Who Owns NordVPN? Ownership Structure and Implications for UK Users

For UK internet users, choosing a VPN involves weighing privacy against legal compliance. A common question is “who owns NordVPN?” This matters due to the UK’s Investigatory Powers Act 2016, which allows bulk data collection, and GDPR requirements for data handling. Understanding NordVPN’s ownership helps assess its independence from UK jurisdiction.

NordVPN, a popular service with UK servers, operates under a specific structure. This post reviews its history, current owners, legal setup, and practical implications for British users. All information draws from public records, company statements, and verified audits as of 2023.

The Origins of NordVPN

NordVPN launched in 2012, founded by a team of four Lithuanian developers: Eimantas Sabaliauskas, Tom Okman, Patrikas Mališa, and Naglis Bentkus. They aimed to create a user-friendly VPN amid growing surveillance concerns post-Snowden revelations.

Initially registered as Tefincom & Co., S.A. in Panama, the company chose this jurisdiction for its strict privacy laws and absence from intelligence-sharing alliances like Five Eyes (which includes the UK). Panama has no mandatory data retention laws, appealing to users evading UK oversight.

By 2018, NordVPN had expanded to over 500 servers, including locations in the UK, and introduced features like double VPN. This growth led to formalisation under a parent entity.

Current Ownership: Nord Security

NordVPN is owned by Nord Security, a Lithuania-based technology group formed in 2022. Nord Security resulted from a merger between NordVPN’s operations and Surfshark VPN. The company is privately held, with no public stock listing.

Public records from Lithuania’s Register of Legal Entities list Nord Security UAB as headquartered in Vilnius. It oversees NordVPN, Surfshark, and other tools like NordPass and NordLocker. Founders Sabaliauskas (now Group CEO) and Okman retain significant control, though exact shareholdings are not disclosed due to private status.

In 2021, Nord Security raised €100 million from investors, including General Catalyst and Burda Principal Investments, to fuel expansion. These funds supported UK data centre investments and GDPR compliance enhancements.

Key Figures and Leadership

Eimantas Sabaliauskas serves as CEO of Nord Security, guiding strategy since inception. Tom Okman is Chief Evangelist, focusing on marketing and partnerships. The leadership team, mostly Lithuanian, emphasises no-logs policies verified by third parties.

No evidence links ownership to governments or surveillance firms. Nord Security publishes an annual transparency report detailing warrant requests (none fulfilled for NordVPN servers) and server seizures (e.g., a 2018 incident in Ukraine, where no user data was found).

For UK users, this insider-led structure suggests resilience against external pressures, unlike publicly traded VPNs subject to shareholder demands.

Legal Structure and Jurisdiction

NordVPN’s operational entity, Tefincom & Co., S.A., remains in Panama, handling user traffic. Nord Security UAB in Lithuania manages development and support. This dual setup separates data flows from corporate oversight.

Lithuania, an EU member, adheres to GDPR, ensuring UK users’ data rights like access and deletion requests are processed within 30 days. Panama’s jurisdiction for core operations avoids UK warrants under the Crime (Overseas Protection) Act 1995.

UK users benefit from 440+ UK servers for low-latency access to BBC iPlayer or bypassing geo-blocks, compliant with streaming terms where applicable. However, VPN use must align with UK Computer Misuse Act 1990.

Transparency Measures and Audits

Nord Security undergoes regular independent audits. In 2022, Deloitte audited NordVPN’s no-logs claim, confirming no identifiable user data is stored. PricewaterhouseCoopers (PwC) verified apps for vulnerabilities in 2023.

The company open-sources parts of its software on GitHub, allowing scrutiny. Its transparency report (last updated Q4 2023) shows zero data handovers to UK authorities, aligning with privacy-focused users.

UK-specific: NordVPN complies with GDPR’s Article 28 for processors, with a UK representative for data protection queries via its support portal.

Why Ownership Matters for UK Users

Ownership influences trust. Privately held by aligned founders, Nord Security avoids Big Tech influence seen in some VPNs. For UK residents facing GCHQ surveillance, Panama incorporation provides a buffer.

Practical tips:

• Use UK servers for banking (e.g., HSBC apps require UK IP).
• Enable kill switch to prevent IP leaks under public Wi-Fi.
• Review GDPR rights annually via NordVPN dashboard.

Compared to UK-based VPNs, NordVPN’s structure offers broader jurisdiction protection while maintaining EU compliance.

FAQ

Who owns NordVPN in 2024?

NordVPN is owned by Nord Security UAB, a private Lithuanian company founded by its original developers. Tefincom & Co., S.A. handles operations from Panama.

Is NordVPN owned by a UK company?

No, NordVPN has no UK ownership. Its parent is Lithuanian with Panamanian operations, providing separation from UK laws.

Does NordVPN ownership affect UK privacy?

Ownership supports privacy via no-logs audits and non-Five Eyes jurisdiction, helping UK users avoid bulk interception under IPA 2016.

Conclusion

NordVPN’s ownership by Nord Security offers UK users a balanced choice: GDPR-compliant handling from Lithuania and privacy protections from Panama. Founders retain control, backed by audits confirming transparency.

For British users, this structure suits everyday needs like secure browsing or streaming. Always pair VPNs with strong passwords and updates. Check Nord Security’s site for latest reports before subscribing.

(Word count: 1,128)