Via ExpressVPN blog : https://www.expressvpn.com/blog/not-on-my-network/ "ExpressVPN, a leading consumer privacy and security company, has developed server-level technology that prevents access to all known dedicated child sexual abuse domains identified by the Internet Watch Foundation (IWF) across its entire VPN network. Designed to strengthen online child protection without compromising user privacy, the system uses the IWF’s dedicated domain list ( https://www.iwf.org.uk/our-technology/our-services/url-list/) to introduce network-wide safeguards....... ... The technology, named OpenBoundary, is a modular, server-level toolkit designed to enable network operators to restrict access to verified criminal domains safely and transparently. Developed with privacy-first infrastructure principles at its core, OpenBoundary introduces network-wide safeguards without altering ExpressVPN’s strict no-logs policy. OpenBoundary uses the IWF’s verified domain list and operates without deep-packet inspection or user activity logging. The code is verifiable, auditable, and open to scrutiny. As part of its *“Not on My Network” *initiative, ExpressVPN is open-sourcing OpenBoundary and will be publishing the underlying code, along with a technical whitepaper and detailed deployment guidance. By doing so, the company is inviting other VPN providers, ISPs, and cloud platforms to adopt similar safeguards and raise the standard for privacy-preserving infrastructure."