What's wrong with the DNS that your internet service provider offers (other than the fact that they probably resell your browsing history)?
They resell your browsing history. Especially in the US. It is enough.
I use 1.1.1.1 and 1.0.0.1 https://1.1.1.1/dns/. Seems like the least bad option to me. To do it right, you should encrypt your communications with your DNS since your ISP can read it otherwise. Some even spoof replies from other DNS servers you query. Sickening.
What makes you think they're any better than your ISP? Yeah, the presence of APNIC sort of helps, but, Cloudflare still is a company with share holders.
Firefox has an option for DNS over HTTPS that may work for you. Remember that Chrome essentially has it's own TCP stack and you can assume that your browsing history is being sent to Google some way or another. Internet Explorer is just a nightmare.
...and that DoH (official IETF acronym for that shit-storm of a stupid idea, not that I have strong opinions on that, Nooooo!) setup Firefox is using happily feeds Cloudflare with your query data.
There still is nothing wrong with running a
validating resolver on your own iron,
without stupid forwarders into the big data collecting gang (any of 8.8.8.8, 8.8.4.4, 1.1.1.1, 9.9.9.9 or your ISP), only bootstrapping with the root zone and its key.
Remember, validating DNS replies lets you verify that your queries aren't answered with lies. Regardless what shite filters they passed through on the way to you. Assuming the things you're looking for are signed, of course. In Sweden, most important things are. In the US, NIST has mandated it for federal authorities, and at least my little sampling indicates that it is so.
Your data is valuable to the hooverers of the Internet. But only to an extent. (depending on who you are) In most cases, it is enough to make collection expensive, and it will stop.
You sending ALL your computers queries to one single instance, in an identifiable trail of breadcrumbs, is both valuable and cheap.
All queries from your household, aggregated and cache optimised, then scattered over the entire corpus of name servers hosting zones on the Internet, that is expensive to collect.
Of course, you can be tracked anyway; the three-letter agencies are doing it (by tapping fibers and looking for things in the data), but the fire hose they drink from is pretty thick, so they must focus.
The advertisers and ISP's either can't tap like that and most often couldn't afford to do it even if they technically could do it.