The activation key will be generated by our payment partner and can then be used to activate the respective subscription on a certain account. This triggers the question, if third parties can force CyberGhost to expose the activation key of an already known account name and then use that information with the payment partner to further identify a real person behind the numbers.
For certain reasons this is not possible, because:
- CyberGhost as a VPN provider and cleverbridge as the payment partner are located in different countries (CyberGhost in Romania, cleverbridge in Germany).
- The needed trapping mechanism is not existent in Romanian laws.
- It's not practicable to establish a surveillance like that, there are no known respective data basics or legal ones.
- The usage of CyberGhost is no illegal activity.
Besides: CyberGhost doesn't store any user data, so it's not possible to find relations anyway. Even if a complete data center as well as all in- and outgoing traffic will be observed directly, there's just an encrypted data stream to be found on one side and a chaotic mix of inquires and answers of all connected users on the other - without any relations, sequences or other usable data to identify a person (see also Wikipedia, keyword NAT). Apart from that, mass surveillance of all connected users is still illegal and in no way practicable. Even if a server gets confiscated and thoroughly inspected, it would be to no avail, because there is no data on it. Not even in an active connection a server knows a user name or any other details of an account. (In fact we never got such an order in all the years CyberGhost operated in Germany or in Romania.)
Those users, who still have doubts regarding the giveaway of private data, we recommend the box versions of CyberGhost, available in Germany, Switzerland and Austria at stores like MediaMarkt and Saturn. It can be paid in cash and can't be tracked down, where it was bought (no key tracking or similar). Also possible is an anonymous buy process via BitCoins.