NordVPN passes third no-logs audit with flying colors
>
The time when users blindly trust what tech companies claim without any evidence is long gone. Transparency is key here, especially when it comes to privacy.
That’s why more and more of the best VPN providers regularly put their software under external scrutiny.
In an ongoing effort to maintain user trust, NordVPN, one of the most popular VPN services out there, called an independent cybersecurity firm to test its no-logs claims.
Leading audit firm Deloitte confirmed that the VPN provider complies with the data handling practices set out in its Privacy Policy (opens in new tab) because no violations could be detected.
This is the third time since 2018 that the provider has undergone a no-logs audit.
Transparency – a necessity for users
“Our users need to know they can trust us. When people use a VPN service, they need to know it’s not monitoring their data. They need to have confidence in the security and effectiveness of its features and infrastructure. That’s what it’s all about our audit process,” said NordVPN’s product strategist Vykintas Maknickas.
A no-logs policy is an important feature to keep in mind when signing up for a VPN. This is especially important when the main reason behind such a purchase is to protect your privacy online as much as possible.
While some logs are unavoidable, a no-log VPN should guarantee that they are limited to basic data such as the number of users connecting to the same server and the email address associated with a user’s account – and certainly not activity data such as which sites you visit.
The ultimate goal of a no-log privacy policy is to ensure that even if a malicious hacker or government manages to get their hands on this data, no sensitive information about users is leaked. Such details simply will not exist.
Deloitte conducted their assessment between November 21 and December 10 last year.
The approach was a mix of interviews with NordVPN employees alongside in-depth reviews of all relevant settings and features.
These include all of NordVPN’s server types and their configurations – standard, double VPN, obfuscated servers, Onion over VPN and P2P optimized servers – as well as all privacy-relevant settings such as SmartPlay and malware blocking tool.
The consultancy concluded that NordVPN’s “configuration of IT systems and management of supporting IT operations is well prepared” in line with their privacy policy claims.
“We are delighted to receive the Deloitte seal of approval, which proves that we really mean business when we talk about privacy,” said Maknickas.