Skip to content
Bitcoin Austria LogoBitcoin Austria Logo
DE

Privacy

Why Bitcoin is pseudonymous, not anonymous, and how to protect your financial privacy.

Last updated 20. März 2026

Share article:

First surveillance, then seizure

In 2022, the Canadian government froze bank accounts of protesters — without a court order. The measure was reversed after a few days and declared unconstitutional by a federal court in 2024. In China, a scoring system determines access to trains and flights, fed by payment data. In Nigeria, cash was rationed to force adoption of a state digital currency. In every case, the prerequisite was the same: a payment system that makes every transaction visible.

Europe isn’t a dictatorship, but the infrastructure is being built. The planned Digital Euro is meant to be programmable and traceable. Some officials call for anonymity for small amounts, but once introduced, inflation and legislative changes erode those thresholds. Cash shows the pattern: limits drop, justifications change, the direction stays the same. Digital central bank money will follow.

Privacy is the first line of defense. What isn’t visible can’t be controlled. Cash protects you. Bitcoin can too, if you know how.

What can go wrong if you’re not careful?

Bitcoin is pseudonymous, not anonymous. Every on-chain transaction lives on the blockchain forever: public, immutable, readable by anyone. Your address isn’t a name, but it’s a permanent fingerprint.

Specialized surveillance firms link Bitcoin addresses, identify patterns, and deliver reports to authorities and exchanges. This is a billion-dollar industry.

The danger concentrates at three points:

Data breaches at exchanges. You buy bitcoin with ID and bank details. The exchange gets hacked, your KYC data ends up on the dark web. Now someone knows: this person owns bitcoin — and how much. The Ledger data breach in 2020 showed what happens: customers were threatened with break-ins and violence.

Identity linking. From the moment you buy bitcoin on a KYC exchange, your identity is tied to those coins and to everywhere you send them afterward. The exchange knows this, and so does anyone who gains access to that data.

The transparent balance. If someone knows one of your addresses and you reuse it, they can see your balance and transaction history. Employers, ex-partners, business contacts: anyone with an address and a blockchain explorer.

Three things you can do today

  1. Use new addresses. Reusing the same Bitcoin address is like posting every payment under the same pseudonym on a public bulletin board. Anyone who identifies the pseudonym once sees your entire transaction history. Every modern wallet generates new addresses automatically. Let it. Never hand out the same address twice.

  2. Separate wallets for separate purposes. One for savings (cold storage, on-chain), one for everyday Lightning. Lightning offers better privacy than on-chain transactions by default.

  3. Turn on Tor. If you run Bitcoin Core or a wallet without Tor, you reveal your IP address with every transaction. Bitcoin Core supports Tor natively — just turn it on. Many privacy wallets integrate it as well.

From here, it gets technical

What follows is for advanced users who want to manage their privacy hands-on. You don’t need to understand all of this today, but when you’re ready, the knowledge is here.

UTXOs and privacy

Bitcoin doesn’t work like a bank account. It works with UTXOs, digital “coins” of varying sizes. The Technology article covers the mechanics.

For privacy, the key fact is: the UTXO graph is public. If you combine multiple UTXOs in a single transaction, you signal that they all belong to you. Merge coins from a KYC purchase with coins from an ATM purchase and you’ve destroyed the privacy of both.

Good wallets show you your UTXOs individually and let you control which ones go into a transaction (coin control). Some decide automatically, optimized for fee efficiency or privacy. You should understand what your wallet does in the background.

Privacy starts at the point of purchase

The most important decision for your privacy is how you buy. Buying bitcoin through a KYC exchange links your identity to those coins, and to everywhere you send them afterward. That link is permanent.

There are alternatives: Bitcoin ATMs, peer-to-peer platforms like Bisq or RoboSats, and community-based cash trades. Each method has its own trade-offs between convenience, price, and privacy.

Non-KYC: Buying bitcoin without identity verification (coming soon)

CoinJoin: private together

Mixing vs. CoinJoin

Both terms are often confused, but they mean different things.

Mixing (Custodial): You send your bitcoin to a service. It sends different ones back. In between, it has full control and could keep them, freeze them, or share your data. Stay away from mixing services.

CoinJoin (Non-Custodial): Imagine ten people sitting at a table. Each places a sealed envelope with a specific amount in the center. Together they shuffle the envelopes and each takes one back, with the same amount but in different bills. Nobody knows who got which envelope, and at no point did anyone have access to someone else’s money. Multiple users jointly create a transaction. Each signs only their own input. Nobody gives up control. The heuristics of blockchain surveillance break down.

CoinJoin is not mixing. It’s a collaborative transaction where nobody has more control than anyone else.

Analyze a Whirlpool CoinJoin transaction

Analyze a Wasabi CoinJoin transaction

PayJoin: the invisible variant

In a PayJoin, the payment recipient also contributes an input. The transaction looks like a normal payment, not recognizable as collaborative on the blockchain. If PayJoin were widely adopted, blockchain surveillance would become unreliable.

Still rare in practice because both sender and recipient need compatible software.

Tools and practice

The CoinJoin landscape shifted in 2024/2025. The technology still works, but key actors came under regulatory pressure. Functioning non-custodial solutions still exist.

What matters isn’t just the tool, but your behavior afterward. Merging CoinJoin outputs with unmixed coins destroys the privacy you gained. Sending to a KYC exchange re-links the coins to your identity. Sometimes that’s unavoidable, but it should be a deliberate choice, not an accident.

Caution with exchanges: Some platforms block users or reject deposits when they detect CoinJoin transactions, even for coins the user withdrew from that same exchange. These platforms punish you for exercising your fundamental right to financial privacy. We recommend avoiding them. We’ll compile a list of providers with this anti-privacy behavior.

CoinJoin tools overview: what works, what doesn’t (coming soon)

When privacy is criminalized

The technical tools for financial privacy work. But they face growing political pressure, even where they’re legal and non-custodial.

The Samourai Wallet case

In April 2024, the US Department of Justice indicted the founders of Samourai Wallet. In November 2025, they pleaded guilty and received sentences of five and four years in prison. The DOJ alleged they processed over $237 million in criminal funds.

The case is legally complex, and parts of the Bitcoin community viewed it as politically motivated. The charge: operating an unlicensed money transmitter and facilitating money laundering. Samourai was a non-custodial wallet. Users retained control of their keys at all times. The coordinator facilitated CoinJoin rounds but never had access to funds.

The relevant US regulator FinCEN had stated that CoinJoin coordination and non-custodial wallets do not fall under the definition of “money transmission.” The indictment was filed anyway.

If code that coordinates but doesn’t control transactions qualifies as money transmission, developers of privacy software are all at risk. The Bitcoin community, including the Electronic Frontier Foundation, has criticized the conviction as an attack on privacy and free speech.

Lightning: privacy as a side effect

Lightning was built for scaling, not privacy. But the architecture brings privacy as a side effect: only channel openings and closings appear on the blockchain. Everything in between stays invisible, encrypted via onion routing. Taproot channels make even those openings and closings harder to identify as Lightning on-chain.

More in the Lightning article.

Outlook: Silent Payments

Silent Payments (BIP 352) solve an old problem: how do you receive bitcoin privately without having to share a new address for every payment?

You publish a single, static address. Every sender automatically derives a one-time address from it that only you can recognize and spend. On the blockchain, there’s no visible connection between the payments.

For donation pages, websites, and social media profiles, this is a concrete step forward. Silent Payments are in active development and gaining wallet support.

The seven ground rules

  1. No address reuse — every payment gets a new address.
  2. Separate wallets for separate purposes — savings and Lightning kept apart.
  3. Buy with awareness. KYC links you to your coins permanently. Decide beforehand, or also buy non-KYC.
  4. Avoid UTXO merging. Don’t combine coins from different sources without thinking.
  5. Enable Tor for Bitcoin Core and privacy wallets.
  6. Post-mix discipline. Don’t merge CoinJoin outputs with unmixed coins.
  7. No mixers. Only use non-custodial solutions.

More on secure storage in the Security Guide.

FAQ

Yes. Financial privacy is a right protected by the European Convention on Human Rights. Using privacy tools is no more suspicious than sealing a letter or sending an encrypted message via Signal or WhatsApp.

What’s the difference between mixing and CoinJoin?

With mixing, you send your bitcoin to a service — it temporarily has full control. With CoinJoin, you create a transaction together with others, while retaining control of your keys and coins at all times. Only use CoinJoin.

Can blockchain surveillance track my bitcoin?

Often yes, especially after KYC purchases or with address reuse. But blockchain surveillance is a game of probabilities: the more ways a transaction can be interpreted, the more uncertain the attribution becomes.

Clean UTXO management, Tor, and CoinJoin create that uncertainty. Nobody can guarantee absolute anonymity, but you can raise the cost of attribution high enough that it becomes useless in practice.

I bought on a KYC exchange. What now?

The link can’t be erased. You can withdraw coins to your own wallet, stop reusing addresses, and be more deliberate about future purchases. CoinJoin can help, but it’s not a reset button.

The most pragmatic step: also buy non-KYC bitcoin and keep them separate. Over time, you’ll build a private reserve independent of what’s already linked.

Which tools do you recommend?

The tool landscape changes fast. Our current recommendations will be in the CoinJoin overview soon.

Keep reading

Secure Bitcoin Storage

How to store Bitcoin safely, from wallets and backups to best practices.

Read article
Technology

Blockchain, mining, and the technical foundations of Bitcoin.

Read article

Privacy understood.

Security and custody are the next step.

Read the Security GuideFind the next meetup
Bitcoin Austria

Independent Bitcoin education since 2011. Nonprofit, Bitcoin-only, no commercial interests.

Subscribe to our newsletter

Updates on Bitcoin, events, and the association’s positions.

Made by Bitcoin Austria — Est. 137517