[mrsteveman1]

And there's still real value in that, even if they work with law enforcement.

If you actually need a VPN, the last thing you want is for the service to create an opportunity, which wouldn't otherwise exist, for a malicious 3rd party to quietly obtain existing records of DNS queries, connections, and other traffic data.

By not storing the data in advance, the risk is reduced. A malicious actor would have to compromise the servers and either use one as a network tap to send the traffic somewhere else, or enable logging or other analytics locally.

Both are more likely to be detected than a one-time access or leak of data that was already stored.