probably already using it. Modern browsers, or setups with HTTPS Everywhere, will go a step further and refuse to connect to a non-HTTPS website. VPNs, like others have noted, only protect communication from your computer to the VPN endpoint. And, again like many others have noted, many of those aren't even really doing that.
Never forget. You are the product. https://arstechnica.com/tech-policy...browsing-data-from-its-browsing-privacy-apps/