Faceless.me
1. We keep connection logs in our system, but they contain only depersonalized data, that allows us to optimize traffic routes and make connection more fast. These logs are stored for 7 days, but they are not interesting for anyone. In the event we are sued we can deliver only this information.
2. Our company based in Cyprus. Our servers are located in Netherlands and USA and we operate under jurisdictions of these countries [for these servers]. We don’t store any information that’s useful to 3rd parties. Any talk about this is possible only by court order.
3. We don’t have any mechanics to block users, we also have no information about which user the complaint is against but we are developing a system to alert our users in case there is a complaint about their activities.
4. We use Plimus Payment System for all user accounts. iPhone / iPad / iPod users can purchase a subscription from an application that can be installed from Apple AppStore. Payment is made through the AppStore billing system. Users of devices based on Android can purchase a subscription from an application that can be installed from Google Play. Payment is made through Google Checkout.
BlackVPN
1. On our Privacy servers we don’t log anything that can identify a single user, but on our US, Canada, UK, Germany & Singapore servers where we don’t allow file-sharing. We do log the internal RFC1918 IP that is assigned to the user at a specific time. We never log the real external IP address of the user.
We also hold a username and email address of our subscribers, the times of connection and disconnection to our services along with bandwidth consumption.
2. We now operate under the jurisdiction of Hong Kong because we worry what the lawmakers in USA and Europe may introduce to make things difficult for proxies and VPNs. We will fiercely protect the privacy and rights of our users and we will not disclose any information on our users to anyone, unless forced to by law enforcement personnel that have produced a court order.
3. On our Privacy servers DMCA does not apply (eg USA DMCA to our Swiss server). If we receive a DMCA on our other servers (US, UK, Canada, Germany & Singapore) we generally give the user one warning that they are violating our TOS and their account may be terminated.
4. Our payments systems are PayPal, Bitcoin & Liberty Reserve. We have an internal database linking payment references to user accounts. Bitcoin is the most private way to pay, for other payment systems all private billing information is stored with them.
Ipredator
1. We keep connection logs for debugging purposes, which happens encrypted and off-site. Connection logs contain information for debugging PPTP client issues. We try to store the least amount legally possible anywhere. IP-addresses are encrypted and can only be decrypted by non-support staff to ensure a proper process. For example, to work around issues where the police ruffles up the support staff a bit to get data for an abuse report. In the database we only store the details users give us on sign-up and a limited backlog of payments.
2. Sweden.
3. Usually we only receive email, therefore we drop anything that has DMCA in the subject. If they want something they need to send us a letter or a fax or send the police. Most of the time we get complaints for running the TPB proxy or the TOR servers.
4. PaySafe, BitCoins, PayPal, PaySon, AlertPay
BolehVPN
1. No we do not keep logs. However as per our policy, if we do notice any unusual activity on our servers (high bandwidth loading, high number of connections or cpu usage) we may turn on logs temporarily to identify abuse of our services (such as DoS or spamming through our servers).
Once the user is identified, we will terminate the offending user, issue him an e-mail for the reason of termination and wipe the logs from our system.
Turning on logs for troubleshooting is a very last resort and is necessary to ensure the integrity of our services. It has happened very rarely (only a handful of times in our 6 years of operation) and such information was not disclosed to third parties but merely used to terminate the offending user. In any case logs were usually enabled for not more than few hours and only for the particular server that was experiencing abuse.
2. We’re a Malaysian incorporated company which is not subject to any mandatory data retention laws. As we don’t keep logs, there is not much information to share even when requested.
3. Servers hosted in US or categorized as “surfing/streaming’ have P2P disabled on them. As for other servers, they are not subject to DMCA and we have a good working relationship with our server providers.
In the event DMCA notices or similar are given to us, we normally respond that we don’t have such content hosted on our networks and if the provider is adamant, we will terminate our relationship with the server provider and find a new one. We will not reveal the user that generated that DMCA notice (nor can we with no logs taken). Over the years, we have identified server providers that we can work with and understand the nature of our business.
4. We accept BitCoin, Liberty Reserve, Paypal and MolPay (Malaysian online bank-ins) and also direct bank-ins for Malaysian users.
For each order, there is an Order ID that is tied to a user name which is marked as paid or not and the method of payment. BitCoins would be the most anonymous form of payment since all other payment processors would require some identifying information. However to sign up to our service, all is needed is a working e-mail and you are free to use placeholder names etc etc. Only in the event of dispute or chargeback cases (especially with credit cards), additional info is requested which is to be expected when using a credit card (unless a prepaid visa is used).
NordVPN
1. No information is being held at all. Everything runs from a RAM and service does not use HDD.
2. We operate under Panama jurisdiction. We are unable to share any information to anyone because we do not keep anything.
3. They are ignored because we do not comply with those laws.
4. The payment methods are wire transfers, PayPal, 2CHECKOUT. We are currently implementing Bitcoin. Additional payment methods are available upon a contact to us. We only require a working e-mail address to be a customer.
Proxy.sh
Update: Following EFF’s feedback Proxy.sh has updated its ethical policy and no longer uses Wireshark to respond to abuses as it did before. The updated policy is explained here, and there is also a transparency report where all abuse inquiries are reported.
1. No information whatsoever is being recorded or held in our facilities. Our services are run from RAM and all our system services come with state-of-the-art configuration that ensures nothing is left after usage. The only information we have about our customers is an e-mail address and the name of the payment method.
2. We are based in Seychelles and we do not communicate with external governments or authorities unless when required by law, or when our ethics tell us to do so (note: read this policy for more details), that is precisely when activities such as child pornography or human rights violation are being reported. But once again, there is very little we can actually share about. And we will always keep you informed of such communication, either via our transparency report, our network issues or our warrant canary.
3. We provide a fully transparent and privacy-oriented compliance with laws of jurisdictions in which our servers are located. When the law, or its enforcement, leads to compromising the privacy of our users, we simply shut down the affected servers and move them to another jurisdiction that provides better protection of privacy.
4. We offer more than 85 different payment methods such as Bitcoins, SMS, phone calls, prepaid cards, PayPal, WebMoney, virtual cash, credit cards, bank transfer or yet again OTC (over-the-counter) options such as by going to your local post office. Payments are only linked to the customer’s e-mail address while VPN access accounts are randomly and independently generated.
HideIPVPN
1. We do not log users’ IPS IP addresses, only the account name. So if your account name is BuBu – there is no way of assigning it to real person or IP address. With that said, we would like to mention that we have other ways of noticing/checking if users are in breach with our ToS and such accounts are shut down and banned imminently.
2. We operate under US jurisdiction as we are not required to store any data regarding users activity. We will not share any information with third parties without a valid court order. And since our users are using share VPN IP it is impossible to match it to a specific person.
3. Since no information is stored on any of our servers there is nothing that we can take down. We reply to the data center or copyright holder that we do not log our users traffic and we use shared IP-addresses, which make impossible to track who downloaded any data from the internet using our VPN.
4. We currently accept payments via PayPal, Credit/Debit card, PayPro. As with other VPN providers our payment system and VPN/proxy/SmartDNS network systems are completely separate. Users identity can not be in anyway assigned to any activity over the internet.
Update: VPN providers can contact TorrentFreak if they want to be included in the upcoming 2014 VPN service review.
c There are 569 comments. Add yours?
comment policy