Who Mullvad is, in one paragraph
Mullvad is operated by Amagicom AB, a small, privately held Swedish company in Gothenburg founded in 2009 by Daniel Berntsson and Fredrik Strömberg. The company has never taken outside investment, has roughly 50 employees, and sells exactly one product: a €5-a-month VPN subscription with no commitment, no tiers, no upsells, no "lifetime" deal, and no marketing on streaming. The founding philosophy — that the operator should know as little as technologically possible about its users — is the reason Mullvad refuses to ask for an email address, and it explains almost every other strange-looking design choice this company has made. Mullvad is also one of the few VPN providers that collaborates with the Tor Project, jointly building and shipping the Mullvad Browser, which is essentially the Tor Browser configured for a VPN exit.
Backend architecture & engineering
Mullvad is WireGuard-only after the OpenVPN sunset completed in January 2026. The data path is the simplest of the three providers reviewed here — there is no proprietary protocol layer like NordLynx and no multi-hop default like Proton's Secure Core. Sessions are identified by an ephemeral WireGuard public key rotated on every reconnection; the account database stores only the account number, the expiry date, and the most recent rotated key.
Mullvad client] -->|WireGuard
UDP 51820| B[Edge server
RAM-only] B -->|Local NAT| C[Egress IP
shared] C -->|Plain TCP/UDP| D[Internet] A -.->|DAITA pacing /
cover traffic| B B -.->|Auditable
System Transparency| E[(Boot attestation
signed image)] style B fill:#0e1a2b,stroke:#f59e0b,color:#fff style C fill:#0e1a2b,stroke:#f59e0b,color:#fff
Two architectural features genuinely set Mullvad apart. The first is the System Transparency programme — Mullvad publishes the boot image its servers run, signs each release, and works with hardware vendors to publish boot attestations from each server. The point is that a third-party auditor can verify which image is actually running on a Mullvad server today, not just trust Mullvad's word that the audited image is the deployed one. NordVPN's RAM-only fleet and Proton's stateless fleet conceptually do the same thing, but neither publishes boot attestations to the public.
The second is DAITA: Defence Against AI-guided Traffic Analysis, shipped in 2024. DAITA adds traffic pacing and cover-traffic injection at the WireGuard layer so that the size and timing pattern of your packets no longer betrays which application is generating them (a video call vs. a download vs. a chat session each produce distinct fingerprints under raw WireGuard). This is the only meaningful defence any commercial VPN ships today against the class of side-channel analysis that's increasingly relevant to nation-state observers. Proton and Nord ship nothing equivalent.
The full fleet — diskless RAM-only servers running a signed Linux image — was completed in late 2023 in direct response to the April-2023 Stockholm police raid (see incidents below).
Traffic monitoring, encryption & network privacy
Standard WireGuard cryptography — ChaCha20-Poly1305, Curve25519, BLAKE2s, HKDF — with key rotation on every reconnect. Mullvad shipped a post-quantum WireGuard preview using Classic McEliece + Kyber/ML-KEM hybrid in 2023, ahead of Proton's similar work in 2024, and it is now enabled by default on roughly half of Mullvad's fleet. Practically this protects against harvest-now-decrypt-later archival attacks; it does not change anything about your day-to-day stream confidentiality.
DNS is handled by Mullvad's resolvers on the same node that terminates your tunnel — no third party, and crucially Mullvad's resolvers run their own ad/malware filter lists you can toggle in the client. Because there are no logs at the egress, Mullvad's DNS resolvers do not retain query history.
Legal compliance, jurisdiction & law enforcement
Sweden is a 14-Eyes member, has an EU-mandated data-retention regime that was struck down by the CJEU (2014, Digital Rights Ireland) and has been in legislative flux ever since. On paper, Sweden is a worse jurisdiction than Switzerland (Proton) or Panama (Nord). In practice, Mullvad's answer to jurisdictional risk is engineering rather than paperwork: because the servers are RAM-only and the account database stores nothing that links to a real identity, a Swedish court can only compel Mullvad to hand over what Mullvad has — which is almost nothing. The 2023 police raid is the field test that proved this.
The April 2023 Stockholm raid — the most important data point in commercial VPN history
On the morning of 18 April 2023, Swedish police arrived at Mullvad's Gothenburg office with a search warrant seeking customer data tied to a specific case. Mullvad's lawyers explained, on the record, that the company does not store the requested data and that even if the police seized every server they would obtain nothing useful — the data does not exist to be seized. The officers consulted with the prosecutor, agreed that seizing servers would be pointless, and left the premises with no equipment and no data. The raid is documented in Mullvad's transparency report, in Swedish press coverage, and in subsequent independent reporting.
No other major VPN provider has been through a comparable adversarial process and emerged with this outcome. NordVPN's 2018 Finland breach was a third-party datacenter problem; Proton's 2021 Mail case involved compelled metadata that did exist. Mullvad's raid produced the result the company's architecture had been designed to produce.
Data breaches & incident response
Mullvad has had no known data breach. The only notable client-side issue was a DNS leak in the Android app under specific OS-level VPN-toggle conditions, disclosed and patched in October 2022. Mullvad publishes the full report and the corresponding code change on its security blog. Incident communications are unusually direct — short, technical and dated, more like a CERT advisory than a corporate blog post. Compared to NordVPN's 19-month delay on the 2018 Finland disclosure, the difference in incident-response posture is stark.
Company transparency & trustworthiness
Mullvad's transparency record is the cleanest in the industry. Independent infrastructure audits by Cure53 (2018, 2020) and Assured AB (2021, server infrastructure). Public reproducible builds. Public boot attestations. Public, dated, dry incident reports. The owners are named and reachable; the company hosts an open recruiting page that names every team. There is no marketing department in any meaningful sense and the website refuses to claim things the engineering team can't ship. The principal frustration with Mullvad — that it's plain, has no streaming pitch and no affiliate program — is the same posture that makes it trustworthy.
Performance & reliability
On a gigabit line to a same-continent server, Mullvad's standard WireGuard delivers 500–750 Mbps single-stream — slower than NordLynx's modified WireGuard, faster than ProtonVPN's userspace WireGuard. With DAITA on, expect a 10–25% throughput hit and an extra 5–15 ms of latency, which is the engineering cost of the cover-traffic shaping. Server count (~700) is a fraction of Nord's ~6,400, but the servers are predominantly owned and Mullvad is unusually willing to publish utilisation data per server so you can pick a quiet one.
Streaming is the explicit blind spot. Mullvad will not maintain residential IP pools or partner with streaming services to keep itself unblocked; if you want Netflix US from outside the US, NordVPN is the right choice. Mullvad also refuses to offer port forwarding (removed June 2023 after abuse-related takedowns) — a deal-breaker for some self-hosters and torrenters.
How Mullvad stacks up against NordVPN & ProtonVPN
| Spec | Mullvad | ProtonVPN | NordVPN |
|---|---|---|---|
| Identity required at signup | None — 16-digit random account number | Email (anon email OK) | Email + payment metadata |
| Cash payment by mail | Yes, in any major currency | Yes (BTC easier) | Crypto only |
| Pricing tiers | One — €5/mo flat, no commitment | Free / Plus / Unlimited | Std / Plus / Complete |
| Server fleet | ~700 servers, 40+ countries | ~3,300, 90+ countries | ~6,400, 60+ countries |
| Owned vs rented | Mostly owned hardware ("Mullvad servers") | Mixed; Secure Core fully owned | Mixed; colocation fleet owned |
| Reproducible builds | Yes — desktop & mobile | Partial | No |
| Traffic-shaping defence | DAITA (defence against AI-guided traffic analysis) | None equivalent | None equivalent |
| Default protocol | WireGuard only (OpenVPN sunset Jan 2026) | WireGuard / OpenVPN / Stealth | NordLynx (WireGuard) |
| Streaming claims | None — actively discouraged | Paid plans only | Aggressive marketing focus |
| Public incident history | 2023 Stockholm police raid — no data seized | 2021 Mail-only compulsion case | 2018 Finland server compromise (disclosed 2019) |
Pros & cons
Use Mullvad if…
- Your threat model includes the VPN provider itself.
- You want to pay cash by mail and never share an email address.
- You're a researcher, journalist or activist who wants DAITA defences.
- You value engineering minimalism over a feature checklist.
- You want a provider whose claims have survived an actual police raid.
Avoid Mullvad if…
- You want Netflix US, BBC iPlayer or Disney+ from outside their regions.
- You need port forwarding for torrenting or self-hosting.
- You expect 24/7 live-chat support and a slick onboarding.
- You're shopping primarily on price — Nord's 2-year plan is cheaper per month.
- You want servers in 100 countries — Mullvad sits at ~40.
Verdict
Mullvad is the VPN I personally use, and the one I recommend to anyone whose threat model places the provider itself in the adversary list. The account-number model removes a class of identifying metadata that ProtonVPN and NordVPN both still collect; the engineering — RAM-only fleet, System Transparency, DAITA, reproducible builds — is the most aligned with the marketing claims of any provider in this comparison; and the 2023 raid is the field test that vindicated the architecture. The trade-offs (no streaming, smaller fleet, no port forwarding) are real, and if those matter you should pick differently. If they don't, Mullvad is the strongest choice on this page.
