I think you mean SSL not SSH, SSH is SecureSHell and used to remotely connect to *nix related machines along with SFTP and SCP. SSL is just a communications protocol, originally intended for internet traffic like HTTP, it can be used to secure any point to point connection. Virtual Private Network is a method of tunneling layer 2/3 of the OSI model on top of another layer 3/4 connection, almost like running a thousand mile virtual ethernet cable, it is used heavily in commercial networking to link remote office sites with HQ, and even remote workers notebooks back with home office.
The vast majority of VPN providers now use OpenVPN, which is an amazing open source program that lets you form a VPN link over a SSL connection, SSL is not only an extremely common connection type but also designed to not care about how it gets to the destination, making it perfect for tunneling over public internet. I know all this personally because I run my own VPN server at home that lets my laptops connect back whenever I'm traveling for business.
once your traffic leaves the vpn server it is no longer protected by the encryption. it only masks where the data came from, thus shifting who it is that gets to data mine it. your isp gets taken out of the equation, but the vpn service now has all your traffic info. most paid services claim to not keep logs, but they are all lying.
This is categorically false, there have been several legal cases where those providers were able to prove they didn't and couldn't have the logs the law enforcement were asking for. Furthermore there have been instances where foreighn governments have raided and seized VPN providers hardware to get those logs and found nothing.
The way this works is easy, OpenVPN lets you set the logging location for each server instance and what you do is set it to /dev/null or a ram space like just /tmp/log, then have it overwritten every 10 to 30kb. That gives just enough to know the system is working, but it's in ram and gets blanked everytime the server is restarted, while also never keeping anything very old. We can actually make these servers have no storage at all and use netboot to startup and get configuration parameters.