CyberGhost Boosts Transparency with No Logs Policy Audit
September 2022 by Marc Jacob
CyberGhost invited the big four firm to audit its VPN server network and management systems, examining how it maintains a zero-log VPN service in order to confirm that server configurations align with internal privacy policies, and are not designed to identify users or pinpoint their activities.
CyberGhost is focused on defending people’s right to digital privacy. Transparency and a robust no logs policy are central to that, ensuring people feel confident in their security and anonymity online. To deliver its no logs policy, CyberGhost has developed its VPN network architecture and supporting processes to prevent data retention. By running its VPN service on RAM-only servers, the company can ensure that all server data is immediately deleted with every reboot. CyberGhost also runs a token-based system that ensures every user’s Dedicated IP address is truly anonymous, making it impossible to identify a customer or their browsing details.
This audit has been conducted in accordance with the International Standard on Assurance Engagements 3000 (Revised) applicable to Assurance Engagements Other Than Audits or Reviews of Historical Financial Information.
Because of the extensive nature of the audit and the scope of Deloitte services, excerpts from the report cannot be shared with the audience, in order to ensure none of the audit results are taken out of context and misunderstood.