NordVPN: Actually, We Do Comply With Law Enforcement Data Requests

pcmag.com:

NordVPN is clarifying that it will comply with information requests from international law enforcement after publishing a blog post in 2017 saying that it wouldn’t.  

The company pointed out the change to PCMag on Wednesday, a day after Europol announced it had shut down a separate VPN provider called VPNLabs.net for allegedly facilitating cybercrime. In the same announcement, Europol implied VPNLab.net had refused to cooperate with authorities, which led to the takedown. 

“We will comply with lawful requests as long as they are delivered according to all the laws and regulations," NordVPN says. "We are a company that protects the security and privacy of our customers, but we operate according to laws and regulations.”

The statement is notably different from what NordVPN wrote in a 2017 blog post when addressing how the company handled warrants and subpoenas from government agencies.  

“NordVPN operates under the jurisdiction of Panama and will not comply with requests from foreign governments and law enforcement agencies,” the company said at the time. 

However, it seems NordVPN edited the original blog post on Wednesday to change the phrasing. The post now reads: “NordVPN operates under the jurisdiction of Panama and will only comply with requests from foreign governments and law enforcement agencies if these requests are delivered according to laws and regulations.” 

But perhaps the most startling change is how NordVPN now says it can log a user’s VPN activity under a law enforcement request. 

“We are 100% committed to our zero-logs policy – to ensure users’ ultimate privacy and security, we never log their activity unless ordered by a court in an appropriate, legal way,” the blog post now reads. 

NordVPN didn’t