Surprising but true: not all “anonymous” crypto transactions are equal—some hide amounts, some hide addresses, and some only obscure network metadata. For privacy-conscious users in the US choosing a mobile wallet to hold Monero, Bitcoin and other assets, the difference between plausible privacy and fragile privacy is practical, not rhetorical. This explainer maps the mechanisms that produce anonymity, shows where they fail, and explains how a multi-currency mobile wallet that supports Monero, Haven Protocol, and privacy layers like Litecoin MWEB can change the trade-offs you face. Start with one organizing claim: privacy in cryptocurrency has at least three independent dimensions—on-chain unlinkability (who paid whom), amount confidentiality (how much moved), and network anonymity (who broadcasted or observed the traffic). Any wallet or protocol that claims “anonymous transactions” will typically secure some but not all of those dimensions. Understanding which pieces are protected determines the choices you should make about custody, network routing, and cross-chain swaps. How the main privacy mechanisms work — and what they actually hide There are a handful of mechanisms that provide anonymity in practice. Each targets different data leaks. 1) Ring signatures and stealth/subaddresses (Monero, Haven Protocol): these make it difficult to link outputs to a specific sender or recipient. Monero’s design sets an on-chain rule that obfuscates sender outputs by mixing a real input among decoys. Subaddresses and unique one-time destinations prevent address reuse, so receiving funds doesn’t create a persistent public identity. Haven Protocol follows Monero-style privacy at layer-level for its private assets, meaning the same unlinkability mechanics apply. 2) Confidential transactions and MimbleWimble (MWEB for Litecoin): confidential transactions hide amounts. MimbleWimble removes explicit addresses from transaction graph structure and hides amounts via commitments; when activated, Litecoin’s MWEB can provide amount confidentiality and a slimming of linkable inputs. But note: MWEB is optional on Litecoin and requires users to opt into that extension block; interoperability with non-MWEB chains still leaves metadata exposed. 3) Transaction-level privacy tools on Bitcoin (PayJoin v2, Silent Payments): these reduce heuristics used by chain analysis. PayJoin involves sender and receiver cooperatively constructing a transaction so change outputs are ambiguous, while Silent Payments create reusable, non-linkable payment endpoints. These are not amount-hiding: Bitcoin UTXOs remain visible, so these tools are about breaking simple heuristics rather than making transactions cryptographically confidential. 4) Network-level anonymity (Tor, I2P, custom nodes): this protects IP addresses and the timing/metadata of broadcasts. A wallet that offers Tor-only mode or I2P removes a major external correlator: the network observer who ties on-chain activity to a device or IP. But Tor/I2P use can be fingerprinted if done inconsistently, and running your own node is the best way to limit reliance on third-party relay nodes. Why the wallet matters: architecture, controls, and operational trade-offs Mechanics are only half the story; how a wallet executes them is equally crucial. Important architectural choices change risk in predictable ways. Non-custodial, open-source wallets keep private keys on-device and enable auditability; they don’t eliminate all privacy risks but they remove third-party custody as a single point of failure. A strict zero-telemetry policy reduces one class of deanonymization: servers that log transaction IDs, IPs or device identifiers. But zero telemetry is meaningful only if the wallet’s network options are used properly: using a remote node or an exchange without privacy-preserving routing can reintroduce leaks. For example, a wallet that supports Monero with background sync and guarantees the private view key never leaves the device preserves receiver-side confidentiality—yet if the device synchronizes via a remote node without Tor, that remote node learns IP-to-address correlations. Equally, Bitcoin privacy tools like UTXO coin control and batching reduce chain analysis accuracy but rely on disciplined user behavior; coin control requires understanding which outputs to combine and when. Multi-currency support plus built-in swaps (e.g., cross-chain routing via NEAR Intents) increases convenience but introduces additional decision points. Decentralized routing attempts to find competitive rates among market makers without central intermediaries, which reduces central custody risk. However, every swap is a sequence of traces across chains—preserving privacy through a swap depends on the swap protocol’s design, the number of counterparties, and whether intermediate chains leak metadata (amounts, addresses). Operationally, privacy-minded users should treat swaps as partial linkages unless the swap uses techniques expressly designed to break cross-chain traceability. Haven Protocol and private assets: an illustrative case Haven Protocol builds private assets by leveraging Monero-style primitives for amount confidentiality and unlinkability while adding synthetic asset features (e.g., pegged private assets). Technically, this means users can hold private versions of stable assets or tokens while keeping the same core privacy guarantees. The mechanism is powerful: confidentiality of both amounts and addresses is preserved at ledger level. But limitations matter. First, private asset bridges to transparent chains or exchanges are friction points: moving funds out of a private ledger into a transparent environment can reveal linkages if not carefully engineered. Second, regulatory dynamics in the US around privacy-preserving instruments can create practical constraints on where private assets trade or which custodians will accept them. Third, wallets must correctly implement view key handling and background sync behavior to avoid accidental leaks: for instance, sending a private asset outward to a transparent address will necessarily expose the recipient and amount on that other chain. Practical trade-offs for US-based privacy users If you live in the US and value privacy, here’s a simple decision framework to apply when choosing how to store and move funds. 1) Threat model first: are you defending against casual data aggregation (advertisers, analytics), law-enforcement subpoenas, or targeted nation-state surveillance? The stronger the adversary, the more you need layers: on-chain confidentiality (Monero/Haven), network anonymity (Tor/I2P, custom nodes), and operational hygiene (no address reuse, coin control, hardware wallets). 2) Device and custody layer: prefer non-custodial wallets with hardware wallet support. Device-level encryption (Secure Enclave, TPM) and local PIN/biometric gating matter because physical device theft and malware are common. Pairing a mobile wallet with a hardware signer reduces key extraction risk significantly, but remember hardware doesn’t stop all metadata leaks—your node and network channel remain critical. 3)