No-KYC The privacy floor of a hosting provider
Not "anonymous". Not "untraceable". Just: the provider made the deliberate choice not to collect customer identity in the first place.
The deliberate refusal of a service provider to collect customer identity. A no-KYC host accepts an email address and a payment method, and stores no identity document, legal name, phone number or proof of address.
No-KYC is the whole product's floor.
Every other privacy claim on this site sits on top of no-KYC. The warrant canary, the Nordic jurisdictions, the encrypted correspondence, the published transparency report — all of them are downstream of the single decision not to ask who you are. If we collected your government ID at signup, none of the rest would meaningfully matter: the identity-to-server mapping would exist on our database, and everything else would be discoverable through it.
The word "no-KYC" is precise on purpose. It does not promise anonymity. It does not promise that nothing about your traffic is logged. It does not promise that we will refuse a valid court order targeting data we do hold (an email address, a payment txid, a few weeks of access logs). It promises one specific thing: the identity layer that most hosts build on top of a card processor does not exist here.
Practically, no-KYC at NordBastion means: signup form is two fields, the billing rail is cryptocurrency only, and the panel never asks for a name, an address or a phone. The longest-form explanation of why this floor is the right floor is in /doctrine/; the practical walk-through of what it looks like to actually use a no-KYC VPS is in /guides/no-kyc-vps-explained/.
The pages that lean on this term.
The questions people actually ask.
Is "no-KYC" the same as "anonymous"?
No. No-KYC describes what the provider does not collect; anonymity describes what an observer can or cannot determine. A no-KYC host stores no identity, but a customer who pays from a KYC-bound exchange wallet, signs up from a residential IP without Tor, and uses a recognisable email handle is not anonymous to a determined third party. No-KYC removes the host as a leak. The rest is operational hygiene on the customer's side.
Is no-KYC legal?
For hosting, in every jurisdiction we have reviewed: yes. There is no legal obligation on a web hosting provider to perform KYC on its customers — that obligation falls on regulated financial intermediaries. A no-KYC host operates within ordinary commercial law: contracts, abuse handling, court orders directed at data that actually exists.
What does a no-KYC signup actually look like?
Email address. Password. Optional second factor (TOTP, WebAuthn). That is the whole form. No first name, no last name, no address field, no phone, no ID upload, no selfie capture, no "verify your identity to continue". Top up a prepaid balance in cryptocurrency and you can deploy a server within minutes.
Why does it matter that the host does not have my identity?
Because data the host does not have cannot leak, cannot be subpoenaed, cannot be sold to an analytics partner and cannot be used against you in a dispute. The privacy floor of any service is the data it collects; the no-KYC floor is "an email address you control and the cryptocurrency txid you paid with". Everything below that is impossible to compromise.