For Public VPN providers, anti-censorship is a recent development, and an after-thought, if that makes sense.
Projects like Lantern & Psiphon and some of the other proxy apps (like Hiddify, Matsuri, Nekobox, SagerNet) supporting V2Ray / XRay / VLESS / Trojan / Cloak / etc are specifically built for censorship resistance & continually evolve strategies based on reports and in-field diagnosis.
I block all but 7 apps on my Android. Then unblock the others only when I need them. I use certain apps (like Mail) in Isolate mode and only let the Mail app connect to my mailserver and no where else. In Isolate mode, Rethink blocks ALL connections except the ones allowlisted / whitelisted (kind of like inverting & blocking everything by default).
I also have Block when device is locked, Block newly installed apps, Block when DNS is bypassed (but exempt Telegram by “Bypass Universal” for it from Configure → Apps), and Block when source app is unknown turned ON from Configure → Firewall → Universal firewall rules.
In Configure → DNS, I use “RDNS Privacy” with “
Max”.
In Configure → Proxy, I use Proton, Amnezia, and Windscribe profiles. And always route Google-owned IPs via Proton’s US endpoints: RethinkDNS-Hack unter Android: Ausschließlich Google-Dienste über VPN leiten • Kuketz IT-Security Blog (in German).
I also have some vanity features like Configure → DNS → Show website icon in DNS logs & Configure → Settings → Show provider information turned ON (these 2 settings cost us money, so if you do find value, consider sponsoring the project; typically, if you use RDNS for a year + those 2 settings turned ON, you’re good if you chip with £1 in donation. We show an approximate £ amount depending on how long the Rethink app has been installed (not used, mind) when you tap on the + button on the homescreen wedged between the four dashboard tiles; this £ value is also shown in About UI in the top card view just above a big “Sponsor” button).
I digress.
I’ve written some more on the GrapheneOS forums and on our subreddit
Also, this community guide (I haven’t vetted it nor have I been asked to review it) that gets shared often on our support channels.
I wasn’t limiting the answer to one person though 
anyone can post