As title. Italy is decided to pass a law that basically creates a chinese-type firewall in the country. The question is simple: even if I’m not doing anything illegal, my VPN provider will have to know what am I doing to report it in case it’s illegal, or face jail.
So how could my traffic remain private in this scenario?
Can a VPN provider with no logs policy be held accountable of anything? Can it actually know what I’m doing?
The post office knows who you are sending letters to. They have to know because they have to deliver it. They do not know the content of the letter. They also dont know if the letter will be passed along by the receiver to a different destination.
Your ISP knows you are sending traffic to proton but not where proton is sending it to. Proton knows where you are sending traffic to but not the content of that traffic. So if you browse a website that only serves pirated content, then proton knows you are consuming pirated media but not which media.
If the law requires proton to report any and all traffic to blacklisted sights then a “no logs policy” would breach that law.
However to make this law work, Italy would have to ban all VPNs and http proxy services outside of Italy. Italy would have to force pretty mutch the whole world to follow this law for it to work.
What happens if you run a tiny server on AWS in the USA to proxy your private traffic. Unless AWS USA is watching all traffic to see if it complies with Italian law there is no way to enforce it.
To add to this, the Oracle Cloud free teir is totally capable of running a VPN- only probpem is they have credit card KYC.