A ranking is only as good as the method behind it.

The number that gets the most attention is the easiest to fake. Our speed score is the median of the same protocol matrix, on the same hardware, against our own random-byte endpoint.

• WireGuard / NordLynx / Lightway over UDP at 1500 MTU
• OpenVPN UDP at 1500 MTU (baseline)
• IKEv2 / IPsec, where supported, at default MTU

Each provider runs 7 days × 3 protocols × 5 cities = 105 measurements per cycle. We use the median, not the peak, to discourage cherry-picking.

Privacy is a posture, not a feature. The score blends what the provider can prove (audits, code, jurisdiction) with what we can measure (leak rate, kill-switch failure).

• Most recent independent audit — auditor, scope, date, public report
• Jurisdiction and applicable mandatory data-retention law
• App source-code transparency (open-source clients, reproducible builds)
• Log policy: claimed vs. demonstrated (court records, server seizures)
• Kill-switch failure rate measured in the lab
• DNS / WebRTC / IPv6 leak rate measured in the lab
• Warrant canary status and last-update freshness

We test on real subscriptions, not mocked endpoints. A region passes if catalogue items play at full HD without buffering for at least three minutes across two attempts.

• Netflix (US, UK, JP, BR)
• Disney+ (US, UK, IN)
• BBC iPlayer (UK)
• Amazon Prime Video (US, DE)

Streaming unblock degrades over time. Each region is re-checked weekly; the score on the page reflects the most recent four-week rolling pass rate.

Value is not the lowest sticker price. It blends effective monthly cost, what you get bundled, and what you pay when the introductory term ends.

• Effective $/mo on the longest plan, after introductory discount
• Simultaneous connections allowed
• Money-back guarantee length and verified honour rate
• Bundled extras (password manager, ad blocker, dedicated IP)
• Renewal price vs. introductory price