Is it legit to run a VPN service without retaining any logs?
I would like to run a VPN service registered as an OPC (One person company). My query # 1 is whether or not is it legit as per the Data Retention laws in India to run a no-logs (a service that retains no logs or records of IP addresses or any other identifiers of the clients connecting to it or using their service) VPN service like IPredator.se
Here is the twist, I would not be hosting any of the VPN servers in India, but all of them would be hosted in either Netherlands, Sweden, France, Malaysia, Singapore, Moldova, Iceland, Hong Kong as these countries do not have any mandatory data retention laws that applies to VPNs at all (Kindly correct me if I am wrong). I am not sure about the recent chances in France owing to unfortunate terror attacks. I would be setting up them virtually from India upon leasing or renting them as per the needs of the service.
Also, I would not like to accept anything but Bitcoins and Paytm as our Payment methods. Further there would be no co-relation between payments and a VPN client or user account, as we would allot a random 5-10 char username to a user upon payment, we would only identify him with that username thereon.
So, my query number # 2 is, Whether is it legit not to keep records of payments co-relating it to a random username which would be a VPN client that we allot?
We would not like to keep records of payments co-relating it to a user because we would not provide any refunds. There would be a no refunds policy.
My query number # 3 is, Would it be legit to retain no data not even an email or phone number or anything at all from a user when they Sign up for our service?
Procedure of Sign up = You visit our site, you click on Buy upon successful payment, you would be allotted a completely random username and link to the files you need to connect to our VPN service.
My query number # 4 is, What if any court of law in India requires us to grant them data on a particular user or all of the users which we do not have because we do not retain any data on them, would there be any prosecution against me for not granting something I did not retain as per the laws?
#4A. What would be the case if the Dutch or any government where our servers would be located serves us with a court order to grant them user data which we do not have as per the law? How would we reply to a such an International court order which would be forwarded to us by our Server provider?
---
Finally, I would like to know if it is advisable to run such a VPN service that retain no logs at all in our country or should I just drop the idea.
Thanks!