Surfshark Releases 2025 Impact Report Highlighting Sustainability, Security, and Social Initiatives
- Surfshark 2025 Impact Report: Covers sustainability, security, governance, and digital rights initiatives completed during 2025.
- Environmental and social initiatives: Renewable energy, tree planting, Emergency VPN access, and responsible e-waste management highlighted.
- Security and compliance: RAM-only servers, independent audits, MASA certification, and regulatory compliance reaffirmed.
Surfshark has released its 2025 Impact Report, providing an overview of the company's progress across cybersecurity, environmental sustainability, governance, and social responsibility over the past year.
The report, Surfshark's third impact report, outlines measures taken to strengthen user privacy, support digital rights initiatives, reduce the company's environmental footprint, and maintain governance standards. It also explains how user and stakeholder feedback continues to shape the company's environmental, social, and governance (ESG) priorities.
Report Highlights Security and Privacy Measures
Among the key updates, Surfshark said its global server infrastructure now operates entirely on 100% RAM-only servers, ensuring data is erased every time a server reboots.
The company also said independent assessments conducted by Deloitte, Cure53, and SecuRing confirmed the security of its infrastructure and applications. In addition, its Android app successfully passed the Mobile App Security Assessment (MASA).
Surfshark noted that its no-logs policy continues to be independently audited by Deloitte. The company also stated that its operations comply with the General Data Protection Regulation (GDPR), the UK Data Protection Act (DPA), and the California Consumer Privacy Act (CCPA).
To support these efforts internally, all employees complete annual training covering information security, privacy, anti-bribery, anti-corruption, and workplace safety. The company also conducts risk assessments and due diligence for vendors handling sensitive data or critical business operations.
Company Continues Digital Rights and Community Initiatives
The report also details Surfshark's ongoing partnerships with organizations including Access Now, the Global Encryption Coalition, and the International Press Institute to support digital rights and press freedom.
During 2025, the company provided Emergency VPN access to more than 2,500 journalists, activists, and NGO representatives operating in regions with internet restrictions.
Surfshark also highlighted employee-led initiatives throughout the year. According to the report, employees planted more than 9,000 trees in Lithuania through a walking challenge. During the winter holiday season, the company matched employee donations supporting children, teenagers, older adults, and relief efforts for Ukraine.
Sustainability Efforts and ESG Reporting Continue
On the environmental front, Surfshark measured its greenhouse gas emissions across all three emission scopes during 2025 as part of its efforts to monitor and reduce its climate impact.
The company said its offices in Vilnius and Kaunas are powered entirely by renewable energy and have received "Excellent" BREEAM certifications. Its Vilnius office also partners with Green Genius biogas plants to convert organic waste into renewable energy.
The report adds that Surfshark continued its circular economy approach by selling or donating used electronics and furniture internally while ensuring remaining electronic waste was properly recycled.
According to Surfshark, its ESG priorities are informed through a materiality assessment process that considers feedback from users and other stakeholders. The company plans to conduct its next materiality assessment in 2026 as part of its ongoing ESG strategy.
The 2025 Impact Report was prepared using the Global Reporting Initiative (GRI) Standards, the Sustainability Accounting Standards Board (SASB) framework, and the United Nations Sustainable Development Goals (UN SDGs).












