IPVanish has completed a new independent audit affirming its strict no-logs policy, further solidifying its position as a privacy-focused VPN provider.
IPVanish, owned by J2 Global Ventures, LLC, is a well-established VPN provider known for its commitment to user privacy and network performance. The firm serves a broad international customer base and has positioned itself prominently in the privacy tech ecosystem.
The audit, conducted by Schellman Compliance, LLC, was finalized on February 21, 2025, and found no evidence of user activity or metadata logging across any of IPVanish's servers.
This marks the second external audit of IPVanish's logging practices, reinforcing claims that the VPN service neither stores nor monitors user activity, traffic, DNS queries, IP addresses, or any metadata. The audit involved full access to systems, configurations, and engineering staff, providing a high degree of assurance about the company's no-log operations.
Schellman's validation included technical assessments across nine key areas, ranging from inspections of logging configurations and server images to simulated user sessions. Investigators confirmed that no user traffic or session data was stored at any point, even during tests involving real-time abuse detection systems. These safeguards operate entirely in memory and retain only anonymized, aggregated statistics, confirmed the auditors.
IPVanish also demonstrated that its privacy policies are uniformly enforced across all its global servers and service tiers, maintaining consistent protections regardless of user location or plan. Additionally, the audit highlighted a strict change management process. Any alteration to server configurations — particularly those related to logging — requires a dual-approval workflow, reviewed in regular advisory meetings to guard against unauthorized changes.
Government requests to IPVanish
Coinciding with the audit's publication, IPVanish also released its latest Transparency Report through its newly launched Trust Center. Covering the period from January to March 2025, the report offers insights into government and law enforcement requests for user data.
During this quarter, IPVanish received 35 legal requests, including from government and civil entities — but did not provide any user data in response. This outcome, consistent with previous quarters, stems from the simple fact that no user logs exist to be shared, claims the company.
Between October and December 2024, the service had received 51 similar requests, again with zero data disclosed. IPVanish has not received any National Security Letters and maintains that DMCA and abuse reports are handled without compromising user privacy.
If you're interested in exploring IPVanish and its pros and cons, you can find our in-depth review of their product here.
IP Vanish is slow as molasses…