Thread Reader
Alex Valaitis

Alex Valaitis

Nov 25, 2022
14 tweets

Recently there's been a concerning trend of "blue chip" crypto projects diminishing user privacy. First it was @Uniswap Labs πŸ¦„, now it's @MetaMask πŸ¦ŠπŸ’™. Here's everything you need to know 🧡

.@Uniswap Labs πŸ¦„ remains one of the largest DEXs on @Ethereum & has continued to innovate with new features such as their 'efficient AMM' (from Uniswap V3) & expanding its offerings (see Genie acquisition). However, they've recently ruffled feathers with updates to their privacy policy
The privacy policy starts off reasonably by stating they use publicly available blockchain data. But then it starts to get concerning... They go on to suggest that they also gather information from "localStorage and other technologies"...
These other technologies include: mobile deviceID, cookies, web beacons, and other similar technologies. While they frame this tracking as being needed to "improve the user experience," it's clear that there is another angle at play here...
A little further down the page we see that Uniswap will share the data to comply with "litigation, regulatory proceedings, compliance measures". This comes right on the heels of Uniswap blacklisting 253 addresses tied to @πŸŒͺ️ πŸŒͺ️
Uniswap CEO @hayden.eth πŸ¦„ responded to criticisms by pointing out that Uniswap does not collect personal data such as IP addresses. And that the team released a reverse proxy server to sit between devices and 3rd party tools...…
hayden.eth πŸ¦„

hayden.eth πŸ¦„

If people read our our blog post instead of angry Twitter threads they would realize Uniswap web app both: 1) does not track IP 2) actually prevents your IP address from being tracked by third party apis like infura and trm using a proxy server
However, user @CryptoShine (πŸ’™,🧑) pointed out how Uniswap's integration with @Amplitude could still compromise user privacy on the IP front, even with a reverse proxy server:…
CryptoShine (πŸ’™,🧑)

CryptoShine (πŸ’™,🧑)

1/? Uniswap and Amplitude = Reducing privacy Here's a short thread on how the frontends of popular DeFi Dapps reduce your privacy Read further for more details #privacy #DeFi #Uniswap $UNI
Just a few days after the Uniswap news, it was revealed that popular crypto wallet @MetaMask πŸ¦ŠπŸ’™ was also encroaching on user privacy. For context, Metamask is owned by @ConsenSys, which was launched by Ethereum co-founder Joseph Lubin.
Specifically, Consensys announced that any user leveraging @Infura as their RPC provider, would have additional data collected. This includes IP address and Ethereum wallet address, every time a transaction is made. (effectively doxxing wallets)
Users can work around this invasion of privacy by working with an alternative RPC, as pointed out by @ℭ𝔢𝔭π”₯𝔯.Ξžπ”±π”₯:…
"ConsenSys is committed to maintaining the highest standards when it comes to your privacy" Also, we collect basically every available piece of data from you other than a DNA sample. If you aren't using a custom RPC for Metamask, I'd suggest doing so now.
So what to make of these privacy updates from these leading DeFi projects? Here's 3 thoughts: 1) Both of these companies are US-based, which means they were likely pressured by US regulators to make these updates The alternative was that they'd likely face legal consequences
2) It further emphasizes the need for DeFi users not to aggregate around just a few providers/dApps. This creates targets for regulators to go after. By diversifying across wallets/dApps (based in different countries), it will force the US to have to adapt to remain competitive
3) Lastly, it underscores the need for privacy-preserving technologies. Over the coming months I am going to spend more time researching privacy solutions such as @Monero (XMR), @Zcash πŸ›‘οΈ, and @Dash
While blockchains are transparent, it's vital that this transparency doesn't come at the risk of other core tenants such as censorship-resistance & its permionless nature Doxxed wallets + regulation, threaten these 2 tenants, which is why new tools are needed to protect privacy
Alex Valaitis

Alex Valaitis

@Web3pills dealer πŸ’Š | Founder of W3T Inc. Previously: @Ethereum, @desoprotocol, @LinkedIn, @Intuit, @mint
Follow on Twitter
Missing some tweets in this thread? Or failed to load images or videos? You can try to .