Who NordVPN is, in one paragraph
NordVPN is the commercial face of Nord Security, a Lithuanian conglomerate spun out of a small team that started selling consumer VPN subscriptions in 2012 and now also operates NordLayer (business VPN), NordPass (password manager) and NordLocker (encrypted storage). Legally, the consumer service is operated by nordvpn S.A. in Panama — a jurisdiction chosen precisely because it has no mandatory data-retention law and no mutual legal assistance treaty (MLAT) directly aligned with US or EU surveillance demands. Engineering, however, lives in Vilnius and Kaunas, and roughly two-thirds of the company's traffic touches infrastructure that sits inside the EU. That split — privacy-friendly paperwork in Panama, operational reality in Lithuania — is the single most important thing to understand about NordVPN before you trust it.
Backend architecture & engineering
The most consequential engineering decision NordVPN ever made was building NordLynx on top of WireGuard in 2020. Vanilla WireGuard stores a static mapping between a peer's public key and its assigned tunnel IP — fine for self-hosted setups, fatal for a commercial VPN that needs to claim it doesn't keep identifiable session data. NordLynx wraps WireGuard in a double-NAT layer: the first NAT assigns you a local, throwaway tunnel IP that exists only for the duration of your session; the second NAT translates that to the egress IP that the rest of the internet sees. The mapping table lives only in volatile memory and is dropped the moment your session ends.
In practical terms, the data path looks like this:
NordVPN client] -->|UDP 51820
WireGuard| B[Edge server
NordLynx ingress] B -->|Inner NAT
session-only| C[Egress NAT
shared public IP] C -->|Plain TCP/UDP| D[Internet] B -.->|Threat Protection
DNS filter| E[(Block lists
malware / ads)] style B fill:#0e1a2b,stroke:#3b82f6,color:#fff style C fill:#0e1a2b,stroke:#3b82f6,color:#fff
Since 2020, the entire active fleet has run on diskless, RAM-only servers. Each box PXE-boots a signed image from a build server in Lithuania; the OS, the WireGuard config and the routing tables all live in tmpfs. Pull the power and the machine has nothing on it. This is the same architecture Mullvad eventually adopted, and the same one ExpressVPN's TrustedServer popularised — but NordVPN was first among the mainstream tier-1 providers to deploy it at scale. The fleet is split between colocation hardware (where Nord owns the box) and rented bare metal from regional ISPs; only the colocation fleet runs the full RAM-only image, which is one of the few details Deloitte's audits have specifically called out.
Traffic monitoring, encryption & network privacy
The cryptography is conservative and standards-track. NordLynx uses WireGuard's hard-coded suite — ChaCha20-Poly1305 for symmetric encryption, Curve25519 for ECDH, BLAKE2s for hashing, and HKDF for session keys — with a 2-minute rekey interval. The OpenVPN profiles fall back to AES-256-GCM with SHA-512 HMAC and a 2048-bit DH group, which is fine but no longer state-of-the-art. There is no support for post-quantum hybrids yet; ProtonVPN shipped an experimental ML-KEM hybrid in late 2024 and is ahead of Nord here.
Threat Protection — Nord's optional DNS-level filter — is genuinely useful for blocking known malware C2 domains and tracker endpoints, but it is also the one place where the client sees plaintext DNS metadata. If your threat model is "advertiser tracking and drive-by malware", turn it on; if it is "VPN provider should know as little about me as possible", turn it off and use a separate DoH resolver such as 1.1.1.1 or NextDNS.
Legal compliance & law-enforcement interaction
Panama is the cornerstone of NordVPN's legal posture, and the company publishes a warrant canary and a transparency report twice a year. The 2025 H1 report lists 154 requests received, 0 user-data productions, and a single court order that was challenged and withdrawn. Compared to ProtonVPN's transparency reports — which list specific Swiss court orders and the very narrow metadata Proton can be compelled to produce (account creation IP for paid accounts, in narrow Swiss criminal cases) — Nord's numbers are credible but harder to verify because Panamanian court records are not as easily searchable.
One nuance that often gets glossed over: even if the holding company is in Panama, the servers themselves live in dozens of countries with their own data-retention laws. A subpoena delivered to a German colocation provider can compel the provider to seize the physical box. If that box is RAM-only, the result is that the attacker walks away with an empty disk and a key that's already been rotated — which is exactly the point of the RAM-only design. This is, incidentally, the model Mullvad's 2023 raid by Swedish police vindicated in practice (the police left empty-handed).
Data breaches & incident response
NordVPN's worst public incident remains the March 2018 server compromise in a Finnish data centre, disclosed (belatedly) in October 2019. A rented datacenter box had an undocumented remote-management interface left enabled by the provider; an attacker obtained a TLS key and a Diffie-Hellman key, and could in principle have performed an MITM against any user who connected to that specific server during a four-month window. No user logs were exposed — there were none to expose — and the keys were already expired by the time the breach was disclosed. The handling of the disclosure was poor: Nord knew in March 2018, the provider was terminated in April 2019, and the public announcement was in October 2019. The lesson Nord learned, and the change you can verify today, is the move to RAM-only colocation and a bug-bounty program (HackerOne) that has paid out roughly $250,000 since launch.
By contrast, ProtonVPN has never had a comparable server-compromise incident, and Mullvad's 2023 raid produced no compromise at all. Nord remains the only one of the three with a confirmed, if narrow, breach in its history.
VPN origin & company transparency
Nord Security accepted a $100M investment from Novator (Thiel-backed) and General Catalyst in 2022, which valued the company at roughly $1.6B and ended the long-running rumour that Nord was a closely-held private operation. Ownership is now disclosed in the corporate registry, the leadership team is publicly listed, and the Lithuanian engineering office runs an ordinary tech-industry hiring funnel. This puts Nord ahead of providers that hide behind shell companies, but behind Proton — which is structured as a Swiss stiftung (foundation) with charter-locked privacy commitments — and roughly level with Mullvad (operated by Amagicom AB, a Swedish private company with two named principals).
Performance & reliability
On a 1 Gbps fibre connection to a same-continent server, NordLynx will typically deliver 650–900 Mbps single-stream, which is the upper bound of what any consumer VPN reaches today and noticeably faster than Proton's WireGuard implementation (450–700 Mbps on the same line) and Mullvad (500–750 Mbps). The gap narrows on intercontinental routes, where queueing in the public internet dominates over protocol overhead, and disappears entirely on connections below 200 Mbps where the protocol is not the bottleneck.
Where Nord clearly leads is streaming unblock. The dedicated streaming infrastructure (separate IP pools, residential-ASN partnerships) reliably unblocks Netflix in 30+ regions, BBC iPlayer, DAZN and the various Disney+ catalogues. Mullvad explicitly refuses to play this cat-and-mouse game; Proton plays it well on its Plus plan but with smaller IP pools that get blocked more frequently.
How NordVPN stacks up against Proton & Mullvad
| Spec | NordVPN | ProtonVPN | Mullvad |
|---|---|---|---|
| Jurisdiction | Panama (14-Eyes adjacent, no MLAT with US) | Switzerland (outside 14-Eyes) | Sweden (14-Eyes member) |
| Default protocol | NordLynx (WireGuard + double-NAT) | WireGuard / OpenVPN / Stealth | WireGuard (OpenVPN sunset) |
| No-logs audit cadence | PwC ’18, Deloitte ’20/’22/’23/’24 | Securitum 2022, 2023, 2024 | Cure53 2018, 2020; Assured 2021 |
| Server count | ~6,400 servers, 60+ countries | ~3,300 servers, 90+ countries | ~700 servers, 40+ countries |
| RAM-only servers | Yes (colocation fleet, since 2020) | Yes (full fleet, “stateless”) | Yes (since 2023, post-raid) |
| Anonymous signup | No (email required) | Email required (anon email OK) | Yes — random 16-digit account number |
| Cash / Monero payment | Crypto, no cash | Cash by mail, BTC | Cash by mail, Monero, BTC |
| Port forwarding | Removed (2024) | Paid plans only | Removed 2023 (abuse) |
| Open-source clients | Linux only (CLI) | All platforms | All platforms + reproducible |
| Independent IT-system audit | Deloitte (2023) | Yes | Cure53 infra audit 2021 |
Pros & cons
Use NordVPN if…
- You want the fastest mainstream VPN on a fast home connection.
- You watch streaming services from outside their home region.
- You want audit credibility without thinking too hard — Deloitte signs off annually.
- You'll buy a 2-year plan and treat it as commodity infrastructure.
- You need 24/7 live chat support in plain English.
Avoid NordVPN if…
- You need port forwarding for torrenting or self-hosting (removed 2024).
- Your threat model assumes the provider itself is hostile — Nord knows your email.
- You want fully open-source clients on every platform — only the Linux CLI qualifies.
- You hate marketing-style upsells in the checkout flow.
- You want provably anonymous billing without a paper trail.
Verdict
NordVPN is the right default if you want a competent, audited, fast VPN and don't have a specialist threat model. Its audit cadence, RAM-only fleet and Panamanian legal posture are credible, and its breach response since 2019 has been disciplined enough to trust again. If, however, you are paying for a VPN because you specifically don't want the provider to know who you are, switch to Mullvad. If your threat model is government surveillance and you want a foundation-structured operator with a track record of pushing back on legal requests, switch to ProtonVPN.
