Cost: To pay for NordVPN on a monthly basis will cost you $11.95/month. However, you can get it cheaper at $6.99/month if you buy 12 months at once for $83.88 or for $3.99/month when you purchase a 2 year plan for $95.75. Nord is also running a special that allows you to purchase 3 years of service for $2.99/month when you pay the full $107.55 upfront every three years. There's a 30-day money back guarantee and a free 7-day trial option.
Hide My Ass! is one of the more expensive VPN providers going. On a rolling monthly basis, you’ll be paying £7.99 a throw, while a £59.88 annual subscription is equivalent to paying £4.99 a month. As we said above, if you need a VPN service with a huge number of endpoints across the globe, then Hide My Ass! is the VPN for you. Otherwise, you might be better off looking elsewhere.
Corporate and Exit Locations: Depending on what you’re using a VPN for, your service’s location—and the exit locations you can choose—are important to consider. If you want to get around a location restriction and watch live TV in the UK, for example, you want to make sure your VPN service provider has servers in the UK. If you’re concerned about privacy or state-sponsored snooping, you may want to pick a service operated outside of your home country. Similarly, if the service is based on the US, they’re subject to US laws, and may be forced to turn over usage data to the authorities upon request. Many people make more of this than they should (we’ve seen overseas services turn over their data to friendly governments without any hesitation repeatedly), but it’s important to make sure a VPN has servers in multiple locations—or at least the location you’re interested in—when shopping.
Max Eddy is a Software Analyst, taking a critical eye to Android apps and security services. He's also PCMag's foremost authority on weather stations and digital scrapbooking software. When not polishing his tinfoil hat or plumbing the depths of the Dark Web, he can be found working to discern the 100 Best Android Apps. Prior to PCMag, Max wrote... See Full Bio
CyberGhost operates an ample network of more than 1,200 servers, including 20 in Australia and more than 200 in the US. It has a strong focus on unblocking streaming services like Netflix and Amazon Prime Video. It’s also popular with torrenters and has a dedicated “Torrent Anonymously” option within its apps. Plus, speeds are excellent, making it a great all-rounder. CyberGhost doesn’t log user activity or record IP addresses. Apps are available for Windows, MacOS, iOS, and Android.
Trusting a VPN is a hard choice, but IVPN’s transparency goes a long way toward proving that its customers’ privacy is a priority. Founder and CEO Nick Pestell answered all our questions about the company’s internal security, and even described the tools the company used to limit and track access to secure servers. The top VPN services gave us a variety of answers to these questions, some of which were frustratingly vague. ExpressVPN was the only other company to outline these controls and assure us that these policies were well-documented and not half-practiced.
Usually, it's the free services that throttle your usage in these ways. Some paid services will offer a trial, where you can transmit up to a certain data cap before being asked to sign up as a paying customer. That's actually pretty cool, because it gives you a chance to try out the performance of their service before paying, but it also gives the vendor a chance to make the money necessary to operate the service.
ExpressVPN operates servers in 78 countries, 20 of them in APAC alone. Torrenting is allowed on all servers. It’s consistently performed well in our unblocking tests and our speed tests so is a good option for streaming. It can unblock both the US and Australian Netflix catalogs in a browser as well as in the Netflix app. It keeps no traffic logs and is based in the British Virgin Islands, where it is not subject to any data retention laws. ExpressVPN makes apps for Windows, MacOS, Android, iOS, Linux (command line) and some wifi routers.
Even if a company is at fault for deceptive marketing practices, it still has to comply with legal requests for whatever information it does have. Jerome told us, “In the U.S., however, there is a big difference between a request for data regularly stored for business purposes and a demand that a company retain information. VPN providers are not required to keep records just in case law enforcement might need them some day.” That means many companies could provide a list of their customers, but if they practice what they preach when it comes to no-logging policies, innocent customers looking for privacy shouldn’t get swept up in these requests.
This could be bad. I'm not terribly concerned if Comcast discovers my secret passion for muscle cars and I get more ads for car customizing kits. It might be annoying, but I'm not doing anything I really want to hide. Where the problem could occur is if ISPs start inserting their own ads in place of ads by, say, ZDNet. That could cut off the revenue that keeps websites alive, and that could have very serious repercussions.
Finally, you may want a VPN to spoof your location to download content you shouldn’t have access to, but this too has limits. A VPN used to be the go-to solution to watch U.S. Netflix overseas. That changed in 2016 when Netflix opened up to almost every country on Earth. Since then, the company has invested a lot in detecting and blocking VPN users. Even people using a VPN inside their own country will be blocked by Netflix if detected.
While you're connected to a VPN, all your network traffic passes through this protected tunnel, and no one—not even your ISP—can see your traffic until it exits the tunnel from the VPN server and enters the public internet. If you make sure to only connect to websites secured with HTTPS, your data will continue to be encrypted even after it leaves the VPN.
We summarize the protocols above, and look at them in detail in VPN Encryption: The Complete Guide. Although L2TP/IPsec is fine for most purposes, we only really recommend OpenVPN and IKEv2. OpenVPN is very secure if properly configured. Indeed, Edward Snowden’s documents showed that even the NSA can’t crack well-implemented OpenVPN. It is also supported by almost every provider. But it is relatively slow. The newer IKEv2 is much faster and is considered secure, but has not been battle-tested in the way that OpenVPN has. It is not as well supported at present, although it is increasingly popular with providers thanks to its speed advantages over OpenVPN.
The app likewise prevents websites from collecting users’ private data, allowing for safer and more secure web browsing. To make things even better, the solution automatically connects whenever an unsecure Wi-Fi connection is detected, ensuring constant protection. It connects to the nearest server, resulting in optimum speeds. But one can also connect manually and be able to choose a preferred server.
Finding the best free VPN is an exercise in balancing those restrictions. TunnelBear, for example, lets you use any server on its network but limits you to 500MB-1GB per month. Avira Phantom VPN lets you use as many devices as you like and any server you like, but also restricts you to 500MB per month. AnchorFree Hotspot Shield also places no limits on the number of devices, but restricts you to 500MB per day and only US-based servers. Kaspersky Secure Connection also doesn't limit your devices but doesn't let you choose a VPN server—the app does it automatically.
It is possible for some background services to send information across that initial, unsecured connection before the VPN loads. To be fair, the risk is relatively minor for most usage profiles. If you're establishing a connection automatically to your corporate server, you will definitely want to check with your IT team about how they want you to set things up.
Generally speaking, transfer speed tests via NordVPN’s UK endpoints continue to impress, with FTP downloads clocking 10.4MB/s (83Mbit/s) and HTTP downloads at 10MB/s (80Mbit/s). However, we saw unusually slow FTP results from our Dutch reference server, at an anomalous 5.1MB/s (40.8Mbit/s), compared to an HTTP download at 9.9MB/s (79.2Mbit/s). That said, U.S. speeds have improved on previous tests, coming in at around 3.5MB/s (28Mbit/s) for both FTP and HTTP transfers.
Websites using Google Analytics and various advertising networks can very well track and identify visitors based on a variety of different inputs with their browser (see browser fingerprinting). Therefore it’s best to use a VPN in conjunction with a secure browser configured for more privacy. See my guides: secure browser (an overview of different browsers) and also Firefox privacy, which deals with privacy configurations, tweaks, and add-ons.
Think about all the times you’ve been on the go, reading emails while in line at the coffee shop, or checking your bank account while waiting at the doctor’s office. Unless you were logged into a private Wi-Fi network that requires a password, any data transmitted during your online session could be vulnerable to eavesdropping by strangers using the same network.
We considered native apps for Windows, Mac, and Android to be mandatory because they’re easier to use than open-source or third-party VPN apps like Tunnelblick; that in turn makes it easier to stay secure. For more-advanced users, adding VPN connections to Wi-Fi routers can help secure all connections on a home network without having to manage devices individually.
These folks have been around since 2010, and don't log anything. They provide a generous five connections, a connection kill switch feature, and some good online documentation and security guidance. Our one disappointment is that their refund policy is 7-days instead of 30, but you can certainly get a feel for their excellent performance in the space of a week.