What VPN have you switched to after the Mullvad situation. I have looked at nym and ivpn. But don’t know if they are any good.
What VPN have you switched to after the Mullvad situation. I have looked at nym and ivpn. But don’t know if they are any good.
It really depends on whether you care or not about State Surveillance.
If you don’t and only really care about general privacy and things like not getting letters from lawyers demanding money because you torrented something, then any no-logs VPN will do:
If, however, you care about State Surveillance, then merely a no-logs VPN isn’t necessarily safe anymore. You see several countries, such as the US and UK, have special surveillance courts (such as FISA courts in the US) which can issue court orders to facilitate data access for mass surveillance WHICH THE RECIPIENTS CANNOT PUBLICLY ADMIT THEY’RE UNDER. In other words, the wiretapping equipment/software to allow bulk tracking of what users are doing might already be installed at the no-logs VPN (and they cannot tell you about it otherwise they’ll literally end up in jail) so it’s not in fact no-logs because the likes of the NSA is actually logging it all. Any VPN hosted in such legal jurisdictions can be the target of it, any company registered in such legal jurisdictions can be the target of it and it doesn’t matter how honest and pro-privacy the people in those companies are - I vaguely remember the case of a secure e-mail provider in the US (forgot the name now), who tried to fight one such court order and ultimately the only way they found to do so was to close down the service and their company.
So if you VPN company is for example registered in Gibraltar (which is a British jurisdiction) or the US and they’re still operating, they’re very likely compromised and even if they’re not, they can silently be compromise at any time.
If you care about avoiding mass surveillance from actual governments, then beyond the usual autocratic nations you’ll want to avoid VPN exit points in and VPN providers based in or registered in at the very least the US, UK and Israel and any of the regions under their jurisdiction (for example Gibraltar and the Channel Islands for Britain, Puerto Rico for the US), probably more broadly all the 5-Eyes nations (so, the first 2 plus Canada, Australia and New Zealand).
So check were that “wonderful no-logs VPN” company is registered and were is based and avoid those in countries with insane civil society surveillance legislation like the Patriot Act and even avoid exit nodes of other VPN companies in such countries.
Do you happen to have more info on that? Which UK government agencies would need to have jurisdiction over their Gibraltar counterparts for this to work?
The English Law Act 1962 stipulates that English common law will apply to Gibraltar unless overridden by Gibraltar law. This means that amongst others the Regulation of Investigatory Powers Act 2000 as well as earlier and later laws around surveillance, apply in Gibraltar by default.
I supposed one would need to find legal counsel in Gibraltar to determine if Gibraltar has passed laws that nullify English laws on surveillance powers, and until proven that Gibraltar has passed said laws the most logical expectation to have is that the same surveillance laws that apply in Great Britain also apply in Gibraltar because that’s the case for most laws.
Got it! I also found this IVPN blog post back from 2016 (keeping in mind that it’s old and may be biased) and this recent Privacy Guides forum thread for further reading.
I have to say: all legal area is a grey area if you legal hard enough, but British Territories are on another level. I feel like I’m changing their legal system by observing it.
It was Lavabit. The interview witht the founder about that whole fiasco is legendary I’ll try to find and link it
https://m.youtube.com/watch?v=spW0q-g2BxU&pp=ygUXTGFkYXIgTGV2aWFvbiBpbnRlcnZpZWU%3D