| Verified No Logs VPNs | |
| 1 | NordVPN with [72% Off Coupon] |
| 2 | ExpressVPN |
| 3 | VyprVPN |
| 4 | Perfect Privacy |
| 5 | OVPN |
Can you trust any VPN that claims to have a “no logs” policy? This guide examines all “no logs” VPN services that have actually been verified and proven true.
What is the best no logs VPN service and which of them are trustworthy and proven?
This is a tough question. First, there are dozens of VPNs claiming to be “no logs” without any proof or verification whatsoever. In other words, you just have to take their word at face value. But herein lies the problem.
VPNs have been caught lying about their “no logs” claims
Over the past five years, I have identified a few dishonest “no logs” VPNs that have collected user data and provided the information to government agencies. Here are three examples:
- PureVPN claimed to be “zero logs” but was caught logging customer data for the FBI.
- IPVanish also claimed to be “no logs” but then collected logs and provided the data to the FBI.
- HideMyAss provided logs to US authorities for an alleged hacking case.
There are surely other cases of this happening that have not come to light. We only know about the examples above from court documents that were released to the public detailing how the VPNs gave up logs.
We recommend no-logs VPNs that have been verified
Fortunately, there have been a handful of VPN services that have had their no-logs claims tested and verified to be true. We will examine these VPN providers below and exactly how their logging policies have been verified.
Here are the best no logs VPN services in 2021:
1. NordVPN: Verified with two no-logs VPN audits
| VPN | NordVPN |
| Based in | Panama |
| Logs | No logs (audited) |
| Price | $3.30/mo. |
| Support | 24/7 Live chat |
| Refund | 30 days |
| Website | NordVPN.com |
NordVPN is one of the leading VPN services on the market that excels in many areas. The company behind NordVPN, Nord Security, is comprised of a global team and strategically based in Panama, which is one of the best privacy jurisdictions in the world. Unlike the UK and United States, Panama is not a member of international spy alliances and also does not require mandatory data retention, allowing NordVPN to be a 100% no logs service.
NordVPN offers a wide selection of apps, excellent speeds, and more privacy and security features than most other VPNs. In the latest round of testing for the NordVPN review, it performed very well in all categories.
NordVPN now fully supports the WireGuard VPN protocol in all NordVPN apps, offering users faster speeds and upgraded security. We were able to hit 445 Mbps with NordVPN in testing out WireGuard vs OpenVPN speeds. This makes NordVPN the fastest VPN we have tested:
NordVPN uses the strongest encryption standards and also includes built-in leak protection (VPN kill switch) with all VPN apps. Additionally, NordVPN also offers these privacy and security features:
- Double-VPN servers to encrypt traffic over two different locations
- Tor-over-VPN servers that also encrypt traffic through the Tor network
- P2P servers for high-speed downloading and file sharing (NordVPN is ranked as the best VPN for torrenting)
- Obfuscated servers to hide VPN traffic to look like regular HTTPS encryption and also get around VPN blocks
- CyberSec feature to block ads, trackers, and malware domains
Here is the NordVPN desktop app for Windows that we tested:
NordVPN is easily one of the best VPNs you will find in terms of privacy features and performance. And for those who need a VPN for streaming, NordVPN has you covered. It fully supports all major Netflix regions, and is also a great VPN for BBC iPlayer, Hulu, Amazon Prime, Disney Plus, and more. They even have a dedicated app if you need a VPN for Firestick.
NordVPN audited by PWC to verify no logs claims (twice)
NordVPN has now undergone two separate no-logs audits performed by PricewaterhouseCoopers (PWC) AG in Switzerland. The auditors confirmed that NordVPN was fully compliant with its no logging policies. The first audit was conducted in 2019, with the second audit being done in 2020.
It appears that NordVPN may undergo annual no-logs audits for verification purposes, which is great to see. Here is an overview of the scope of the audits:
- NordVPN was audited by PricewaterhouseCoopers. PWC had full access to examine NordVPN’s servers, interview employees, observe operations, inspect configurations, databases, and any other relevant aspect of the VPN service.
- The audit officially verified NordVPN to be a “no-log service” that is compliant with its privacy policy and no-logs claims.
- NordVPN does not store connection logs, IP addresses, traffic logs, or any internet activity information.
The audit confirmed NordVPN’s logging policy, which you can read on their website as follows:
NordVPN strictly keeps no logs of your activity online. That means we do not track the time or duration of any online session, and neither do we keep logs of IP addresses or servers used, websites visited or files downloaded. In other words, none of your private and secure data is logged and gathered at any time. As a result, we are not able to provide any details about your behavior online, even if you request it yourself.
NordVPN is outside of the EU and US jurisdiction and is not required to collect your personal data and information– it means nothing is recorded, monitored, stored, logged or passed to third parties.
In addition to the no-logs policies, NordVPN has also implemented big security upgrades and new features.
Server upgrades: RAM-disk and colocation
NordVPN was one of the first VPN providers to transition its entire network to run in RAM-disk mode, without any hard drives. By running in volatile memory (RAM), not a single VPN server has the capability to store any data. This also means that no third-party entity will be able to steal a NordVPN server and recover user data. It provides NordVPN users with a higher level of data security.
Another major development with NordVPN is that they are working to roll out a network composed entirely of self-owned servers (also known as colocated servers). A few locations are already live now, and more are coming online in the coming months. Here are the benefits of self-owned servers:
- NordVPN will have 100% control over the hardware
- No more relying on rental servers from third parties (what most other VPNs do)
- Higher level of data security for NordVPN users.
In short, NordVPN is making leaps and bounds in the areas of privacy and security on a network-wide level.
Security audits and Bug Bounty program
We’ve already talked about the two no-logs (privacy) audits that NordVPN completed. But that’s not all. NordVPN has also completed an in-depth security audit with Versprite. This audit included penetration testing and analysis of all NordVPN infrastructure, to include all data centers where NordVPN servers are located.
Lastly, NordVPN is one of the few VPNs to have a public Bug Bounty program. This rewards anyone for finding bugs, problems, or security issues that could affect NordVPN users. Most VPNs do not offer anything like this.
Conclusion: NordVPN’s no logs policies, favorable jurisdiction, strong security, and excellent performance make it a great choice for all types of users. It works well with all streaming services and also offers many privacy features. With the coupon below, NordVPN is one of the best values available for a no logs VPN.
Main drawbacks:
- Big discounts only available for long-term subscriptions
NordVPN Cyber Deal is Now Live:
Get 72% off your NordVPN subscription (reduces the price to $3.30 per month) plus 3 months FREE.
(Coupon is applied automatically.)
Check out our in-depth NordVPN review for more info.
2. ExpressVPN: Third-party no-logs audit and verification
| VPN | ExpressVPN |
| Based in | British Virgin Islands |
| Logs | No logs (audited) |
| Price | $6.67/mo. |
| Support | 24/7 Live chat |
| Refund | 30 days |
| Website | ExpressVPN.com |
ExpressVPN is another privacy-focused, no-logs VPN that is based in the British Virgin Islands. It offers excellent performance, strong security, and user-friendly VPN apps. And like NordVPN, ExpressVPN is also a great streaming VPN service. It is one of the few VPNs that work with Netflix, Hulu, Disney Plus, and most other streaming services.
In terms of speeds and security, ExpressVPN is a strong contender. They support the OpenVPN and IKEv2 protocols with an AES-256 cipher. They have also launched the Lightway protocol, which offers better speeds and reliability than OpenVPN and has many similarities to WireGuard. However, even with Lightway, ExpressVPN still came in second place with speeds our Surfshark vs ExpressVPN comparison.
Check out the ExpressVPN review for a detailed analysis and all test results.
Now let’s examine how ExpressVPN’s no-logs policies have been tested and verified.
ExpressVPN implements TrustedServer (RAM-disk servers)
Similar to NordVPN, ExpressVPN has also upgraded its network to run in RAM-disk mode. They call this the TrustedServer feature. And as they point out, this is a major improvement from a privacy and security standpoint:
With our industry-first TrustedServer technology, our VPN servers run only on volatile memory (RAM), not on hard drives. Since RAM requires power to store data, this guarantees that all information on a server is wiped every time it is powered off and on again.
In contrast, the traditional and most common way of running servers relies very much on hard drives, which retain all data until they are erased and written over, a painstaking and error-prone process. This increases the risk that servers could inadvertently contain sensitive user information. If someone were to hack or seize the server, they could gain access to this data. Even worse, hackers who do find their way in might be able to install a backdoor that remains indefinitely.
We see other VPN services have also adopted this server approach, including with NordVPN and Surfshark.
Third-party audits
ExpressVPN has also passed a third-party audit that was conducted by PricewaterhouseCoopers. This security audit verified the TrustedServer feature, no logs policy, and that all privacy protections are being adhered to correctly. Very few VPNs have undergone third-party audits to verify logging policies.
Lastly, ExpressVPN also decided to open source their browser extensions and subject them to a full security audit by Cure53. Cure53 is a well-regarded cybersecurity firm based in Berlin that has also audited other VPNs, such as TunnelBear.
Turkish police seize ExpressVPN server (but no data)
In addition to audits, ExpressVPN has also passed a real-world test.
In December 2017, Turkish news outlets reported that police in Turkey attempted to force ExpressVPN to provide customer data for a criminal investigation. However, ExpressVPN did not have any logs to provide authorities, as they explained in a statement.
After failing in their attempts to coerce data from ExpressVPN, the Turkish police then decided to physically seize ExpressVPN’s server, which they obtained from a data center in Turkey. However, this also did not reveal any information because ExpressVPN does not keep any logs on its servers – or otherwise.
ExpressVPN further clarified that all customer data was safe when they issued a statement on the case:
As we stated to Turkish authorities in January 2017, ExpressVPN does not and has never possessed any customer connection logs that would enable us to know which customer was using the specific IPs cited by the investigators. Furthermore, we were unable to see which customers accessed Gmail or Facebook during the time in question, as we do not keep activity logs. We believe that the investigators’ seizure and inspection of the VPN server in question confirmed these points.
Conclusion: ExpressVPN is another solid choice for a no-logs VPN service that has been completely verified and proven true. It does well in many areas. However, as we pointed out in the ExpressVPN vs NordVPN comparison, ExpressVPN does not offer as many features as other leading VPNs. The speeds are also not on par with other leading VPNs, such as NordVPN, which uses the WireGuard protocol.
And while ExpressVPN does have an above average price, you can still take advantage of the coupon below.
Main drawbacks:
- Above average prices
- Fewer features than other leading VPNs
- Average speeds (not as fast as NordVPN)
Surfshark VPN Coupon Deal
Get 81% off Surfshark VPN (drops the price down to $2.49 per month).
(Coupon is applied automatically.)
See our ExpressVPN review for more info and test results.
3. VyprVPN: No logs verified with audit
| VPN | VyprVPN |
| Based in | Switzerland |
| Logs | No logs (audited) |
| Price | $2.50/mo. |
| Support | Chat and email |
| Refund | 30 days |
| Website | VyprVPN.com |
VyprVPN is a no logs VPN service based in Switzerland with secure apps and good performance. It did well in speed tests for the VyprVPN review and has a pretty good reputation. VyprVPN is unique in that they physically own every server in their network (no rentals from third parties), which helps to ensure data security.
If you want a VPN to get around blocks, then VyprVPN is a great choice. It offers the Chameleon protocol, which will get around most VPN blocks and restrictions. This is important when using a VPN for China.
Following the lead of NordVPN, VyprVPN has now also implemented the WireGuard VPN protocol into their service. We were able to hit speeds of up to 300 Mbps, which we posted in the VyprVPN review. And while this is certainly fast, VyprVPN still came out behind in the VyprVPN vs NordVPN comparison.
No logs: VyprVPN audited / advised by cybersecurity firm
To verify the no logs policies, VyprVPN underwent an independent audit conducted by Leviathan Security Group. The auditors examined all aspects of VyprVPN’s network to identify areas where logs were maintained that could de-anonymize the user. After fixing a few issues, they re-tested everything and found VyprVPN to be in full compliance with their stated “no logs” policy.
VyprVPN’s security audit is available to the public here and can be referenced publicly. Here are a few sections:
We examined all components of the project according to the threat assessment described below. While vigilance against logging is necessary to complete the process of implementing “No Log”, we feel that this assessment achieved its goal of uncovering weaknesses in Golden Frog’s implementation. The project revealed a limited number of issues that Golden Frog quickly fixed. As a result, it can provide VyprVPN users with the assurance that the company is not logging their VPN activity.
Golden Frog worked to remediate all no-log-related findings concurrently with the assessment. Once it had completed this, we performed a retest and verified that all of the fixes were effective.
Before this change took place, VyprVPN logged connection data (including IP addresses) for 30 days. Now, VyprVPN can be counted among the small number of verified no logs VPN services.
Main drawbacks:
- No cryptocurrency payment options
- Fewer features
- Requires full name for registration (not good for privacy)
https://VyprVPN.com
See the VyprVPN review for more information and test results.
4. Perfect Privacy: Real-world verification of no logs
| VPN | Perfect Privacy |
| Based in | Switzerland |
| Logs | No logs |
| Price | $8.95/mo. |
| Support | Email & forum |
| Refund | 7 days |
| Website | Perfect-Privacy.com |
Perfect Privacy is a Switzerland-based VPN that offers advanced online anonymity and security features. It is a no logs service that does not restrict user accounts in any way, giving you an unlimited number of connections. Privacy features include multi-hop VPN configurations, port forwarding, and a TrackStop feature to block ads, trackers, malware, and phishing domains.
From the beginning, Perfect Privacy has focused their service on privacy and anonymity, never keeping logs of any kind and not limiting VPN connections in any way.
The two main drawbacks with Perfect Privacy are the high prices and the lack of support for streaming services. While Perfect Privacy is not the best VPN for streaming, it does well in the areas of privacy and security. mm
Perfect Privacy server seized in the Netherlands
Even though Perfect Privacy has not undergone a third-party audit, like our other top recommendations, it has passed a real-world test. A few years ago, Perfect Privacy announced that Dutch authorities had seized one of their servers in Rotterdam, Netherlands. Although the reason for seizing the server was never revealed, Perfect Privacy confirmed no customer data was obtained:
Since we are not logging any data there is currently no reason to believe that any user data was compromised.
…We can now conclude that no customer information was compromised due to the seizure. The Rotterdam location will continue to operate using the replacement servers.
RAM-disk servers (no logs possible)
Just like with ExpressVPN and NordVPN, Perfect Privacy runs all their servers in RAM-disk mode. They explain the reasoning for this on their log policy page:
Our infrastructure is built on this philosophy: All our services are running within strongly encrypted RAM disks so that it is technically impossible for data to be stored on hard drives. This also means that no data can be recovered if the power is disconnected.
Nobody can force us to log your data. If that were the case we would rather discontinue Perfect Privacy than to record your data and compromise your privacy.
While Perfect Privacy does have some drawbacks, it remains a great option for privacy-focused users.
Main drawbacks:
- Above average prices
- Limited support for streaming services
- No iOS app
https://www.perfect-privacy.com/
Our Perfect Privacy review has more info and test results.
5. OVPN – A no-logs VPN in Sweden
| VPN | OVPN |
| Based in | Sweden |
| Logs | No logs |
| Price | $4.99/mo. |
| Support | Email and chat |
| Refund | 10 days |
| Website | OVPN.com |
OVPN is a smaller VPN provider in Sweden that takes privacy very seriously. When it comes to logs, they have been a zero-logs VPN service from the beginning. In fact, they even have insurance to cover legal fees for court costs to fight any data requests. They also publish regular transparency reports documenting anything that could affect customer data and privacy.
Similar to NordVPN and Surfshark, OVPN offers double-hop VPN servers and also an ad-blocking feature. The desktop apps for Linux, Windows, and Mac OS all incorporate leak protection and strong encryption. And like NordVPN, OVPN supports WireGuard for even better speeds compared to other protocols.
OVPN wins court case proving no-logs claims
In September 2020, OVPN won a court battle proving that it does not keep any logs. The case centered around a movie company that was demanding user data and logs for a public IPv4 address, presumably for a copyright violation issue.
OVPN won the case by successfully proving that they do not have any logs to provide:
To summarize the verdict, the Rights Alliance and their security experts have not been able prove any weaknesses in OVPN’s systems that could mean that logs are stored. OVPN therefore wins the information injunction as our statements and evidence regarding our no log VPN policy have not been disproven. The movie companies also need to pay OVPN’s legal fees.
It’s also worth noting that OVPN uses only dedicated bare-metal servers running in RAM-disk mode. This further ensures there is no user data available for anyone to go after.
Main drawbacks:
- Small server network
- Above average prices with a short refund window
- Limited support for streaming services
https://www.ovpn.com/
See the OVPN review for more info.
Other verified no logs VPN services
Since first writing this guide, there have been a few other VPNs that have undergone audits to verify their privacy and security claims.
1. IVPN: No logs VPN based in Gibraltar (audited)
First up is IVPN, a VPN provider based in Gibraltar. IVPN used Cure53 for the audit, which verified the privacy claims as follows: “Based on the findings, it is safe to say that all of the IVPN’s privacy statements could be verified as truthful within the defined scope.”
2. Private Internet Access: Two court cases proving no logs (but now under new ownership)
Private Internet Access is a United States-based VPN that offers a low-cost, simple, and user-friendly VPN service. While it remains a decent cheap VPN service, it does have some noteworthy drawbacks. Here were a few issues that I discussed in the PIA review.
- PIA sold out to Kape Technologies in November 2019. Kape is a company with a history of producing malware and adware. There are also some strange ties between Kape leadership and foreign surveillance agencies.
- PIA is based in the United States, a Five Eyes surveillance country.
- When it comes to Netflix and other streaming services, PIA is often blocked.
PIA’s no logs claims have been tested and proven in two separate court cases:
- In a 2016 court case, PIA was subpoenaed by the FBI for logs, but PIA testified in court that it had no logs to hand over. This is explained in official court documents.
- Once again, in 2018, another court case put PIA’s no-logs policy to the test. As explained in this news article, Private Internet Access officially testified that it did not have any logs it could hand over to authorities.
Unfortunately, even with these court cases, there’s no way to know if PIA is collecting logs today. In the United States, any business can be forced to collect user data for government, and there are examples of this happening with VPNs and private email services. (We’ll examine this more below.)
Note: PIA has really dropped in speeds recently, which we covered in the NordVPN vs PIA comparison report. This is not the best VPN if you value performance.
3. PureVPN: No-logs audit (after providing logs to authorities)
In an attempt to regain trust among the VPN community after the logging case a few years ago, PureVPN has undergone an audit of its own.
The auditing firm that PureVPN used was Altius IT based in California, which conducted the audit remotely (no on-site investigations). The audit concluded in June 2019 and verified that PureVPN now aligns with its no-logs policies. Whether or not PureVPN can be trusted, after already providing logs to authorities, is a question you must answer.
Jurisdiction and logging policies with VPN services
One thing to consider with any VPN service is jurisdiction: where the VPN is legally based.
Jurisdiction is an important factor to consider because it greatly affects the security of the VPN’s customers. A VPN must abide by the laws in the country in which it is legally based (incorporated). Many countries have laws that can undermine encryption and data security, for example:
Australia and access to encrypted data
Australia has a law that allows governments to force companies to provide access to encrypted data. We discuss this topic at length in our guide on VPNs for Australia. Here’s a brief synopsis of this law:
The Australian Parliament passed a contentious encryption bill on Thursday to require technology companies to provide law enforcement and security agencies with access to encrypted communications.
Privacy advocates, technology companies and other businesses had strongly opposed the bill, but Prime Minister Scott Morrison’s government said it was needed to thwart criminals and terrorists who use encrypted messaging programs to communicate.
Right now, the United States is considering similar legislation, which you can read about here.
United States can force companies to hand over logs
The US is also a hostile jurisdiction for privacy. Here, authorities can force companies to hand over data logs and provide access to user information. Here are three examples:
- Lavabit was forced to provide encryption keys to its email service. Rather than comply, the owner shut down the company.
- Riseup, a secure email and VPN service in Seattle, was forced to hand over user data to the FBI and also slapped with a gag order that prevented any disclosure.
- IPVanish, a “zero logs” VPN, provided user logs to the FBI for a criminal investigation.
Choose your VPN carefully and also consider jurisdiction. We recommend going with a VPN service in a safe privacy jurisdiction, such as Panama, the British Virgin Islands, Switzerland, and others.
Free VPNs caught collecting data logs
Free VPN services can also be problematic when it comes to VPN logs and data collection. Over the years, we have profiled the many reasons you may want to avoid a free VPN. One of the biggest issues is how free VPNs make money.
To cover the costs of server hosting, app development, and everything else, free VPNs typically make money off the user itself. To do this, they usually collect user data, which can then be sold to third parties, such as advertisers. This is actually a growing business model and there are numerous VPNs that utilize tracking or data collection tools. We discovered this in our Hotspot Shield VPN review. It was also the case in our Betternet review.
Free VPNs are often in the news for bad practices. One recent example highlighted free VPN apps that deliver financial malware to unsuspecting victims. If something is free, then you are likely the product. The only exception to this is the freemium business model, where you get a limited free version, but can update to a paid version. These are probably the best free VPN services.
Conclusion on VPNs with no logs
With high-profile logging cases eroding user trust, such as with PureVPN and IPVanish, it is now more important than ever to verify that a VPN’s claims are actually true.
To be sure, maintaining some connection logs is not necessarily a deal-breaker, especially if it is done in an honest and transparent manner, such as with VPN.ac. The problem, however, is that many VPNs simply use “no logs” as a marketing slogan, without any kind of verification.
Another issue is that there’s no widely accepted definition of exactly what “no logs” means.
In light of all these factors, it’s great to see that there are VPNs taking proactive steps to verify and audit their own policies. This helps to build trust and maintain a higher level of honesty in the industry.
While there will always be bad apples in the VPN world, there are still a small number of trustworthy VPNs that have properly earned the title of “no logs” services.
The table below includes the best no logs VPN services that have been proven and verified:
Updated with new information June 15, 2021.
Sven,
Can you do a review on IVPN? They seem like a decent VPN provider. I would like to hear your thoughts on them. Thanks for all of the great work that you guys do! I learned a lot through this website!
Right now we’re holding off on new reviews, instead focusing more on news and keeping old reviews updated, but we’ll keep IVPN in mind for the future.
Hello Sven,
Do some of recommended VPNs imply then, that the BVI are not a part of UK inclusion in “5 Eyes” ?
Thank You,
MTP
Hi Michael, yes I have looked into this quite a bit. The BVI is a legally and politically independent entity, outside of the jurisdiction of UK courts and government decrees, making it a good privacy jurisdiction in my book.
The VPN I use is the ProtonVPN free plan it says that under the free plan they have a No Logs policy how legit are they?
We like ProtonVPN. While it has not undergone a no-logs audit, they have passed a security audit. Check out our ProtonVPN review here.
PIA not handed over data to agencies ?
[https://torrentfreak.com/movie-company-sues-pirates-who-used-an-anonymous-vpn-201026/]
Nope, that article only points out that there was a lawsuit, and these are fairly common with copyright issues and media companies. But I have never seen evidence of PIA handing over data logs.
What about CyberGhost? [https://www.cyberghostvpn.com/en_US/no-logs-vpn]
Not audited, not verified.
I read your guide to verification without VPN service logs,it was educational and useful,sir.
I dare to ask you something extra and I know you will enlighten me.
I log in to my vpn on the location:Netherlands.
I run two very valid speed tests.
In the first speed test,the server appears to be in Athens,GR.
In the second speed test,the server appears to be in Miami,FL.
Please note that I have the relevant screenshots.
My naive thought was that the server from the Netherlands had planned a trip to Miami with a stopover in Athens.
Seriously now,I definitely need your answer.
Hi Christopher, the short answer is that geolocation database information for the IP address you were using is probably just oudated. In other words, when a VPN (or anyone else) acquires a block of IP addresses, they register those IP addresses for a given location. So you are seeing geolocation data that is probably outdated. To find where the VPN server truly is, you need to run ping tests. We discuss the topic more in our article on virtual server locations.
My provider support could not or did not want to give me this analysis you gave me and I justifiably wonder why.
In fact,I ran a ping test and found out where the VPN server really is.
However,I can not understand the importance of “outdated” and the effects it may have on the operation of vpn,so I’m seriously thinking about changing my current VIP.
Could you recommend me 2-3 vpn providers and name the best?
I’m lucky to have such an excellent technical advisor even if you are remote,sir.
Our top-recommended VPNs are here.
These IP locations are getting pulled from RIPE databases. The only way this may affect the VPN is if you are trying to unblock content, in the UK for example, and the old IP address information is saying New York, thereby blocking you from accessing the content. If you are not running into this problem, I’d say it’s not a big deal.
This is awesome, thank you for your efforts! Can you please share your thoughts on OpenVPN Connect by OpenVPN Technologies?
I have Sonic Gigabit Fiber Internet which includes OpenVPN for free, but I’d much prefer a true no-log VPN.
I currently have PIA which I’m going to stop using after recently learning of it’s questionable new ownership and the drawback of it being based in the US.
Thanks for sharing any insights about OpenVPN including what you know of their logging protocols. Btw I’m strongly considering Nord, but I’d rather save the $90 every 2 years if OpenVPN is nearly as secure, private, and fast. Thanks again!
Hello. “OpenVPN Connect by OpenVPN Technologies” is just an open source VPN client that you can use with different VPN services.
Now, OpenVPN Technologies does offer a VPN service, which costs about $6 per month or $36 per year.
But since you have fast internet, I would actually not recommend even using OpenVPN. I would recommend using a VPN that supports WireGuard. And for that, NordVPN is a great choice with a two-year discounted rate here.
What about Surfshark? It has 100% RAM-only servers.
Correct, Surfshark has 100% RAM servers, but this post focused on no-logs VPNs that have been verified. If Surfshark undergoes any verification of its no-logs policies then we will add it to the list.
No logs proven in real world-
1. Perfect-Privacy
2.ExpressVPN
3. Private Internet Access
4. OVPN
5. ….
your ipvanish review is out dated, the company was bought out so you are essentially reviewing the wrong company
Yes, IPVanish has been bought out twice now over the past few years. First, it was purchased by Stackpath a few years ago, and then acquired by J2 Global. But nonetheless, IPVanish is still the same VPN service, with the same performance, and same apps and policies, but just a different owner. So I have to disagree with the whole “reviewing the wrong company” thing.
So, did riseup vpn hand over the logs or data? Is it safe to use now. In2020.
Is it still based in the US?
Answer: Yes.
Are you cool with the FBI having your data?
[https://www.androidpolice.com/2020/07/19/flash-vpn-ufo-vpn-and-five-other-services-leaked-1-2tb-of-private-information/]
Write it down on free vpn review pls.ty
Hi Sven,
Glad I found this amazing website. Anyways I just wanted to know about integrating vpn’s. If I wanted to use windscribe as the exit vpn, since it offers free 10Gb, which is more than enough for me, Just curious that since its under five eyes Jurs., consider for example, I am connecting to Hong Kong server, and I am being traced for P2P sharing, and my isp is not a part of five, nine and 14 eyes(also brief me if it is a part of em) , how would they pinpoint me if I am also using a express or nord vpn as my entry vpn.
There are different ways to use two or more VPNs at the same time. We discuss this in the multi-hop VPN article.
Hey Sven, Why can’t you add surfsharj to your list ?
Surfshark is a great VPN that performed well in the Surfshark review, but it has not undergone a no-logs audit or other verification like these VPNs.
Dear Sven,
what about AlgoVPN?
https://github.com/trailofbits/algo
Hi Sven.
I’m from Venezuela the dictatorship regimen censorship and punch the adverse opinions.
I fight regimen using Twitter, I browse Twitter using Tor, can you recommend me a free VPN service for Android to mask my IPS before I run Tor
What’s your opinion of ProtonVPN?
Thanks for your attention
Saludos
The ProtonVPN review may be helpful. They offer a free version, but it is slow and they restrict the servers and features.
Hey Sven,
Just a quick question.
1) When a VPN provider says they dont keep logs, how do they know that the data centers that they rent the servers from dont store logs or monitor traffic?
2) Take ExpressVPN for example, they say they dont have to accept subpoenas from other countries to put a back door into their servers but would their servers be under the juristiction of the country they are hosted in? So for example an the US could force the company hosting EXpressVPNs servers to put a back door in?
Hi Jacob,
1. There’s no way to be certain what the data centers are logging, if anything, but that’s not as concerning as you may think because:
– The VPN provider has full control over the VPN server, including encryption keys. So the server remains encrypted and under the VPN’s control, even while physically located in a data center.
– ExpressVPN runs all servers in RAM-disk mode, which means if the server was ever tampered with or removed from the stack (power cut) all data would be wiped immediately (no hard drives).
– Hundreds of others VPN users are also connecting to that server at the same time. This means even if the data center was logging the incoming IPs and outgoing IPs on that server, the only thing they could try to do is try to correlate traffic to identify people, which is extremely difficult, especially with ExpressVPN using shared IPs and lots of users on that server (lots of noise).
If you still find this theoretical scenario concerning, there’s always the option to run two or more VPNs at the same time, as discussed in the best VPNs article toward the bottom of the guide.
Hi all the VPNs on this list would have a kill-switch, I’m answering to
@ Milo https://restoreprivacy.com/vpn/no-logs/#comment-28206
Quote: “The caveat here is this method doesn’t include a VPN “kill switch” for which you’ll need a third party application like VPN Lifeguard.”
Never tried your mentioned kill-switch and when I first looked only a few (3) I’d found, one of which offered a paid Pro version.
VPNCheck Pro – I’ve used for quite awhile now not so much for it’s kill-switch functions but, for the gray/white noise I can create from my system using it.
See: Why is Computer ID protection important?
http://www.guavi.com/vpncheck_pro_computer_id.html
Some other features as well, (dated interface), but I like that I (admin acc) can control the changing of my Hostname, Computer name and MAC address at random w/some restart usually req.
Every restart of the PC the computer name (ID) can be set to change in an auto setting offered, and it’s the only ID auto-change feature setting offered.
You have to elect the Hostname and MAC address change manually from the UI while running – just click it’s icon from an admin acc.
Cool to never giving off the same digital exhaust or trail with these changes possible.
Here’s a few more KS I’ve not tried-
https://sourceforge.net/projects/vpnautoconnect/
https://alternativeto.net/software/vpn-lifeguard/
https://sourceforge.net/projects/vpnautoconnect/
@ Amber https://restoreprivacy.com/vpn/no-logs/#comment-28145
Quote: “I have tried many VPNs now and I have had very poor performance with all of them.
At first, I thought it was entirely the VPN provider, but even after trying the expensive ones, I have no success.
I then tried running speed tests with my iPhone. The speeds doubled, still not great when my non VPN speeds are over 180 Mbps.”
Hey, if your non-VPN speeds are over 180 Mbps that’s a premium ISP’s speeds tier your on and that your paying a premium price for I’d say.
Maybe your thoughts of VPN speed should be given to the ISP of choice being used – have you kept the same ISP provider throughout your many tried VPN services ?
I’ll throw out a few thoughts I have (from reading) and an old memory as a non-Techy dude.
Your ISP could be throttling your VPN traffic – how ? Maybe deep packet inspections / server routes taken or other way developed.
See Sven’s comment https://restoreprivacy.com/vpn/test-check-vpn-working/#comment-47407
About: commercial (data center) IP addresses and residential IP addresses.
It’s possible ISPs could have by now developed a throttling list (similar to malicious / Ad servers lists), of the VPN server data centers IP address their customers use.
Possible as well of your Win OS rig could be leaking certain things about the device itself, apps/extensions or traces of your networks meta-data activity.
Secure your Computer ID’s protection from those finding out your Hostname, Computer name or MAC address, as by anyone on the web or a local network, yes even your first service signup/activation on ISPs too.
I suppose you could hunt down some deep OS/registry setting/changes, but you’d need to change then frequently (like at system start-ups) or even with a button to use while online.
Not techy enough myself to run down these parts in the OS/Reg settings, I had searched and chosen a tool that offer much to such features.
I’m not to sell you short – (do read up), as the Auto-create Computer ID on startup feature is the only apps computers ID protection setting that happens at startups regularly if set. It as well in the Hostname and MAC address are changeably anytime within the apps UI under admin accounts.
Though, something will needed to be restarted to effect the change taking place. It just works for me in my situation.
Works on Win – Linux – OSX https://youtu.be/XZpD1lwtico?t=65
http://www.guavi.com/vpncheck_pro_computer_id.html
Have you tried running some website tests to see of anything that your device is giving off – identifiable to it or you ?
https://restoreprivacy.com/vpn/test-check-vpn-working/
https://restoreprivacy.com/vpn/test-check-vpn-working/#comment-21751 , https://restoreprivacy.com/vpn/test-check-vpn-working/#comment-5262
QT: “I’ve done the usual, disabled my Windows and third party firewall and malware application. I have tried different VPN protocols with no improvement.”
If you’ve the time try a fresh installing of your OS anew offline and before you’ll install anything else to the system /drive or in updates, set it up as you do with your system settings. Free of any add-on to anything else being installed for right now.
Now install a trusted third-party system drive backup or clone software and make a few backups or clones of your system drive to different storage places.
Install your current VPN client and service now, and see what your speed is like with a bare as possible new installation of the OS on your device.
Best part is your Systems drive is now cloned or backed up and is ready to get you here to the same place – but faster should there be a repeat needed.
Prior to your fresh anew of the OS install, do hunt down the trusted cloning/backup software you’ll use and the vetted M$ updates you’ll need.
This will be your next progressive clone or system drive backup made.
You won’t want them all of the M$ update patches, I happen to go with the Group B list here from the very helpful site https://www.askwoody.com/ms-defcon-system/
Win7/8.1 users fall into one of two camps: Those who trust Microsoft’s updates and those that only want it’s security patches. Let’s call them Group A and Group B, respectively: https://www.infoworld.com/article/3128983/how-to-prepare-for-the-windows-781-patchocalypse.html
Win7 and 8.1 Group A and Group B patches
https://www.askwoody.com/forums/topic/2000003-ongoing-list-of-group-b-monthly-updates-for-win7-and-8-1/
How to update Windows 10 — safely
https://www.askwoody.com/forums/topic/2000005-how-to-update-windows-10-safely/
Resource to help you locate the AKB article
https://www.askwoody.com/forums/topic/knowledge-base-listing/
Hope this helps anyone at any time.
VyprVPN STILL has the BF/CB Sale active by your linking to it here.
2 Years @ $2.50 mo / $60.00 billed every 2 years = 81% OFF {last page
I was with an ISP that delivered internet over cellular (data) towers via a hotspot being USB wired straight to my PC for internet.
I’m now with a cable ISP in a similar break for low-incomes and seemingly a little faster speeds from the cable sourced internet.
I pay a flat rate w/taxes & fee’s, around $15.mo now for it’s advertised speeds of this eligibility offered programs tier at 15 down and 2 up speeds.
I already had a cable modem that works for this ISP and have picked up another router capable of DD-WRT firmware flashing.
Had 3yrs now a TP-Link router (NEW) that DD-WRT doesn’t support and so the reason of buying another one.
Pays to do a little home/leg work especially understanding (components-softwares) as where you want to end up in it overall.
– Help’s by giving a particular purpose to a brand up for assignment, then researching it with a full outline in the other parts/units as you’d understood to cover of your game plans path.
Trouble I made for self, was I wanted a router in my setup and I shopped for ‘one’s’ I could afford, as merit to my $$ choice-style, not the practical applications side of would it serve in beneficial purpose and harmony to my privacy and security protections plan.
“Everything behind a VPN router flashed with DD-WRT.” My goal…
VPN over my Router to PC running an installed VPN Client and service.
Not some hosh-cosh ménaging things together as I tend to do, being doomed to fail without further reinforcements in understanding the principles to be applied before a start.
I have never ran a router setup before, so just making sure this unit works for being a ‘new’ one.
It’s Administrators account offers a VPN Client & linking to .ovpn files, one at a time, to use of it’s VPN function, and I’m trying it out for sure.
Till I get the Linksys WRT32X flashed over with it’s version in DD-WRT firmware, I’m going to run Both my VPN Clients to function as this way for now. Is that bad Sven ?
Even thought my unencrypted speeds are slow but much faster than I’m used too. Encrypting to a closer vpn server helps maintain my base speed.
I downloaded the Vyprvpn (ovpn) files package (160-256 encryption schemes) and linked to a Vyprvpn server by connecting the Router up to it’s service – works okay for what it is. No Kill-Swith here as the DD-WRT has I hear in routers UI.
The ISP cable’s speed alone, seems 3+ x’s as fast as the cell data (LTE/4G) internet’s best speed I’d gotten from it’s source.
Though we’re looking at wired compared to wireless carrying the data load and others pulling in that wireless mobiles cell signal in the area I live.
Speed Tests:
I can’t remember my old speeds I’d checked long ago from the mobile ISP data internet my PC got over the sprint hotspot.
Windows own handling of downloads registered at best speed around 150 kilobytes and mostly in the range of 20-50 kilobytes generally at peak times.
@@I’m trying to let people know even with only an advertised 15-Mb speed and use of the VyprVPN service – it works better than I had experienced in years with any internet traffics speed.
The Linksys router’s online administrators account has a speed-test checker built in and quite handy that I’ll run and post the results here.
My base speed from the cable ISP is below – (all VPN traffic off here)
– Download 18-MBits/s, Upload 3-MBits/s, Ping-7ms – [Ping can go higher ms at times on same ISP server]
– Download 16.89-MBits/s, Upload 2.35-MBits/s, Ping-61ms / different test, browser with Speedtest.net New York, NY server.
VPN ON:
1st test, only the VyprVPN client installed to my win OS, I connected to it’s server less than 600 miles (20 ms) away from my cable’s ISP location.
– Download 18-MBits/s, Upload 3-MBits/s, Ping-11ms
After a 30 min wait I tried again with the same VyprVPN server (it’s client read 62ms for that 600 mile distance) this time round.
– Download 17-MBits/s, Upload 2-MBits/s, Ping-38ms
2nd test, I’ll used the Linksys router’s admin. VPN Client with my VyprVPN credentials /and it’s own Vyprvpn client in my OS has been STOPPED.
– Download 17-MBits/s, Upload 2-MBits/s, Ping-20ms // USA – (19ms) Chicago.ovpn 256
– Download 17-MBits/s, Upload 2-MBits/s, Ping-39ms // USA – (44ms) New York.ovpn 256
– Download 14.52-MBits, Upload 2.16-MBits, Ping 45-ms // Speedtest.net/Chicago, IL server.
3rd test, with the Linksys router’s admin. VPN Client & with the VyprVPN client both are RUNNING & Connected to different (2) servers Vypr offers.
Traffic route > (64ms) Chicago.ovpn 256 / Router VPN Client > (40ms) New York server 256 / VyprVPN Client
– Download 17-MBits/s, Upload 3-MBits/s, Ping 49ms
– Download 11.66-MBits, Upload 2.02-MBits, Ping 77-ms – Speedtest.net // New York, NY server.
Every time I’ve changed to / from a VPN client running or stopped I’ve restarted the router to reset my connection.
Sometimes the Vypr client when disconnected & stopped required the PC being restated to restore the internet connection. (it’s kill-switch Not used in tests).
All results are from the Admin UI speedtest of the Linksys router – unless the results line has Speedtest.net in it.
No Real Change in the results – unless I double teamed the VPN clients, I’m getting better up and down speeds than was advertised, even when using VyprVPN or any VPN for the matter.
Thought, if I’m not double hopping per se’ as Sven’s explained it – from behind one VPN client chaining a few cascading servers together.
Not sure what it’d be called, but as it’s posted of my speed results , where they did diminished a little with the use of both VPN clients running in encrypting my network traffic.
How’s that work breaking it down ?
Sven, would that be a form of double encryption then ?
ISP > Modem > Linksys router (encrypts) > PC (encrypts) > ISP > Internet
I’ve some questions Sven, being I’m on two separate VPN Clients – can I connect each to a same VyprVPN server ? Any consequences ?
I’d like going with the fastest server in my local, that’s listed in it’s clients UI and with changing the ovpn file in the routers VPN client to this same that’s used on my PC clients side ? Is that possible again with out any connection trouble ?
I’d want to know your thoughts all along these lines here too, about using a 160 ovpn file instead of 256 in the router and keep the 256 encryption on the PC’s Vypr clients side. As well anything you’d throw out. Maybe a slight detailed view on priority to how things get done in the router and OS with two VPN clients running the traffic encrypted.
Ex: Flow >< cable modem to router(160) and to my PC(256).
Where should the strongest encryption be used – for someones speed that's capped (crappy) as mine ? Or not as having a good Internets speed.
I'll get the router flashed in some weeks but, till then – what's the most practical set up with the tests results I get ?
Thank you Sven ; )
Mullvad is the only one that passed the cure53 and Assured AB tests. Even privacytools.io has kicked most VPNs out because they mostly don’t keep what they promised. Mullvad is the exception here, only this one is recommended because it meets all the criteria. At privacytools.io only 3 VPN`s are recommended:
1st Mullvad
2ND IVPN
3rd ProtonVPN
all the others have failed the tests there and are no longer recommended.
Translated with http://www.DeepL.com/Translator (free version)
Hi Gerhard, the topic of this guide is “No Logs VPN Services”. We are not dealing with general security audits, but rather audits that were done to verify the “no logs” claims.
In terms of security audits, yes, these VPNs have undergone and passed security audits:
ExpressVPN (audit performed by Cure53)
Mullvad (audit performed by Cure53)
TunnelBear – The first VPN that underwent a security audit, with annual updates (also performed by Cure53)
So yes, this is a separate topic from this guide, i.e. VPNs that have undergone security audits.
Regarding the people at PrivacytoolsIO, I’ll just say that they have undergone some major changes and have become very opinionated lately. They were recommending the same VPNs I recommend just a few months ago. Proof:
http://archive.is/I7ynn
Proton VPN started uploading user crash data without permission and no way to opt out months ago. How do they define “crash?” I used them for two years, they started out good but became slow and sneaky. They hold your free email account hostage if your VPN subscription expires, since the VPN renews automatically. No way to get out of that without opening a support ticket and they determine your reason for leaving is good enough. But your locked email account can just be closed and all your info, email and VPN is deleted, a disconnect with their silly email ransom policy. They don’t encrypt email subjects; email is full of spam; good for throw addresses, about all. Proton sites are shiny and impressive; their services, not so much.
Routine (annual?) audits from brand name auditing firms should become the new expected standard of trust in the VPN industry. The only problem is they are expensive, so smaller VPNs may not be able afford them. But that may also be a good thing to weed out shady pop-up VPNs. There’s already way too many small, unproven VPNs on the market.
Maybe what the industry really needs is a major, trustworthy non-profit organization (EFF or EPIC are the only two who may fit the bill) to develop its own auditing and certification standards for privacy services in general, not just VPNs. In order to maintain the hypothetical certification, companies must pass an annual audit and maintain strict standards. This sort of thing already exists in other industries, like in the United States in order to use the USDA Organic seal products have to undergo third-party certification. Though I am absolutely not suggesting a government entity administer the seal; it needs to be a non-profit like EFF.
The only issue with another certification board is that they too can be corrupted. Then the favored VPN will be monopolized.
In theory, it sounds good but as I have seen, bad government comes from too much government.
I believe the best way is to continue educating the general public. Help them to spot false or dangerous VPN’S. Maybe even do a crowd funding if need be, but more red tape is hardly ever the answer.
Just my thoughts.
Hey Brian
Till the infrastructures in place to raise certification and audit standards all across the online industries that deal with public security-privacy, we see the below started for VPN’s.
They (all vpns) should give $0.05 of every subscription dollar trying to get the process a set level cost for all members under their industry banner.
Call for VPN’s to be openly transparent – https://cdt.org/vpns/
CDT convened a discussion at RightsCon in Toronto this spring where IVPN, Mullvad, TunnelBear, and VyprVPN agreed that their industry faces a trust deficit. Coming out of this face-to-face meeting, we have worked with these companies along with ExpressVPN to develop a list of questions that signal basic commitments VPNs can make to signal their trustworthiness and positive reputation.
Cryptostorm.is claims not only to have no logs, but they _actually_ _committed_ “privacy seppuku” (a.k.a “organization death before dishonour”) a couple of years ago when govt. tried to coerce them to cooperate.
They have free as well as paid access with optional tracking filters and port forwarding, also they offer Wireguard in addition to OpenVPN-based clients (that may help with Android battery drain).
Many of their code is published on github, and staff is usually available via web/irc gateway on site (unless they’re sleeping, that is). Sven, could You please take a look at them and maybe review their service?
Howdy Anonymous,
Please see – https://restoreprivacy.com/vpn/best/#comment-48767
Hello Sven,
what’s your opinion on using a VPN (with no logging) to access private stuff like e-mails etc.? As in, would you keep the VPN connected 24/7 for anything you do online? Or is it better to log into private accounts without using a VPN?
Hello Frank, I recommend using a VPN at all times. With ISPs spying on people and recording your activities, why give them any data?
I also alternate between different VPNs and VPN servers for different services and if something is getting blocked by a specific website.
HI Sven,
great article
Regarding no log VPN, even though a lot of VPN providers claim no log, they use third party DNS servers oversea such as provided by Google Inc. Therefore, although VPN providers themselves don’t log, whatever users do have been logged by Google’s DNS servers. Only VPN providers own their won DNS servers can avoid this. I found that one can can check who their DNS servers are by [https://am.i.mullvad.net/]
i am myself is a user of mullvad VPN. I hope you can also do a review on mullvad
No reputable VPN is using Google DNS. All of the VPNs in this article and the one’s recommended on this site use their own DNS, which encrypt all DNS requests in the VPN tunnel.
Have you considered review Surfshark? I’m considering order that because my Freedome licence has been expired.
Yep, I’ll get to it here soon.
Hi Sven:
Thank you for all the work you’ve done on VPNs. I use your website as one of the few sources that I trust on the internet in regards to my web security, and have been very happy with the way you evaluate VPNs. Because of your website, I’ve used Perfect-Privacy, VPN.AC and ZorroVPN. However, when I tried out VPNArea for its wide server functions, good price and Adblock, I was very disappointed as the Adblock function did not work, the systems were clunky and the chat told me the Adblock could not work on “100% of all ads” (when in fact, it worked on 0% of all ads). To their credit, the refund was processed quickly.
I’m now using iVPN which you’ve mentioned in this review. I had serious hesitations about it since it is located in Gibraltar, but they have gone through a full audit in regards to logging by Cure53 like you stated. That alone would not be enough to convince me, but their Safety and Security guides are extensive and take into account people’s threat models, as well as talk about threat models extensively for beginners and how to sanitise one’s online identity. They also refer to your blog in some of the posts on the iVPN account. I am really looking forward to a review from you about iVPN if you can make time on your busy review list, especially since they are hiring Cure53 for a full service audit. Having used Perfect-Privacy, I would really compare iVPN to them (with the added advantage of actually having an app).
ProtonVPN has the same security as the Protonmail. I suggest you could add ProtonVPN as verified no logs stored, they do not store information about connections or website the users visit
https://protonvpn.com/support/no-logs-vpn/
They put effort into Privacy and security through secure core servers
https://protonvpn.com/support/secure-core-vpn/
This guide is only listing no logs VPNs that have been verified and proven, which is not the case with ProtonVPN.
I just stopped using Perfect Privacy. Too often recently the connection would cut out or I would not be able to connect to a particular server(s) on the server list (I’m in Germany and could never connect with Frankfurt and only rarely with Erfurt). Also, not being able to access Netflix and other IP dependent streaming services – such as ITV – is a bummer (especially for watching the rugby world cup).
Gonna try ExpressVPN for a few months to see what they’re like.
Dear Sven,
what about VPNArea? It’s another VPN with a no-log policy (no connection AND no activity logs).
Correct, but VPNArea’s logging policies have not been verified or proven, like the VPNs in this guide.
Hi Sven,
How does the verified and proven system work with any known or unknown VPN Virtual Server Locations ?
https://restoreprivacy.com/virtual-server-locations/
Specifically, say when the VPN service leases out (some) servers from a server complex.
The VPN can verify as audited and tested (as the four above) of it’s hands on operations side but, how’s it go for the server complex (in audits of the leased servers), that the VPN service uses, and in any logs anywhere along the way they may retain on that servers complex side ?
Is that (leased virtual server location) the gray area to heed of audited and tested VPNs ?
Should it have a strong importance factor to the VPNs truthfulness ?
Then if- “the traditional and most common way of running servers relies very much on hard drives, which retain all data until they are erased and written over, a painstaking and error-prone process. This increases the risk that servers could inadvertently contain sensitive user information. If someone were to hack or seize the server, they could gain access to this data.” Though supposedly encrypted, what parts remain in clear texts being it’s connected to a server complex and their own servers complex logging done ?
I would think that a Big concern based on any leased Virtual Server or not locations where there’s none operated in RAM-disk mode.
Thank you and best in the roaring 2020