A month ago, I posted my VPN Comparison Chart with tons of data on over 100 different services. After observing the poor state of the industry, I present to you a major update - ACCOUNTABILITY

Original Link

New fields added:

Contradictory Logging Policies - This field indicates a company who advertises a zero logs or absolutely no logs policy in their marketing, but upon further inspection do keep logs to some extent. This does NOT mean that the company in question has provided details about their logging policy in their terms or privacy policies, only that they have not claimed “no logging”, then immediately disproved it.

Falsely Claims Service is 100% Effective - No security or privacy setup truly offers 100% protection or is a bulletproof solution. When a company uses hyperbole or otherwise claims 100% effectiveness for anonymity, privacy, security, or generally gives this impression - it misleads potential customers that don’t know better and can harm the user who expects it to be true.

Offers PPTP and / or IPSec - The PPTP protocol is widely known to be insecure. The IPSec protocol has also come under scrutiny for being potentially insecure against state-level actors. Companies that allow their users to connect to their service using these protocols are potentially acting irresponsibly - even if they warn them first that they might be insecure.

Weakest/Strongest Data/Handshake Encryption - Companies that allow their users to connect to their service using obsolete encryption standards are potentially acting irresponsibly - even if they warn them first that they might be insecure.

# of Persistent Cookies set by Website/# of External Trackers on Website - Using webcookies.org - persistent cookies

Server SSL Rating - Run using Qualys SSL Labs - SSL Server Test Tool

SSL Certificate held by - Some sites SSL certificates are held by Cloudflare or other services. Some… (and these are PRIVACY/SECURITY companies mind you) don’t have a cert at all.

TL;DR - I got sick of seeing privacy/security companies sell services that are riddled with problems and decided to shine the spotlight on them to warn others and put pressure on them to change the better.

Your chart is better than that interview torrentfreak does by leaps and bounds. Really appreciate the time and effort you’ve put into it.

Looks like IVPN is in the top 3 in terms of quality too. Good to know.

Excellent work, thanks man! Every time, when i see/read/hear about any VPN service , i have to go to this chart and check them, “what they got for me”.

Because of that, and because there is so many columns now, maybe it will be a good idea to make at least second version of this chart (in tab or so) with transposition of the columns to rows ? You know, VPN services as columns and rest as rows, it’s hard to follow a single VPN, if you have to go all way through right side.

So I have PIA and just spent a bit of time looking into IVPN. It is my understanding that PIA does not log bandwidth, and IVPN does log the number of connections. Have I misread the vpn websites’ information?

Thanks for the hard work

This is awesome!! Seriously, thanks for your contribution.

really cool spreadsheet man, thanks

As I understand it, there’s nothing intrinsically wrong with IPsec, but its robustness will depend on what methods are used to create the session key. The same would apply to other transport methods, except that they generally have fewer choices available. Am I missing something here?

Yea, i mean, maybe you have to look on this from this side: TF is about “piracy” and especially, government resources put into those cases doesn’t have a high priority, and NSA probably don’t give a shit about it. So, maybe, for “piracy” it can be enough (“no logging” and staff), but we have much more “deeper” and true requirements.

TF has money in the game, sponsors want to be in a positive light, so TF wouldn’t be unbiased.

To be unbiased, I’ll have to let you come to your own conclusions, sorry.