The 6 privacy techniques worth knowing
When you pay someone, both you and the recipient contribute inputs to a single transaction. Chain analysis can't tell who paid whom — the heuristic that more inputs = single sender breaks. Free, no coordinator, works for normal payments. Supported in Sparrow, BTCPay Server.
Peer-to-peer CoinJoin market. Maker offers liquidity for a fee; takers consume that liquidity to break their input-output linkage. Mature codebase (8+ years), no central coordinator can shut it down, requires running a node.
Coordinator-based CoinJoin where the coordinator uses cryptographic blind signatures + KVAC proofs to authorise rounds without learning which inputs match which outputs. Run-as-a-service. Privacy advantage: no minimum denomination.
Deposit BTC into a Cashu mint, receive blinded tokens. Transfers between Cashu users are off-chain, instant, fee-free. The mint cannot link tokens to users. Trade-off: mint can rugpull — only use with small amounts you can afford to lose.
A federation (typically 5-15 guardians) runs a Bitcoin mint. Similar privacy to Cashu but with multi-party security — no single guardian can rug. Used in community-banking deployments in Philippines, Bhutan, El Salvador, Ghana.
Lightning payments are private by routing through onion-encoded paths. Channel topology is public but individual payment amounts and full routes are not. Combine with a privacy-focused wallet (Phoenix, Mutiny) for the best result.
Tools that actually work in 2026
| Tool | Technique | Platform | Cost | Maturity |
|---|---|---|---|---|
| Sparrow Wallet | PayJoin sender + receiver | Desktop (Win/Mac/Linux) | Free | ★★★★★ |
| BlueWallet | PayJoin sender | iOS / Android | Free | ★★★★ |
| BTCPay Server | PayJoin receiver | Self-hosted | Free | ★★★★★ |
| Wasabi 2.0 | Wabisabi CoinJoin | Desktop | ~0.3% per round | ★★★★ |
| JoinMarket | P2P CoinJoin | Self-hosted full node | 0.05-0.5% market fees | ★★★★ |
| Ashigaru | Samourai fork | Android | Free | ★★★ (early) |
| Cashu (Minibits, Nutstash) | Chaumian e-cash | iOS / Android / Web | Free | ★★★★ |
| Fedimint guardians | Federated mint | Self-hosted federation | Free for users | ★★★★ |
| Phoenix Wallet | Lightning + onion routing | iOS / Android | Free; small splice fees | ★★★★★ |
| Mutiny Wallet | Lightning + LSP-aware | Web (PWA) | Free | ★★★★ |
What's legal in Asia (2026)
The 2026 baseline
No major Asian jurisdiction has criminalised individual use of CoinJoin, Cashu, Fedimint, or PayJoin as of May 2026. The legal action sits at the service-provider level — coordinators (e.g. Samourai 2024) and mixers serving sanctioned addresses. Using these tools for your own private transactions is operationally legal across SG, HK, JP, KR, AE, ID, PH, TH, MY, IN, TW.
⚠️ Where regulated exchanges flag CoinJoin
- Japan FSA-licensed exchanges reject deposits from known CoinJoin coordinators (since 2018)
- Singapore MAS licensees apply Chainalysis-derived risk scores — high-risk deposits trigger SAR filing
- Hong Kong SFC licensees have similar Travel Rule + Chainalysis posture
- South Korea Travel Rule compliant exchanges restrict CoinJoin'd inputs
- UAE VARA licensees generally permit CoinJoin'd deposits subject to SoF documentation
Solution: CoinJoin to self-custody, hold/spend from self-custody. Don't redeposit at the same regulated venue you withdrew from.
The privacy mistakes Asian users make most
Reusing the same Bitcoin address links all transactions to that address. Every modern wallet generates new addresses by default — verify yours does. Sparrow, Phoenix, BlueWallet, all hardware wallets do this correctly.
Sending from Binance to Coinbase creates a permanent on-chain link between your two KYC identities. Always route through self-custody to break the chain.
Posting your Lightning address (you@walletofsatoshi.com) publicly links every zap and tip to your social identity. Use a separate wallet + lightning address for public-facing flows.
Defeats the entire point: the exchange flags the deposit AND now knows you used a CoinJoin tool. Self-custody is the destination for privacy-enhanced outputs.
Use separate wallets for separate activities. Treat one wallet as your "KYC-touched" wallet, another as your "private" wallet. Never co-mingle UTXOs between them.
Cashu privacy is excellent but the mint is a custodian. Keep Cashu balances at sub-$100 levels. Use Lightning for >$100 flows.
FAQ
Is using CoinJoin a crime in my country?
Not in any major Asian jurisdiction as of May 2026. The legal action sits with service providers (mixer operators) and on chain-of-custody scrutiny by regulated exchanges. Individual personal use of CoinJoin tools is not criminalised in SG, HK, JP, KR, AE, ID, PH, TH, MY, IN, TW, VN. China remains the only blanket ban on commercial crypto activity.
What replaced Samourai Whirlpool after the 2024 shutdown?
Practical 2026 alternatives: (1) Ashigaru — a fork carrying Samourai's tooling forward with reset infrastructure; (2) JoinMarket — peer-to-peer, paid market-maker model, no central coordinator that can be shut down; (3) Wabisabi/Wasabi 2.0 — coordinator-based but cryptographically blinded; (4) PayJoin — built into normal payments, no separate "mixing" event.
Do hardware wallets help with privacy?
They protect keys, not chain analysis. A hardware wallet stops a hacker stealing your BTC; it doesn't stop a blockchain analyst clustering your addresses. Combine hardware-wallet security with coin-control and PayJoin/CoinJoin tools for both.
What about Lightning privacy?
Lightning is materially more private than on-chain because amounts and paths are routed through onion encryption. Channel topology is public. For maximum privacy: use a self-custodial Lightning wallet (Phoenix, Mutiny), open private channels (unannounced), and prefer outgoing payments over incoming.
Are Cashu and Fedimint actually safe?
Mathematically the privacy is excellent — even better than CoinJoin. The risk is custodial: the Cashu mint can disappear with your sats, and a Fedimint federation can collude. Treat them like cash in a friend's safe — for small amounts and short durations.