[dragoncrab]

All the big corps I ever worked for had their devices configured to go through the central VPN and proxy even for browsing.

But I guess blocking $$$ corporate visitors should be fine by you as well.

[Nextgrid]

The problem with VPNs is the exit node and not the act of using a VPN in itself. You will also be fine if you VPN to a clean IP, which is why corporate VPNs aren't generally affected. The problem is that for better or worse, public VPN exit nodes have a history of abusive activity and are blocked as a result.

[Mindwipe]

It is extremely easy to differentiate between the two with a commercial VPN detection product rather than just someone's hobby proof of concept.