NordVPN

5 Best No Logs VPNs 2017

Douglas Crawford

Douglas Crawford

April 11, 2017

If all you want a Virtual Private Network (VPN) for is to stream US Netflix, then it might not matter whether or not it keeps logs of everything you do. If, however, you value the privacy a VPN can afford (even as a side-benefit) then the amount of logs that your VPN provider keeps is of critical importance. But what does no logs really mean? And how can we trust that VPN providers will do what they promise?

Why No Logs?

Your Internet Service Provider (ISP) can usually see much of what you get up to on the internet (more on this later), and it invariably keeps detailed logs of this information. When using a VPN, your ISP cannot see what you get up to on the internet. However, your VPN provider now has access to the same information that your ISP had.

So on a basic level, you have now simply shifted the entity you must trust your privacy to away from your ISP and onto your VPN provider. That’s why it is very important to know that your VPN provider can be trusted!

I will discuss reasons why VPNs can usually be trusted more than ISPs later in this article, but a key aspect of this is that they keep fewer logs than ISPs. This means that if anyone comes a-knocking at their door, demanding access to your internet history, they have little or nothing to hand over.

Best No Logs VPN: Summary

Rank Company Score Price Link
1
NordVPN review
$3.29 / monthVisit Site
2
AirVPN review
$4.82 / monthVisit Site
3
Windscribe review
$7.50 / monthVisit Site
4
BolehVPN review
$6.67 / monthVisit Site
5
VPNArea review
$4.92 / monthVisit Site
Editor's Choice Award

Winner

NordVPN

5/5

Best VPN List

  • ProsPROS
  • No logs at all
  • Six simultaneous devices
  • Servers in 47 countries
  • 30-day money-back guarantee
  • OpenVPN encryption with perfect forward secrecy
  • ConsCONS
  • Speeds can be slow
  • Internet Protocol version 6 (IPv6) leaks

NordVPN is a no logs VPN provider based in Panama. This alone makes it one of the best VPN choices available for privacy fanatics, as it puts it comfortably outside the direct influence of both the NSA and copyright holders. It backs up this privacy-friendly stance by using great encryption, and accepting potentially anonymous payment in bitcoins. Although I have to be convinced of its utility, many also value NordVPN’s support for “double-hop” VPN chaining (which essentially routes traffic through two servers rather than one).

Unfortunately, NordVPN suffers speed issues, although fast servers do exist and can be found with a little trial and error. In recent tests, we also detected IPv6 leaks. So what you get with NordVPN is a very fully featured, privacy-friendly VPN service. It is let down by a couple of serious flaws, but on balance I would say that the good easily outweighs the bad.

Additional features: P2P permitted, supports obfsproxy technology to defeat censorship.

Get the best no logs VPN now!

Visit NordVPN »

30-day money-back guarantee

2nd place

AirVPN

4.8/5

AirVPN

  • ProsPROS
  • No logs at all
  • Open source with Domain Name System (DNS) leak protection and kill switch
  • VPN through Tor
  • Accepts bitcoin
  • P2P: yes
  • ConsCONS
  • Techy-ness puts people off
  • Customer support could be better
  • Limited number of servers worldwide

This Italian VPN company was established by pro-freedom activists and hacktivists. These roots are evident in both its strengths and its weaknesses. AirVPN is very serious about protecting its customers’ privacy, and back this ethic up with some of the most sophisticated software on the market. AirVPN uses very strong encryption, permits VPN obfuscation using Secure Shell (SSH) and Secure Sockets Layer (SSL) tunneling, supports anonymous VPN use via VPN through Tor, and allows port forwarding. Its open source VPN client (“Eddie”) also offers a firewall-based kill switch, DNS leak protection, port selection, and more.

The flip-side is that AirVPN is not very newbie-friendly, and its customer service is good at alienating users (despite being very technically competent).

Additional features: real-time user and server statistics, a three-day free trial, and three simultaneous connections.

Visit AirVPN »


3rd place

Windscribe

4.5/5

Windscribe

  • ProsPROS
  • No logs
  • Double-hop
  • SSL tunneling
  • Unlimited simultaneous connections
  • Limited free service (10GB)
  • ConsCONS
  • Based in Canada
  • Limited customer support

Our Windscribe review found that their service has a high level of technical proficiency. The encryption it uses, for example, is among the best available anywhere. Perfect forward secrecy is used, and DNS and IPv6 leaks are blocked by the firewall in the custom client. This firewall also acts as a kill switch, and should prevent any Web Real-Time Communication (WebRTC) leaks.

Like NordVPN, Windscribe supports “double VPN” chaining. I am yet to be convinced about the security value of this, but others disagree, and it is a nice extra to have. Unfortunately, Windscribe is based in Canada. This is a Five Eyes (FVEY) member, and is therefore not ideal for privacy.

Visit Windscribe »


4th place

BolehVPN

4/5

BolehVPN

  • ProsPROS
  • No logs at all
  • P2P permitted
  • Client with VPN kill switch and DNS leak protection
  • VPN over Tor
  • Smart DNS included
  • ConsCONS
  • Somewhat techy and bare-bones

This no logs provider offers a service that emphasizes privacy and technical know-how over customer care. Its Windows and OS X software is excellent, and features a VPN kill switch and DNS leak protection. And like AirVPN, it  offers VPN through Tor for true anonymity.

On paper, this Malaysian VPN provider has now moved to the Seychelles, but in reality it remains based in Malaysia. This is no bad thing, as BolehVPN is one of East Asia’s most popular VPN providers. BolehVPN also offers “xCloak” stealth servers, designed to bypass government censorship (most notably in China).

Additional features: two simultaneous connections, free Smart DNS service, accepts bitcoins.

Visit BolehVPN »


5th place

VPNArea

4/5

VPNArea

  • ProsPROS
  • No logs at all
  • Up to six devices at once
  • Fantastic value for money
  • Servers in 47 countries worldwide
  • Excellent technology
  • ConsCONS
  • Works well but lacks wow factor

VPNArea is based in Bulgaria, and is therefore firmly out of the National Security Agency (NSA) and UK Government Communications Headquarters (GCHQ) areas of influence, which makes it a great option for any privacy-heads out there. This focus on privacy is reinforced with a great no logs policy, strong encryption, and the fact that it accepts payment in bitcoins. Speeds are superb, and there are plenty of server locations (over 60 countries).

Its desktop client is a custom version of Viscosity, and offers DNS leak protection, disables IPv6, and provides a per-app kill switch. The auto Internet Protocol (IP) feature changes your IP every five minutes, which is interesting.

Additional features: P2P permitted.

Visit VPNArea »


Best No Logs VPN List: Considerations

What Your ISP Logs

Your ISP is responsible for connecting you to the internet. Unless you take measures to prevent it (such as using a VPN), your ISP knows the IP address you connect to the internet from (which will be linked to a named individual), when you connect, for how long you connect, and every website that you visit.

When you visit any regular unencrypted (Hypertext Transfer Protocol – HTTP) website, it can see everything that you do on that website. When you visit an encrypted (Hypertext Transfer Protocol Secure – HTTPS) website, your ISP cannot see what you get up to on that website, but it does know that you have visited that site.

These logs can be accessed with a legally binding court order or subpoena in almost all countries. In many countries (such as the UK), they can be freely accessed by a ridiculously large number of government organizations, with no meaningful oversight. In the US, Congress has just given ISPs the go-ahead to sell customers’ data without their permission or even knowledge!

When you use a VPN, your ISP is prevented from seeing any of this data. But your VPN provider now can.

What Do VPNs Log?

This varies by VPN company, and is often determined by the country/jurisdiction in which the VPN company is based.

Usage Logs

Also known as session logs, usage logs are records of the actual websites you visit. No reputable VPN company that I am aware of admits to keeping usage logs (although I would not put it past the myriad “free” cowboy VPNs that have flooded the market of late).

Note, however, that many VPN companies advertise themselves as keeping “no logs,” when in fact they mean that they keep no usage logs but do keep (often extensive) connection logs.

Connection logs

Connection logs are also known as metadata logs. These can range from detailed connection logs to minimal connection logs. Detailed or extensive connection logs can include everything except the IP addresses of every website you visit (that is, everything except actual usage logs).

This includes timestamp, duration of connection, amount of data transferred, and VPN server(s) connected to. These logs are often associated with your unique account details (including payment details) and IP address.

ExpressVPN is an example of a company that keeps minimal connection logs. The date of connection is recorded, but not the time. Server choice and total amount of data used are recorded, but none of the information collected is associated with an individual’s account details or IP address.

A further kink is the duration for which any collected logs are kept before being deleted. This can range from forever to a just a few minutes.

Obviously, as far as privacy is concerned, the fewer logs a VPN keeps the better. The more logs that are kept, the easier it is to perform an end to end timing (traffic correlation) attack.

No Logs (at All)

Many of the more privacy-minded VPN providers promise to keep no logs whatsoever. Now… the first thing to note here is that such promises are a cause of controversy inside the VPN industry. Some VPNs argue that it is impossible to run a VPN service without keeping at least some logs, and that any service claiming not to is being duplicitous.

However, many of the companies that do claim to keep no logs dispute this – and these number some of the most respected names in the security community. So let us try to unpick things a little.

Real-time Data

Every VPN service can monitor what happens on its system in real time. It is how computers and VPN technology works. I don’t think that any VPN company out there will dispute that it uses this real-time data to analyze usage, troubleshoot problems, and deal with abuse.

So every VPN provider has access to real-time data and will make use of it in real-time. But if a provider does not save nor store this information, so that it cannot be retrieved at a later point, I think it can accurately say that it keeps no logs.

Subscriber Information

So how does a truly no logs VPN provider know when customers’ subscriptions have run out? Exactly how each provider handles this no doubt differs, but a simple no logs solution would be to maintain a list of usernames together with the expiry date of the subscription associated with that username.

The usernames on this list do not need to be associated with any email addresses, contact details, or other personally identifiable information. Once a username has been checked off against an expiry date upon login to a VPN server, there is no need to associate any activity with that username.

So if you are being pedantic then you could argue that a log is being kept – a list of usernames and subscription expiry dates. However, the names on this list are not associated with an identifiable individual, and are not associated with any activity while using the VPN (even when the VPN is being monitored in real-time).

I think that any VPN company using such a system could justifiably describe itself as keeping no logs.

In my view, therefore, it is possible for a VPN service to operate on no logs principles.

How Do We Know a VPN Can Be Trusted?

A VPN company may say it keeps no logs, but how can we know this is true? The short answer is that we can’t. However, your ISP is definitely logging your data and has no reason whatsoever not to share it with whoever asks (or sell it!)

Most VPN companies’ business model, on the other hand, relies on offering privacy. Failure to protect their customers’ privacy would be a commercial disaster. So it comes down to a matter of trust: do you trust your ISP (lol hysterically!) or a reputable VPN company that is in the business of providing privacy?

Also, if that VPN company is based in another country, then it has very little incentive whatsoever to hand over the data it does have when asked. This should preferably be one with as few political and/or legal links to yours as possible.

Self Interest

Another point to consider is that the more logs a VPN company keeps, the weaker its position when it comes to handling legal demands. A no logs VPN provider can, on receipt of a National Security Letter, subpoena, or court order, honestly turn around and say, “sorry, we are happy to help in every way we can, but we have nothing to give you.”

This will put it in a much stronger position than a company that keeps logs and whose staff then have to decide between betraying their customers (and therefore destroying the reputation of their business) and facing legal action. Just remember that no VPN company staff member will be willing to go to jail to protect your privacy!

So keeping no logs is the safest thing (from a purely selfish standpoint) any company that is even half-way serious about privacy can do!

Here at BestVPN.com we are investigating ways to independently audit the claims made by VPN companies. This is a fledgling project, and will require broad cooperation from across the VPN industry. We are hopeful that we can leverage our influential position in order to improve standards and bring about increased transparency in this burgeoning industry.

Even a No Logs VPN Will Only Protect You Retroactively

As already noted, all VPN systems generate real-time data. A no logs VPN will not usually record (log) this real-time data, but it can do at any time. And if coerced in some way (by legal or other means), it will do so. As I say, no-one is willing to go to jail (or worse) to protect your privacy.

So if police (or whoever) turn up at the door of a true no logs VPN, that VPN will have nothing to give them. If you have used that VPN in the past to hide your internet activity, then you are safe as regards that past activity.

But the police could then demand that the VPN start to log. If the demand has legal force behind it then the VPN company will comply. If you use the service after that point, your activity can be logged.

This is, however, a highly targeted demand or request, so only specific individuals already identified by the authorities need be too concerned.

Warrant Canaries

If performed by the police or an official government agency, any such demand will almost certainly be accompanied by a gag order. This is intended to prevent the company from warning its customers that it has been compromised.

Some companies try to mitigate this issue through the use of warrant canaries. Please see Are Warrant Canaries Useful? for an in-depth look at this subject. As discussed in that article, I am somewhat dubious about their practical benefit.

I am aware, however, that others do not share my views, and consider warrant canaries to be a valuable tool in the fight for privacy.

Server Logs

Most VPN companies are not huge. In order to offer VPN servers located around the world, they rent servers from server providers. Even if a VPN provider itself keep no logs, the companies owning its servers will.

Unlike privacy-focused VPNs, these companies will have no compunction against handing them over to the police and similar agencies. This, in fact, is precisely what happened to an EarthVPN user back in 2013.

Although server logs are an issue, the situation is not as bad as it may at first seem:
  • No one should be able to access the real-time data available on the servers themselves, as any reputable VPN company will protect this with full disk encryption.
  • All data centers will keep broad logs relating to overall data usage by severs, server uptime, and so forth. However, it is not standard practice to log the IP address of everyone who connects to that server. Any good VPN service will be careful to partner with server providers that keep minimal such logs.
  • Incoming and outgoing IPs can be logged (either as a matter of routine or in response to a legal demand). However, as real-time data is unreachable (and a no logs VPN should not have this information anyway), trying to associate any particular internet activity with a specific IP address is very difficult.
  • This is a difficulty compounded by use of shared IPs. When 50 or more users are all accessing the internet from the same IP address, sorting out who did what becomes nearly (but possibly not entirely) impossible.

There is no denying that against a determined and targeted attack, server logs are a weak point in the VPN chain. But the threat posed is fairly minimal. That said, I recommend using VPN servers located as far from your country’s jurisdiction as possible. Just to be on the safe side.

A Note on US Companies

The United States has no mandatory data retention laws, resulting in some very good no logs VPN services. Private Internet Access (PIA), IPVanish, and LiquidVPN all deserve an honorary mention here.

I have decided, however, to not include any US companies on this list. Thanks to Edward Snowden, plus other revelations that have come to light since the infamous whistleblower went public, we know that the NSA and other US alphabet agencies have a “collect it all” attitude, which does not respect the constitutional or legal rights of their own citizens, let alone anyone else’s!

Thus, through no fault of their own, I consider simply being a US company to be a liability when it comes to privacy. As the notion of being a no logs company is all about privacy, I think excluding US companies from this list is reasonable.

Conclusion

As long as you understand their limitations, no logs VPNs are great way to hugely increase your privacy on the internet. There are some great VPN providers out there, who care a great deal about their customers’ privacy, and are very competent when it comes to protecting it.

They do this with minimal negative impact on your day-to-day web browsing experience.

But will they protect you from a powerful adversary who is willing to go to great lengths to target you as a specific individual? Probably not.

If you are that paranoid about getting “caught,” then you should be using using Tor instead.

Best VPN List Summary

Rank Company Score Price Link
1
NordVPN review
$3.29 / month Visit Site
2
AirVPN review
$4.82 / month Visit Site
3
Windscribe review
$7.50 / month Visit Site
4
BolehVPN review
$6.67 / month Visit Site
5
VPNArea review
$4.92 / month Visit Site
Image Credits:
Yi-Chen Chiang/Shutterstock.com
Xenia Shilova/Shutterstock.com
Maximumm/Shutterstock.com
Douglas Crawford

I am a freelance writer, technology enthusiast, and lover of life who enjoys spinning words and sharing knowledge for a living. You can now follow me on Twitter - @douglasjcrawf.

4 responses to “5 Best No Logs VPNs 2017

  1. Hi Douglas,
    Can you expand your research to include the best options for families? For example, my family has 6 fixed devices at home and 8 mobile devices total. Do VPN providers offer other plans than just the individual 3 (or 5) max simultaneous connections per account?
    Thanks for a great set of articles!

  2. Everyone’s number one priority should be their privacy, VPN speeds, and the number of servers.

    Those who leave their PCs running 24/7 downloading P2P or those who need a VPN for dastardly purposes aren’t concerned about speeds or the number of servers. Most average people have no idea what a VPN is even if they use one to access their corporate or workplace network from home.

    The VPN world is quite volatile at the moment. Even Express VPN with it’s vast amount of virtual servers have performance issues with many of them. You’d be hard pressed to get them or anyone else acknowledge that there is an issue, rather they will just quote you the canned response that your speed will vary due to this and that.

    Worst of all, it’s virtually impossible to access or read any credible unbiased review of a VPN provider where the person doing the review will not receive some sort of gain or benefit from recommending or implying a particular VPN.

    1. Hi Kodi,

      Yes – we get paid by VPNs – how else could a site such as our operate? We do, however, pride ourselves on offering unbiased reviews and advice. I’ll also note that only a few of ExpressVNPs locations are virtual servers (and that there are pretty god reasons for the ones that do exist). Please see here for more details. FWIW, many factors affect server performance speeds, but geographical distance from the server to your location is one of the biggest. This is a mater of physics – not something VPN providers can do anything about.

Leave a Reply

Your email address will not be published. Required fields are marked *

Your Information will never be shared with any third party.
Enter your email address to receive your Beginner's Guide to Online Security for Free
You'll also receive great privacy news and exclusive software deals!
Enter your email to get the ebook:
Your Information will never be shared with any third party.
Enter your email address to receive your Ultimate Online Privacy Guide eBook!
You'll also receive great privacy news and exclusive software deals!
Enter your email to get the eBook:
Special VPN Deal
SAVE 49% TODAY
WITH OUR
Exclusive Offer
Get a Special Deal - 72% OFF!
With a biannual subscription
Exclusive Offer for BestVPN.com Visitors!
50% Off Annual Plan
Limited Time Only
Exclusive price of
$3.25/mo