Transparency & no-logs
Nothing to hide. Nothing to hand over.
How our encryption works, why our infrastructure can’t store your data, and the independent audits that prove it — published in full, twice a year.
Security, made tangible
Inside the encrypted tunnel
The moment you connect, NightShield wraps your traffic in an AES-256 encrypted tunnel. Your ISP, network admins, and anyone on public Wi-Fi see only unreadable ciphertext — never the sites you visit or the data you send.
-
AES-256-GCM cipher
Brute-forcing this key would take longer than the age of the universe — by orders of magnitude.
-
WireGuard®, OpenVPN & IKEv2
NightShield picks the fastest secure protocol for your network automatically — or let power users choose.
-
RAM-only servers
Every server runs entirely in memory. Pull the plug and all data is gone — nothing can be seized.
-
Zero-knowledge DNS
Encrypted, private DNS on every server — your queries never touch a third party.
Audited by independent security firms. Our apps, infrastructure, and no-logs policy are verified by Cure53 and Deloitte. Reports are published in full.
No-logs policy
What we never collect
Zero activity logs
NightShield is engineered so that user activity data never exists on our systems. Specifically, we never record:
- Websites you visit or apps you use
- Your original IP address or the VPN IP assigned to you
- Connection or disconnection timestamps
- Bandwidth used per session
- DNS queries made through our resolvers
Because our entire fleet runs on RAM-only servers, no data can persist a reboot. There is nothing to sell, subpoena, or leak — by design, not just by policy.
The minimum we do keep
Running a paid service requires a small amount of account data, kept strictly separate from network operations:
- Your email address, for sign-in and account recovery
- Payment records required by law (handled by our payment processors)
- Aggregate, anonymised server load — total capacity, never per-user
Full details are in our Privacy Policy.
Independent audit history
We commission two independent audits per year — one of our applications and infrastructure, one of our no-logs claims. Summaries below; full reports are available to all customers.
| Period | Auditor | Scope | Result |
|---|---|---|---|
| H1 2025 | Cure53 | Apps & VPN infrastructure | Passed |
| H1 2025 | Deloitte | No-logs policy verification | Verified |
| H2 2024 | Cure53 | Desktop & mobile applications | Passed |
| H2 2024 | Deloitte | No-logs policy verification | Verified |
| H1 2024 | Cure53 | Server infrastructure & DNS | Passed |
Government & legal requests
We publish a warrant canary and a summary of legal requests every quarter. To date, NightShield has never handed over user activity data — because none exists to hand over.
- Q2 2025: 3 requests received · 0 produced any user activity data
- Q1 2025: 5 requests received · 0 produced any user activity data
- Q4 2024: 2 requests received · 0 produced any user activity data
Privacy you can verify.
Don’t take our word for it — take the auditors’. Try NightShield risk-free for 30 days.
Get NightShield — from $4.99/mo30-day money-back guarantee · Unlimited devices · Cancel anytime