I grant access, not permission.
Send money nobody can see.
Show it to whoever you choose.
Private payments on Solana. The blockchain sees only noise — no sender, no receiver, no amount. You hand one key to the people who must see: your accountant, your auditor, your partner. Privacy by default. Transparency by consent.
Same transaction. Two truths.
One payment on the chain. The world sees noise. The person you trust sees everything.
What the whole world sees
Tx: 38CEsstd…joMEyG3s Action: transfer Amount: ??? Sender: ??? Recipient: ??? Purpose: ???
What the person you allow sees
Date: 2026-04-10 From: Lena To: parents Amount: 0.1 SOL Memo: october medicine Tx: 38CEsstd…joMEyG3s
What it is
Think of cash in an envelope. You hand it over — the street never sees how much, or to whom. But if the tax office asks, you open your own books and show every envelope you sent.
tidex6 does exactly that for digital money. Invisible to the world, fully auditable for the people you allow — and no one else. You grant access; you never ask permission.
Made to be used every month, not once.
The privacy people actually keep is the boring, recurring kind — the toothbrush, not the fireworks.
Payroll, every month
Pay a remote team across countries. Each person sees only their own salary — never anyone else's. The auditor sees the whole ledger.
Support home, monthly
A transfer to family every month, without triggering bank flags. Your accountant can still verify all of it at tax time, because you chose to share.
Freelance invoices
Bill clients in stablecoin without exposing your rates, your client list, or how often you get paid. Recurring by nature.
A fund, one address forever
Publish a single address instead of rotating wallets. Donors send shielded gifts; the fund's auditor sees every contribution — date, amount, memo.
Cross-border business
Pay suppliers privately, and prove compliance to a regulator on demand — without a freeze, without a public trail.
Fund what must stay private
Back a journalist, a cause, a dissident. The money is invisible; the work is public; the source stays safe.
Recurring by nature — that is why people come back.
How it's built
Real cryptography, verified on-chain — not trust, not a promise.
Zero-knowledge proofs
Groth16 over BN254 hides the sender↔receiver link. Verified by Solana's native alt_bn128 syscalls — cheap and on-chain.
Post-quantum encryption
Every memo and address is sealed with ML-KEM-768 — safe even against a future quantum computer (harvest-now-decrypt-later defence).
Stealth delivery
Nothing is handed over. The recipient scans the chain with their own secret and finds the payment. Their wallet never appears.
Immutable & reproducible
The verifier is locked forever — no admin key, no backdoor. The browser code is reproducible: anyone can confirm the code in their tab is the open source.
Coins: SOL today. USDC and USDT with hidden amounts (Token-2022 Confidential Transfers) already live on mainnet — the chain hides not just the link, but the number too.
It's live — not a demo
Everything above runs on Solana mainnet, right now.
- Three programs on mainnet — an immutable, OtterSec-verified verifier, plus live USDC and USDT hidden-amount pools.
- The verifier's upgrade authority is renounced — no one can change it, ever.
- Your proof is built in your browser in ~1.7 s — your secret never leaves the tab.
- The code is reproducible — hash
694ebb81…matches live at /verify. - Private transactions so far: 21 (mainnet 8 · devnet 13).
You choose how to earn
tidex6 ships the privacy primitive. How you charge for it is entirely your call — a subscription, a per-transaction fee, or a licence. No lock-in, no mandatory protocol fee, no middleman taking a cut. The network and the token are up to you; the privacy is built in.
ZK Privacy
Groth16 proofs hide the sender-receiver link. Verified on-chain via native alt_bn128 syscalls.
Selective Disclosure
Share a viewing key with your accountant — and only them. Privacy by default, transparency by choice.
Non-upgradeable
Verifier program locked after deploy. No backdoors, no admin keys, no trust required.
How it Works
Three steps. No intermediaries. Full control.
Deposit
Send SOL into the shielded pool, sealed in a post-quantum ML-KEM envelope addressed to the recipient's key. On-chain, only a commitment hash is recorded — no sender, no amount, no recipient visible to observers.
Recipient Scans
Nothing is handed over — no note, no file, no channel. The recipient scans the chain with their own ML-KEM secret and finds the payment addressed to them. The key stays in their tab; the scan itself is the delivery.
Withdraw
The recipient presents a ZK proof and claims the SOL. The reference relayer pays the on-chain fee, so the recipient wallet never appears as fee-payer — full unlinkability against on-chain analysis.
What Solscan sees
Tx: 38CEsstd...joMEyG3s Action: transfer Amount: 0.1 SOL Commitment: 08e44231fddae8cc... Sender: ??? Recipient: ??? Purpose: ???
What the accountant sees
Date: 2026-04-10 From: Lena To: parents Amount: 0.1 SOL Memo: october medicine Tx: 38CEsstd...joMEyG3s Grand total: 0.100 SOL
Use Cases
Privacy is not about hiding. It is about choosing who sees what.
Family Support
Cross-border transfers without flags.
Journalist Protection
Fund investigations privately.
Freelancer Privacy
Invoice without exposing your rates.
Payroll
Pay remote teams privately.
Donor Anonymity
Support causes without exposure.
Tax Compliance
Full audit trail, zero public exposure.
Donation Fund + Auditor
One address forever, audit by choice.
For Developers
Add privacy to your Solana program in five lines.
let pool = PrivatePool::connect(Cluster::Mainnet, Denomination::OneSol)?; // Sender seals the payment for the recipient's ML-KEM key — nothing handed over. pool.deposit(&wallet).to_recipient(recipient_pk).send()?; // Recipient scans with their own secret and withdraws — no note passed. let payments = RecipientScanner::new(rpc, program, &secret).scan()?;
tidex6 keygen tidex6 deposit --amount 0.1 --recipient <recipient-mlkem-pubkey> tidex6 receive --identity my.json --to <pubkey>
Roadmap
The honest current state — what runs today, and what comes next.
Shipped — live on mainnet
- Shielded pool (deposit + withdraw), Groth16 / BN254, per-nullifier double-spend guard
- Immutable verifier — OtterSec-verified, upgrade authority renounced (can never change)
- Unlinkable withdraw via reference relayer (relayer pays the fee)
- Post-quantum encryption everywhere (ML-KEM-768) — every memo, envelope and address
- Stealth payments — the recipient scans the chain with their own secret, nothing handed over
- Encrypted memo addressed to an auditor — auditable by choice, per deposit
- Hidden amounts on mainnet — USDC and USDT (Token-2022 Confidential Transfers): the chain hides the number too
- Client-side proof in the browser (~1.7 s, secret never leaves the tab)
- X25519 view-tags — fast recipient / auditor scan
- Public trusted-setup ceremony at ceremony.tidex6.com
- Reproducible build + live /verify — confirm the browser code is the open source
- Wallet Standard — Phantom, Solflare, Backpack, Ledger
- Per-deposit revoke / refund — reclaim a deposit the recipient never withdraws
- Third-party CPI integration example (tip-jar, on mainnet, OtterSec-verified)
Now — the regulator layer
- Regulated / multi-auditor pools — a pool-level viewing key for a regulator: sees every transaction, cannot freeze or stop anything. Legal privacy for stablecoins.
Next
- Proof of Innocence / association sets — prove funds are clean without revealing who you are
- Time-scoped auditor keys — grant a viewing key for one period (e.g. one tax year), not forever
- Relayer hardening — HSM keypair, cold multisig, federated discovery across independent relayers
- Timing defences — random timelock so deposit↔withdraw timing can't be correlated
- Revoke in the UI — the on-chain refund exists; add the button
Later — 2027 and beyond
- UTXO model — spend part of a note and get private change, or merge notes (like Bitcoin)
- Shared anonymity pool — one crowd across every integrating app, stronger privacy for all
- Post-quantum spender signature (Falcon) — research spike
- Persistent browser prover — cache the proving key across calls for even faster proofs