A big percentage of sites where I am seeing hcaptcha, were setup by myself. I’m a systems engineer and I set cloudflare on dozens of clients a week, The security settings are medium, WAF is enabled for some countries, show captcha chanllenge once a day.
I can whitelist my IP, but that is only valid for the sites I have access to.
The issue to me, is frequency.
I can solve hcaptchas successfully in one site, switch to another, same account, same settings, and bam. Captcha.
Solving captchas one, on any cloudflare site should be enough to know that I am human for at least a few hours or a day, on any other cloudflare site.
I don’t care what Google does with my data because I only provide what I want to provide, and even then, I am more than happy when they suggest me stuff that I wouldn’t find otherwise, such as news according to my interests.
As for recaptcha, I am also happy supporting google, or whoever would use it for machine learning. Better technology, regardless of who owns it, benefits everyone in the future.
And no, I am not going to install privacy pass just for this. Maybe if cloudflare creates an extension with some other features, I would consider, but not going to clutter my browser with more extensions, just because of hcaptchas.