this post was submitted on 25 Sep 2025
110 points (97.4% liked)

Proton

7840 readers
2 users here now

Empowering you to choose a better internet where privacy is the default. Protect yourself online with Proton Mail, Proton VPN, Proton Calendar, Proton Drive. Proton Pass and SimpleLogin.

Proton Mail is the world's largest secure email provider. Swiss, end-to-end encrypted, private, and free.

Proton VPN is the world’s only open-source, publicly audited, unlimited and free VPN. Swiss-based, no-ads, and no-logs.

Proton Calendar is the world's first end-to-end encrypted calendar that allows you to keep your life private.

Proton Drive is a free end-to-end encrypted cloud storage that allows you to securely backup and share your files. It's open source, publicly audited, and Swiss-based.

Proton Pass Proton Pass is a free and open-source password manager which brings a higher level of security with rigorous end-to-end encryption of all data (including usernames, URLs, notes, and more) and email alias support.

SimpleLogin lets you send and receive emails anonymously via easily-generated unique email aliases.

founded 2 years ago
MODERATORS
ProtonPrivacy@lemmy.world
alex_herrero@lemmy.world
Nelizea@lemmy.world
110
Proton VPN’s 2025 no-logs policy audit is now available (lemmy.world)
submitted 5 days ago by Nelizea@lemmy.world to c/protonprivacy@lemmy.world
20 comments fedilink hide all child comments
 

from the team:

Hey everyone,

We are now able to share that Proton VPN has successfully passed its 4th consecutive independent audit of our strict no-logs policy, conducted by Securitum, a leading European security auditing company.

Key takeaways from the audit:

  • No activity or metadata logs are kept anywhere on our servers.
  • No inspection of user traffic occurs.
  • Robust administrative and technical controls are in place, including automated configuration management and a dual-control change process.
  • The no-logs policy is enforced uniformly across all servers, regions, and subscription tiers.

Don’t trust, verify is not just something we preach, but something we practice, so our no-logs policy has now been verified by independent experts; you don’t have to take our word for it.

📖 Read the full audit report here

Stay safe,

Proton Team

you are viewing a single comment's thread
view the rest of the comments
[–] unexposedhazard@discuss.tchncs.de 0 points 5 days ago (2 children)

Lemmy is "self hosted" that doesnt mean every user has their own instance...

[–] onslaught545@lemmy.zip 0 points 5 days ago

That doesn't mean that instance owners can't do shady shit. Open source is meaningless when you're talking about a service provider.

[–] onslaught545@lemmy.zip -1 points 3 days ago* (last edited 3 days ago)

To expand, you don't want your service provider to open source all of their configs. Audits like the one Proton went through require admin access to systems that you absolutely don't want the public to have.

This is just like Lemmy. The actual code is open sourced. But instance configs aren't (for good reason)

Proton isn't a developer when it comes to their VPN service. They most likely are utilizing open source solutions to run it, but they're not operating a code base for it.

Their clients are open source, though.

And I'm saying this as a cyber security expert who uses Proton for personal use.