Yes, using a VPN is legal in New Hampshire for most purposes, including privacy protection and accessing geo-restricted content. The state does not impose outright bans, aligning with federal cybersecurity norms. However, misuse—such as engaging in illegal activities while masking identity—remains prosecutable under existing statutes. The New Hampshire Attorney General’s Office has not issued VPN-specific regulations, but compliance with broader cybercrime and data protection laws (e.g., RSA 638:17) is mandatory.
Key Regulations for Using a VPN in New Hampshire
- Cybercrime Prohibitions: RSA 638:17 criminalizes unauthorized access to computer systems, even if a VPN is used to conceal the origin. Activities like hacking or data exfiltration remain illegal regardless of anonymization tools.
- Data Retention for ISPs: Under RSA 359-C, ISPs must comply with lawful interception requests, including those facilitated by VPN usage. While VPNs encrypt traffic, ISPs may still be compelled to provide metadata under court order.
- Consumer Protection Laws: RSA 358-A prohibits deceptive practices, including VPN providers falsely advertising “untraceable” services. Misrepresenting VPN capabilities could trigger enforcement by the NH Department of Justice.
Businesses operating VPN services in New Hampshire must also adhere to the 2026 NH Data Privacy Act, which imposes obligations on data controllers handling resident information. Non-compliance risks penalties under RSA 599-D, even if VPNs are used for legitimate purposes. Always verify VPN provider policies to ensure alignment with state and federal data governance standards.