What VPNs Can Do (and What They Can’t)

When venturing out into the wilds of the modern web, many people now make use of a VPN, or a Virtual Private Network. These software packages have been around for decades as ways of securely connecting to private networks remotely, but the term is now more commonly used to refer to third-party VPN services that act as intermediaries between your devices and the internet at large.

The idea behind VPNs is they keep you and your data safer while you’re browsing, with a trade-off in terms of speed (though the best VPNs will aim to minimize the hit on download and upload transfer rates). If you’re wondering what exactly a VPN is, how these services work, and whether or not you should be signed up for one, you’ll find all of these questions and more answered below.

Why use a VPN?

Using a VPN is beneficial in terms of both security and privacy. VPNs create an encrypted tunnel between you and dedicated servers run by the VPN company. Your traffic is then sent down that tunnel, and your VPN service of choice then sends it on to websites or other servers. Traffic going in the other direction travels back in the same way.

This tunnel offers several protections. It means it’s a lot harder for people on the same wifi network as you at the local coffee shop or the hotel you’re staying in to see what you’re up to—so VPNs are often deployed by users when they’re traveling and connecting to numerous public wifi networks.

VPNs can let you pretend you’re in places you’re not.
Credit: Lifehacker

Connecting to a VPN also means your traffic is hidden from your internet service provider, or ISP. Your ISP can see you’re connecting to the VPN, but nothing beyond that—so it’s impossible for your ISP or any of its staff to snoop on you or keep logs. It also means ISPs are more limited in terms of what they can tell government agencies and law enforcement.

Another reason for using VPNs is to conceal or spoof your location: Websites can only see the location of the VPN server you’re using, not your actual location. That means they can’t track your whereabouts as easily, and in the case of streaming services, might serve up different libraries of content depending on where your VPN server is (though streaming services are pretty wise to VPNs now, so this doesn’t always work).

How VPNs work—and their limitations

That idea of an encrypted tunnel covers the basics of how VPNs work: You connect to a VPN server, then it connects to the web for you. When data comes back, it first goes to the VPN server, and then to your device. VPN providers will tell you how many servers they have and in how many countries—each time you connect to the VPN, you can typically choose which server to connect to, or have one assigned automatically.

If you want to stay safe on a public wifi network, it’s best to connect to a server in your country—it’ll be faster. If you want to pretend you’re in another country, or would like to stop websites and apps from knowing where you are, you can pick a server somewhere else. Some VPNs let you double-up servers for extra security.

It’s important to recognize the limitations of how VPNs work, too. Your location aside, they aren’t going to stop a lot of the tracking tech you’ll find on the web, such as cookies—and of course if you log into your Amazon account, Amazon will know it’s you. VPNs don’t offer anonymity cloaks.

In addition, you’re essentially transferring your trust from your ISP to a VPN provider: Your ISP provider can’t see your traffic, but your VPN service potentially can. What’s more, VPNs are under the same legal obligations as ISPs when it comes to giving data to government and law enforcement agencies. With that in mind, it’s important to pick a VPN you trust.

How to choose a VPN

As noted above, VPNs aren’t above the law, and can see the traffic they’re ferrying for you. With that in mind, it’s important to look for a VPN with an independently audited “no logs” policy—meaning none of your data is kept permanently. That means there’s less information that can be exposed or handed over to the authorities, if they come knocking.

It’s a crucial part of choosing a VPN, so VPN providers will usually promote “no logs” policies quite prominently. Read the policies for ExpressVPN and NordVPN, for example: You’ll see mention of independent auditors, technologies that scrub data automatically, and operations that are based in countries where data retention laws are less strict (which means VPNs aren’t legally obliged to keep records on their users).

There are lots of other criteria to use when weighing which VPN provider to go for. As previously mentioned, you can look for how many servers a provider offers, and where they’re based. You can also check up on the promised speeds, as well as the basics of how much you’re going to have to pay and what else you get included (maybe dark-web monitoring for data breaches, for example, or a bundled password manager).

Make sure you check how many devices you can connect to the VPN service at any one time, as this will vary—and some VPNs may not even have apps for every platform. You can also look at what you get in terms of customer service and support if something goes wrong. And don’t forget to consult reviews from trustworthy tech publications, too.