VPN Privacy Scandal: Proton and NordVPN Admit to Monitoring Users

A Privacy Industry in Crisis

The global privacy industry is facing one of its biggest credibility tests yet. Two of the world’s leading virtual private network (VPN) providers — Proton VPN and NordVPN — are under fire after recent statements revealed that both companies monitor aspects of user activity to “anticipate potential abuse.”

The disclosure, tucked deep within company communications and policies, has shocked digital-privacy advocates. For years, Proton and NordVPN marketed themselves as champions of online anonymity — vowing “no logs,” total security, and freedom from surveillance.

Now, privacy experts argue those promises were misleading at best.

Proton’s Quiet Admission

Proton, often praised as a gold standard in the privacy community, confirmed that it can analyze outgoing user traffic to detect suspicious behavior. According to Proton’s own explanation, this capability is meant to protect its network integrity — but critics say it undermines the very principle of privacy.

In simple terms, if a company can “analyze” your traffic, it can see your traffic. And if it can see it, it can link it back to individual users.

Cybersecurity analyst Daniel Hodge told Epoch Post,

“This isn’t about catching hackers. It’s about redefining privacy to fit corporate convenience. Users thought Proton couldn’t see what they were doing. Now we know it can.”

NordVPN and Surfshark Under Similar Scrutiny

NordVPN, one of the most heavily marketed VPNs globally, includes similar language in its own policies. The company admits to using automated tools to detect patterns in network activity, ostensibly to identify misuse or “unauthorized behavior.”

But experts point out that such detection requires visibility into traffic data — meaning NordVPN, too, must have the technical ability to trace user actions.

Other providers such as Surfshark and ExpressVPN have been accused of similar practices. Surfshark’s terms of service explicitly allow the company to ban users for prohibited activities, which raises the question: how can it enforce such bans without monitoring behavior?

Industry Consolidation Raises More Questions

The problem goes beyond individual brands. Research shows that more than 100 VPN companies are controlled by just 24 parent firms, many with links to intelligence contractors and overseas governments.

For instance, Kape Technologies, which owns ExpressVPN, CyberGhost, and Private Internet Access, was founded by individuals formerly associated with Israeli cyber-intelligence units. Meanwhile, several popular mobile VPNs are tied to Chinese corporations — some reportedly with connections to the Chinese Communist Party.

This consolidation has allowed a handful of powerful entities to dominate the global privacy market — and potentially control access to data once thought private.

The Marketing Mirage

Adding to the irony, Proton VPN’s rise to fame was fueled by its collaboration with the TV series Mr. Robot, a show celebrated for its anti-surveillance message. That partnership helped establish Proton as the “ethical” privacy brand trusted by journalists, activists, and citizens under authoritarian regimes.

Now, those same users — many of whom rely on VPNs for safety — are questioning whether any service can be trusted.

Digital-rights researcher Amira Velasquez said,

“If even the privacy companies are monitoring us, who’s left to protect us? The industry needs transparency and independent auditing — not marketing slogans.”

A Call for Transparency

The latest revelations have reignited debate over the future of online privacy. Experts are urging stronger independent audits, open-source verification, and clear user consent policies across all VPN services.

Until that happens, users may have to reconsider what “no logs” really means — and whether complete anonymity online still exists