Psiphon isn’t ideal for security or privacy-related activities. It uses the outdated L2TP/IPSec protocol instead the industry-standard OpenVPN or WireGuard. The service also lacks the essential kill switch and other critical advanced features like Port-forwarding, Ad-blocker and more. However, it is backed by strong AES-256 encryption.
In recent years, Psiphon has also undergone security audits by 7ASecurity and Cure53. Reports have revealed that the service doesn’t leak any critical user data. However, the VPN leaks some WebTRC that affects both the VPN and proxy service of the Psiphon.
Psiphon is not a privacy-friendly VPN; it logs user data and lacks significant security features and protocols. Thus, far more free VPNs provide more robust security policies to their customers.