Sounds like a good idea to pick a DNS provider that's based outside the US [privacytools.io]
And there's only two VPN providers that I would choose if you're not willing to create your own: ProtonVPN [protonvpn.com] and Mullvad [mullvad.net] since they are only two that are truly trustworthy. All others are very shady and can't be trusted with your data.