The Pakistan Telecommunication Authority (PTA) has officially resumed the registration of virtual private network (VPN) service providers, introducing a licensing initiative aimed at bringing VPN services under the country’s regulatory framework. The new licensing process allows companies to obtain class licences for data services, with registration fees ranging from Rs100,000 to Rs300,000.
This move is part of the PTA’s strategy to regulate VPN providers and ensure that they comply with Pakistan’s data protection laws. Under the new system, VPN providers will be required to operate with locally registered data centers, allowing the PTA to monitor and regulate their activities more effectively. One of the key components of the initiative is that the PTA will gain access to user data and browsing history as part of the licensing conditions. This is intended to strengthen cybersecurity measures and improve the authority’s ability to detect and trace cyberattacks.
Also Read: PTA Initiates Second VPN Shutdown Exercise
The resumption of VPN registration follows consultations with industry stakeholders, including the Pakistan Software Houses Association (P@SHA), which had requested the registration process to streamline operations for VPN providers. The PTA aims to increase oversight on VPN services, which have largely been provided by foreign companies until now.
The new framework mandates that VPN providers comply with local data protection regulations. Additionally, these companies must establish local data centers to meet the PTA’s monitoring and regulatory requirements. This move also ensures that all VPN services operating in Pakistan are licensed and subject to the country’s legal and regulatory provisions.
The PTA’s new regulations for VPN services aim to provide a more controlled environment for companies offering proxy services to users. By localizing VPN operations, the regulator hopes to enhance its control over services, which were previously dominated by foreign entities. The PTA has emphasized that these providers will be required to comply with all regulations, providing transparency on technical, regulatory, and financial matters when required by the authority.
This initiative marks a significant step in Pakistan’s efforts to regulate online activities and improve cybersecurity while maintaining compliance with local laws.
