Is CyberGhost VPN Safe in 2026? Security, Audits and Real Risks

A plain-English look at audits, logging, ownership, leaks, torrenting and the limits that still matter.

Originally posted: 8 January 2026 |
By Martin Needs - Cybersecurity Expert
CyberGhost VPN security audit banner

Quick answer: yes, CyberGhost is a safe VPN for most everyday users in 2026. The main reasons are its repeated Deloitte no-logs audit trail, with reviews first carried out in 2022 and 2024 and a third Deloitte Audit Romania review announced in February 2026, plus regular transparency reports, WireGuard, OpenVPN and IKEv2 support, kill switch and leak controls, and RAM-only server infrastructure. The important limits have not disappeared: CyberGhost does not currently offer obfuscation to disguise VPN traffic, it does not allow port forwarding, and privacy-focused buyers may still want to weigh the wider Kape ownership story. If you are comparing cheap VPN options, CyberGhost deserves a place on the shortlist, but it is best for ordinary privacy, streaming, travel Wi-Fi and supported P2P rather than censorship-heavy or highly specialist threat models.

Romania based Third Deloitte audit announced in 2026 WireGuard, OpenVPN, IKEv2 RAM-only servers No obfuscation

What stands up well

CyberGhost has more proof behind its privacy claims than a lot of mid-priced VPNs. The audits, transparency reports, mainstream protocol support and RAM-only design all count in its favour.

What needs context

CyberGhost says the right things and now has a longer audit trail to back them up. Even so, ownership, platform differences and advanced use cases still matter if trust is your top priority.

Bottom line

CyberGhost is a safe, credible mainstream VPN. It is much better suited to ordinary privacy, travel Wi-Fi, streaming and general use than it is to stealth access on restrictive networks.

What CyberGhost Gets Right

CyberGhost’s safety case is not built on vague marketing lines alone. It supports the protocols you want to see from a serious consumer VPN, publishes quarterly transparency reports, and keeps putting its no-logs claims in front of outside auditors. The latest available transparency report at the time of this update covered Q1 2026 and listed 53,533 DMCA complaints and 4 police requests, with CyberGhost saying it had no activity or connection logs to hand over. That does not make the service beyond criticism, but it does put it ahead of disposable budget names that expect you to trust a logo and not much else.

The short version

CyberGhost covers the important safety basics well. That means modern protocols, a kill switch, DNS leak controls, RAM-only servers, routine transparency reporting and repeated no-logs audits.

  • It has a clearer privacy story than many low-cost VPNs.
  • Its current public materials say it does not log browsing history, DNS queries, VPN servers used, data transferred, IP assignments, or connection date and duration.
  • It supports WireGuard, OpenVPN and IKEv2 instead of leaning on old, weaker options.
  • It says its infrastructure uses RAM-only servers, which reduces the chance of data lingering after a reboot.
  • It includes a kill switch and DNS leak controls, which are the sort of practical protections that matter more than flashy extras.

Audit History and No-Logs Claims

This is one of CyberGhost’s strongest points right now. Deloitte first reviewed CyberGhost’s no-logs position in 2022. Deloitte Audit Romania then carried out a second review in 2024, and CyberGhost announced the completion of a third independent Deloitte Audit Romania review in February 2026. That pattern matters. One old audit looks nice in a press release; repeated assurance work is far more useful because it shows the provider is still willing to let outsiders check whether its systems and privacy claims line up.

Why this matters

According to CyberGhost, the latest Deloitte review looked at the VPN server network, configuration, change-management processes, incident-response controls, and the dedicated IP token-based system designed to separate a user account from a specific dedicated IP. That is much more meaningful than a vague badge with no explanation behind it.

The sensible caveat

Audits are helpful, not magical. The right way to read them is as one strong trust signal among several. You still need to consider ownership, product decisions, support history and whether the service is built for your actual use case.

What Data CyberGhost Collects, and What It Says It Does Not

This is where a lot of VPN reviews go fuzzy, so it is worth being direct. CyberGhost says it does not log the browsing activity most people worry about, including websites visited, DNS queries, data transferred, VPN servers used, IP assignments, and connection date or duration. That is the core privacy claim.

Like almost any paid VPN, it still needs some account data to run the service. CyberGhost says that can include basics such as your email address, billing data, order history, connection attempts and service-use information in anonymised form. In other words, it is not a magic invisibility cloak, but the data it says it avoids collecting is the part that matters most for a no-logs promise.

Plain English

CyberGhost still knows enough to run a subscription service, but its public privacy position says it does not keep the activity logs that would let it reconstruct what you did online through the VPN tunnel.

Encryption, Protocols and Leak Protection

CyberGhost supports WireGuard, OpenVPN and IKEv2, which is exactly what you want from a modern mainstream VPN. WireGuard is usually the best blend of speed and modern security for everyday use. OpenVPN remains a dependable fallback. IKEv2 is still handy on devices where it behaves better than the others.

WireGuard

Fast, modern and usually the best first choice for most people.

OpenVPN

Mature, trusted and still a very solid option when compatibility matters.

Leak controls

Kill switch and DNS leak controls help stop your traffic slipping outside the tunnel if the connection drops.

CyberGhost also says its network uses RAM-only servers that wipe data on reboot. That is a sensible privacy-by-design choice because volatile memory does not hang on to information the way a traditional drive can. It will not matter to every buyer, but it is still the sort of infrastructure decision you would rather have than not have.

Jurisdiction, Ownership and Trust

CyberGhost was founded in Bucharest, Romania, and still presents itself as a Romania-based provider. That is generally a plus. CyberGhost’s own privacy materials point to Romania as a jurisdiction without legal mandates to keep browsing activity logs, and the company also highlights that Romania sits outside the 5, 9 and 14 Eyes intelligence-sharing alliances.

That said, jurisdiction is only one part of the picture. Ownership matters too. CyberGhost is part of the wider Kape group, and that remains a sticking point for some privacy-minded buyers. On its own, that does not make CyberGhost unsafe. What it does mean is that the trust conversation is not quite as effortless as it is with providers that have a cleaner ownership narrative.

My take on this

Romania is a plus. Repeat audits are a plus. Transparency reports are a plus. Ownership is the point that stops CyberGhost from feeling like the easiest recommendation for people who put trust above everything else.

Is CyberGhost Safe for Torrenting and Streaming?

For mainstream use, yes. CyberGhost offers P2P-optimised servers and continues to market the service heavily around streaming and everyday privacy. If your idea of safe means hiding your home IP while torrenting ordinary legal content, using public Wi-Fi more safely, or keeping your browsing less exposed on hotel and airport networks, CyberGhost is a decent fit.

The catch is that advanced users may run into limits. CyberGhost does not allow port forwarding, which can matter for some torrenting setups and may affect performance in certain cases. That does not make it unsafe, but it does mean power users may find it less flexible than some rivals.

Best fit

CyberGhost makes most sense for people who want a polished VPN for streaming, torrenting on supported servers, travel Wi-Fi safety and general privacy. It makes less sense for users who need specialist features for stealth or harder network environments.

What Holds CyberGhost Back

CyberGhost is safe, but calling it flawless would be less helpful than being honest about the trade-offs. The issue is not one catastrophic red flag. It is the gap between being a solid mainstream VPN and being the strongest possible choice for edge cases.

  • No obfuscation: CyberGhost’s own support pages say it does not currently offer obfuscation methods to conceal VPN usage. That is a real weakness in countries or networks that actively detect and block VPN traffic.
  • No port forwarding: CyberGhost’s support material says it does not allow port forwarding. This will not bother most casual users, but it matters to some torrenting enthusiasts and advanced network users.
  • Less depth for specialist privacy use: If you want anti-censorship tooling or a more specialist privacy stack, there are stronger options.
  • Ownership concerns: For some buyers, the Kape link will remain a trust drag however tidy the public privacy messaging looks.
  • Platform differences: Not every app feels identical, so it is worth checking the features on your own device rather than assuming every platform has the same knobs and options.

Is CyberGhost Good Value if Safety Matters?

Usually, yes. The cheapest VPN on the page is rarely the best bargain if trust matters. Budget services often cut corners on audits, transparency, infrastructure or app quality. CyberGhost tends to land in a more sensible middle ground. It is not the absolute cheapest service around, but it usually gives buyers a healthier balance between price and credibility than the brands that feel half-finished or anonymous.

If you want the full picture on speed, streaming, apps and daily usability, our CyberGhost review goes wider than this safety page. If you are weighing it against a more premium option, our ExpressVPN review is the most useful comparison point.

The key point

A low price only helps if the VPN is still worth trusting. CyberGhost keeps showing up because it is often affordable without looking flimsy, faceless or careless.

Final Verdict

So, is CyberGhost VPN safe?

Yes, with sensible caveats. CyberGhost clears the bar comfortably for the vast majority of everyday users. The audit trail helps, the protocol support is current, the kill switch and leak protections are the right sort of basics, and the RAM-only design is another tick in the right column. Where CyberGhost falls short is not everyday safety; it is specialist needs such as obfuscation, port forwarding and harder censorship environments. If that is your lane, you may want something built more specifically for it. For ordinary users, though, CyberGhost remains a reasonable and credible choice.

Frequently Asked Questions

Is CyberGhost safe for banking and public Wi-Fi?

Yes. For ordinary use, CyberGhost adds a useful layer of protection on public Wi-Fi and shared networks. It is not a replacement for strong passwords, two-factor authentication or safe browsing habits, but it does make casual snooping far harder.

Does CyberGhost keep logs?

CyberGhost says it does not log browsing history, DNS queries, data transferred, VPN servers used, IP assignments, or connection dates and duration. It still keeps limited account and billing information needed to run a paid VPN service.

Is CyberGhost safe for torrenting?

Yes. CyberGhost supports P2P traffic on designated servers and is generally a safe pick for torrenting legal content. The main limitation is that it does not allow port forwarding, which some advanced users will care about.

Is CyberGhost good for censorship-heavy countries?

Not really. CyberGhost says it does not currently offer obfuscation methods to hide VPN traffic. That makes it a weaker option on restrictive networks and in countries that actively block VPN use.

Who owns CyberGhost VPN?

CyberGhost sits inside the wider Kape group. That does not make it unsafe by default, but ownership is still part of the trust discussion for buyers who care deeply about privacy provenance.

FindCheapVPNs mascot icon

Field Notes

If you are asking whether CyberGhost is safe, you are already asking the right question. A lot of VPN reviews stop at surface-level claims. The more useful test is whether there is any real proof underneath the slogans. CyberGhost holds up better than plenty of cheap services because there is a visible audit trail, a real company footprint, and enough technical substance to take seriously, even if the trust story is not completely spotless.

Martin Needs, Cybersecurity Expert

By Martin Needs

Director @ NeedSec LTD | Cybersecurity Expert | 10+ Years Experience

"When I assess a VPN, I care far less about polished copy than I do about how the service behaves when trust is actually tested. Repeat third-party review, visible privacy controls and sensible defaults matter much more than glossy slogans."

OSCP Certified CSTL (Infra/Web) Cyber Essentials Assessor CompTIA PenTest+ Cybersecurity Expert

This information is for educational purposes. VPN features, ownership structures, transparency reports and support pages can change. Always test your own setup for IP, DNS and kill switch behaviour before relying on any VPN for privacy-sensitive work.

Editorial Changes

What changed in this update

Updated on 1 June 2026 to reflect the latest customer-relevant information checked for this page.

  • Changed the page’s last updated date to 1 June 2026.
  • Clarified the Deloitte audit wording so readers know the third independent Deloitte Audit Romania review was announced in February 2026, following earlier Deloitte reviews in 2022 and 2024.
  • Added the latest available Q1 2026 transparency-report context, including CyberGhost’s published figures for DMCA complaints and police requests.
  • Kept the verdict the same: CyberGhost remains safe for everyday use, but it is still not the strongest choice for obfuscation, port forwarding or censorship-heavy environments.