You hit connect, the little icon turns green, and you exhale. You feel covered now. You open your banking app, search something you’d rather no one knew you searched, book a flight to a country you haven’t told anyone about. The shield is up. Except for the half-second before it came up — and the server on the other end you’ve never seen, sitting in a building you can’t name, run by people whose only promise is that they’re not writing any of this down. You trusted the green icon. You never asked what was behind it.
The short version: Proton VPN is a Swiss-based, open-source VPN that routes your traffic through hardened, company-owned servers in privacy-friendly countries before it reaches the wider internet. Its standout feature, Secure Core, means a compromised exit server only ever sees another Proton server’s address — never your real IP. It runs the modern WireGuard protocol, adds a DNS-level ad and tracker blocker called NetShield, uses Perfect Forward Secrecy on every session, and is protected by Swiss data-protection law rather than a marketing promise. Plans run from a limited free tier to $4.99/month (Plus) and $12.99/month (Proton Unlimited). The trade-off is multi-hop latency, eased by Proton’s VPN Accelerator. For operators who want jurisdiction and auditable code over raw speed, it’s the strongest foundation layer available.
Why the VPN you trust is the thing watching you
Here’s the part the privacy industry would rather you not sit with. When you pick a VPN, you are not removing a watcher. You are choosing one. Your ISP can no longer see where you go — but the VPN company can. You’ve taken the most sensitive map of your life, the one your internet provider used to hold, and handed it to a different company, in a different country, with a privacy policy you didn’t read and a log file you can’t inspect.
The 12-point setup for a private, secure, high-output digital life — in one afternoon. No spam, unsubscribe anytime.
Most VPNs market themselves as “private” because they’re incorporated in Panama or the British Virgin Islands — jurisdictions chosen for minimal oversight and easy tax treatment. The quiet catch is that those same jurisdictions have little legal machinery to resist pressure from Five Eyes intelligence agencies. The marketing says offshore. The risk signal model says exposed.
So the real question isn’t “does this VPN hide my IP.” Every VPN does that. The question is: when someone powerful comes asking, what actually stands between them and you — a company’s word, or a country’s law? Here’s the catch most reviews miss: a VPN doesn’t delete the watcher, it just lets you pick which one you trust — and that choice is the entire product.
Why Switzerland matters more than you think
This is the turn, and it’s the whole reason Proton exists. Most providers ask you to trust a CEO’s integrity. Proton asks you to trust Swiss law instead — and law is a far harder thing to subpoena around.
Switzerland has a constitutional mandate for privacy and neutrality, backed by the Swiss Federal Act on Data Protection. When a foreign government wants user data, it has to go through Swiss courts, which have a documented record of rejecting requests that violate Swiss law. Proton’s headquarters is in Genevan Switzerland — the legal entity, not just a rented data center — which means any attempt to force a data handover creates a public legal record rather than a quiet back-room compliance.
The cleanest proof is old and undramatic: in 2018, Swiss police requested logs of a Proton Mail user. Proton had nothing to hand over. You’re not betting on a promise not to log. You’re betting on a system where there was nothing to surrender in the first place.
What is the network leak problem, and why standard VPNs fail?
A network leak is the moment your real IP address becomes visible to the internet, even for a fraction of a second. Your ISP logs it. A website records it. A government now holds a permanent link between your digital footprint and your physical location — and no amount of obfuscation afterwards can undo a leak that already happened.
Standard VPN architecture routes your traffic through a single server. If that one server is seized, tapped, or compromised, your privacy rests entirely on the provider’s log-retention policy and nothing else. In 2024, a major European data centre was data incidented, and hundreds of VPN users had their traffic logged by incidenters who controlled the hardware. The single point of failure failed, exactly as single points of failure do.
A VPN with one server between you and the world isn’t a fortress. It’s a hallway with one door — and you don’t hold the key.
How Secure Core architecture protects you
Secure Core is Proton’s answer, and it’s the feature worth paying for. Instead of routing your connection through one server, it sends your traffic through multiple hardened servers in privacy-respecting countries — Switzerland, Iceland, Sweden — before it exits to your destination. Every one of those servers is owned and operated directly by Proton, not leased from a third-party data centre. If the exit node is compromised, the incidenter sees only the IP of the server before it, never yours.
This is the difference from ordinary “double VPN” features, which bounce you through random servers. If the first random server is compromised, the second can still see your real IP. Secure Core uses geographically isolated, company-owned infrastructure, so the risk signal model shifts from single point of failure to multi-hop resilience.
Go back to that 2024 European data incident. Proton users connected through that country via Secure Core stayed anonymous, because their traffic had passed through the hardened Swiss bunker first. The compromised exit node only ever saw the Swiss server’s address. That wasn’t a marketing scenario — it was a structural bulkhead doing the one job a bulkhead exists to do.
WireGuard, NetShield, and Perfect Forward Secrecy: the protocol stack
Proton was an early adopter of WireGuard, a modern VPN protocol that’s faster and simpler than older standards like OpenVPN — less code to audit, fewer places for bugs to hide. On top of it, Proton layers NetShield, a network-level ad and harmful software blocker that works at the DNS level. It doesn’t just block bad sites after you’ve reached them; it stops tracking scripts and ad networks from reaching your device at all. You’re filtering the water before it enters the house, not mopping up after.
NetShield runs in three modes:
- Block Ads & Harmful software (default): filters known ad networks and malicious domains.
- Block Ads, Harmful software & Trackers: also blocks analytics and tracking scripts.
- Disabled: for sites that break under filtering.
Then there’s Perfect Forward Secrecy. PFS means each session gets its own unique encryption key, so if an incidenter steals one key, they can decrypt only that single session — not your entire history. Proton applies PFS to every connection. This is also where the jurisdiction stops being abstract: even if a Swiss court ordered Proton to surrender encryption keys, those keys couldn’t retroactively decrypt your traffic from months ago. The past stays sealed.
VPN Accelerator and the speed trade-off you have to name
Here’s the honest tension. Encryption and multi-hop routing add latency — that’s physics, not a flaw, and any review that pretends otherwise is selling you something. The temptation with a slow VPN is the most dangerous moment in your whole security posture: I’ll just disable it for this one task. That single exception is how people get caught.
Proton’s answer is VPN Accelerator, a set of proprietary optimisations — multi-threading, packet processing, connection pooling — built to push past the CPU limits of standard protocols. On high-latency networks, Proton states it can increase speeds by up to 400%. Treat the headline figure as a vendor claim measured under favourable conditions, not a guarantee for your living room. The point that holds regardless: a VPN you’re tempted to switch off is a VPN that isn’t protecting you. Speed is a security feature precisely because it removes the excuse.
For situations where anonymity matters more than speed, Proton also offers Tor-over-VPN servers — a single click routes your traffic through the VPN tunnel and then through the Tor network, useful for journalists, activists, or anyone operating where even a visible VPN connection draws suspicion.
Stealth protocol, full-disk encryption, and open code
In countries that run Deep Packet Inspection (DPI) — China, Russia, Iran, among others — ordinary VPN traffic is easy to spot and block. The firewall can see the VPN handshake; it knows you’re hiding something even if it can’t read what. Proton’s Stealth protocol obfuscates that handshake so the connection looks like ordinary HTTPS traffic. The firewall sees encrypted data but can’t tell it’s a VPN. That’s the difference between encrypting your message and hiding the fact that you’re encrypting at all. For operators in high-risk zones, that distinction isn’t a feature — it’s the lifeline.
Two more controls round out the foundation. Proton’s servers use full-disk encryption: even if a data centre is physically raided and the drives walk out the door, they’re unreadable without decryption keys that are managed from Swiss headquarters and never stored on the servers themselves. And Proton VPN’s code is open-source and publicly auditable, with independent audits commissioned from security firms including SEC Consult and Securitum. You don’t have to trust the brochure; you (or an expert you hire) can read the blueprints. That transparency is still rare in an industry where most competitors keep their code closed.
How to configure Proton VPN: the network hardening checklist
A VPN is only as strong as its settings, and the defaults aren’t the destination. Start with the smallest possible move — enable the kill switch — and build from there:
- Kill Switch: turn on the Permanent Kill Switch on desktop. It blocks all internet unless the VPN is active, removing the human error of forgetting to reconnect.
- DNS Leak Prevention: set NetShield to Block Ads & Harmful software or higher. This forces DNS requests through Proton’s own resolvers, so your ISP can’t see which sites you visit.
- Split Tunnelling: use it only for non-sensitive traffic like streaming or gaming. Banking, crypto, and sensitive work stay inside the tunnel — never mix encrypted and unencrypted streams for the same activity.
- Port Forwarding: for P2P or self-hosting, use Proton’s port-forwarding feature to keep speed while staying behind the encrypted tunnel.
What does Proton VPN cost, and is it worth it?
Pricing varies by feature set:
- Free Plan: limited speeds, one connection, no Secure Core — useful only for testing.
- Plus ($4.99/month billed annually): 10 simultaneous connections, Secure Core, NetShield, Tor servers.
- Proton Unlimited ($12.99/month billed annually): all Proton services — VPN, Mail, Drive, Calendar, Pass.
All paid plans include Perfect Forward Secrecy, WireGuard, and a documented no-logs policy. The strategic value of Unlimited is consolidation: Proton VPN sits inside a single architecture run by Proton AG, alongside Proton Mail, Proton Drive, Proton Calendar, and Proton Pass. One provider, one jurisdiction, one risk signal model, one trust decision — instead of stitching together four companies with four privacy policies and four separate data incident exposures.
If you’re cross-shopping, the closest infrastructure-first rival is Private Internet Access (PIA), which competes on hardened server logic rather than jurisdiction; Mullvad VPN competes on anonymous, account-number sign-up. Proton’s distinct edge stays the same — Swiss Federal law plus Secure Core, together.
Frequently asked questions
Does Proton VPN keep logs of my traffic?
No. Proton maintains a documented no-logs policy that has been independently audited. It logs connection timestamps and bandwidth for billing, but not your traffic content or destination IPs. The 2018 case, where Swiss police requested logs of a Proton Mail user and Proton had nothing to hand over, is the practical proof of the policy.
Can I use Proton VPN in China?
Yes, but you’ll need the Stealth protocol enabled to bypass Deep Packet Inspection. Standard VPN connections are blocked there. Stealth makes your traffic look like ordinary HTTPS, which is much harder to detect and block.
How does Secure Core compare to other multi-hop VPNs?
Most multi-hop VPNs route through random third-party servers, so if a server is compromised your real IP can surface. Secure Core uses hardened, company-owned infrastructure in privacy-respecting jurisdictions, which makes that exposure structurally harder.
Is Proton VPN slower than competitors?
Multi-hop adds latency compared with no VPN at all. With VPN Accelerator enabled on modern hardware, Proton is competitive with standard single-hop VPNs. The added latency is the price of the extra security layer — name it honestly and decide if your risk signal model is worth it.
What’s the difference between Proton Mail and Proton VPN?
Proton Mail encrypts your email content end-to-end. Proton VPN encrypts your network traffic and hides your IP. They cover different surfaces, and you need both for full coverage — they’re designed to work together inside the same Swiss legal framework.
You hit connect today and felt covered. Now you know what that green icon is actually standing on — not a promise, but a jurisdiction; not one fragile server, but a hardened chain where the weakest link still doesn’t know your name. Set the permanent kill switch tonight; that’s the five-minute move that turns a convenience into a foundation. You’re not someone hoping a company keeps its word anymore. You’re an operator who chose the law, read the code, and built the network you actually control.
For deeper layers of the same stack, see the Linux Hardening Manual, Private Banking for Sovereigns, and more in Digital Sovereignty.
Join the Inner Circle
Weekly dispatches. No algorithms. No surveillance. Just sovereign intelligence.