Bitcoin Privacy

# 10. Privacy

The traditional banking model achieves a level of privacy by limiting access to information to the parties involved and the trusted third party. The necessity to announce all transactions publicly precludes this method, but privacy can still be maintained by breaking the flow of information in another place: by keeping public keys anonymous. The public can see that someone is sending an amount to someone else, but without information linking the transaction to anyone. This is similar to the level of information released by stock exchanges, where the time and size of individual trades, the "tape", is made public, but without telling who the parties were.

> 💡 In plain terms
> Bitcoin is often called anonymous, but the more precise word is pseudonymous.
>
> Every transaction is public — anyone can see that address A sent 0.5 BTC to address B.
> But an address is just a string of letters and numbers. Unless someone connects that address to your real identity, the transaction reveals nothing about you.
>
> Satoshi compared it to stock exchanges:
> Trade records are public (you can see "10,000 shares traded at $150") but the identities of the buyer and seller are not revealed on the public tape.
>
> Bitcoin works the same way. The amounts and addresses are on the public blockchain.
> But who controls those addresses is not recorded anywhere — it depends entirely on whether you've linked your identity to an address (e.g., by buying on an exchange that has your ID, or posting your address publicly).

As an additional firewall, a new key pair should be used for each transaction to keep them from being linked to a common owner. Some linking is still unavoidable with multi-input transactions, which necessarily reveal that their inputs were owned by the same owner. The risk is that if the owner of a key is revealed, linking could reveal other transactions that belonged to the same owner.

> 💡 In plain terms
> Satoshi's best-practice advice: use a new address for every transaction.
>
> Why? If you reuse the same address, anyone can look at the blockchain and see the full history of what was sent to and from that address.
> That's fine as long as your identity stays separate — but the moment anyone links one transaction to your real identity, your entire history is exposed.
>
> There's also an important technical caveat: when you combine multiple UTXOs from different addresses as inputs in one transaction, those addresses are publicly revealed to be controlled by the same person. This "input co-spending" is a form of linkability that sophisticated blockchain analysis tools exploit today.
>
> The practical advice: generate a new receiving address for each payment, and be mindful that combining multiple UTXOs links their histories together.

> ⚡ Why It Works vs. Traditional Finance
> Traditional banks know everything: your name, address, income, spending patterns, merchant names, timestamps — every transaction tied to your verified identity.
> This data is shared with governments, sold to advertisers, and at risk of breaches.
>
> Bitcoin's public-key model offers a fundamentally different trade-off:
> - Financial activity is publicly auditable by anyone (full transparency at the network level)
> - Personal identity is not recorded in the protocol (full pseudonymity by default)
>
> This means Bitcoin can achieve both properties simultaneously: the network is fully transparent (no hidden money creation or accounting) while individual users can maintain privacy through address hygiene.
>
> No bank offers this combination. Banks are transparent to themselves and regulators, but opaque to the public — the opposite of Bitcoin.

// COMMENTS

ON THIS PAGE