Virtual private network (VPN) provider Surfshark announced on Tuesday that it is shutting down its servers in India in response to a government directive that allowed VPN service providers to record and keep users’ logs and collect customer data for 180 days. and made mandatory. Data for five years. The Netherlands-based company said it operated under a strict “no logs” policy, so the new requirements by the government go against its “core ethos”. Last week, ExpressVPN pulled its VPN servers in the country in response to a government order.
surfshark Said that its physical servers in India it will be closed before the new law came into force. The company decided to introduce its virtual Indian servers instead of physical servers in the country which will be located in Singapore and London. The virtual server will have an Indian IP to provide similar functionality, but will not be physically located in the country.
“Virtual servers are functionally identical to physical – the main difference being that they are not located in the specified country. They still provide the same functionality,” Surfshark said.
The company also underlined that its users in India who do not use Indian servers will not notice any difference.
“a vpn Surfshark is an online privacy tool, and Surfshark was founded to make it as easy as possible for ordinary users. The infrastructure on which Surfshark runs is configured in a way that respects the privacy of our users, and we will not compromise our values – or our technological base,” Surfshark legal head Gytis Malinouskas said in a prepared statement. said in the statement.
Surfshark also said it would continue to “closely monitor the government’s efforts to limit Internet freedom and encourage discussions aimed at persuading the government to listen to the arguments of the tech industry”.
The company mentioned that the VPN service providers leaving the country was not good for the IT sector.
referring to internal dataSurfshark said that 14.9 billion accounts have been leaked online since 2004, of which 254.9 million are users from India.
“Taking such radical action that highly affects the privacy of millions of people living in India would most likely be counterproductive and strongly harm the development of the region in the country. After all, Indian jurisdictions without strong security mechanisms Collecting excessive amounts of data in the U.S. could also lead to more breaches across the country,” the company noted.
Computer Emergency Response Team of India (CERT-In) order passed VPN service providers are required to keep logs of their users for at least five years and share them with the authorities when required. This will come into effect from June 27.
Soon after the government order became public, various VPN service providers expressed their dissatisfaction. nordvpn Parents Nord Security was among the first its server removal prompt by country if no other option is provided.