Overview
- PTA issued formal VPN guidelines under the revived CVAS-Data framework, authorizing regulated services for individuals and organizations.
- Oversight shifts from individual user registration to provider licensing, allowing direct subscriptions through approved companies.
- Initial CVAS-Data class licenses were granted to Alpha 3 Cubic (Steer Lucid), Zettabyte (Crest VPN), Nexilium Tech (Kestrel VPN), UKI Conic Solutions (QuiXure VPN), and Vision Tech 360 (Kryptonyme VPN).
- The authority says the regime boosts cybersecurity, enables lawful connectivity, and reduces risks linked to unregistered or malicious VPN offerings.
- The rollout follows reports of Google warning about apps posing as VPNs to steal data, which PTA cites as part of its user-protection rationale.