SSP Editorial Team

CoinJoin, Mixing & Bitcoin Privacy in Self-Custody

·6 min read·By SSP Editorial Team
Privacy-themed cover with hidden-eye, shield, coins and wallet icons for a Bitcoin CoinJoin guide

Bitcoin Privacy Is Not Automatic

Many people assume that holding Bitcoin in a self-custodial wallet keeps their finances private. It does not — at least not by default. Bitcoin's ledger is fully public. Every transaction, every amount, and every address that has ever received coins is permanently recorded and visible to anyone with a block explorer. Self-custody removes the need to trust a custodian, but it does nothing to hide what your coins do once they move.

This guide explains why the transparent ledger leaks information, what CoinJoin is, and — most importantly — the privacy practices you can apply today inside SSP without any third-party mixing service. If you are new to holding Bitcoin in SSP, start with the hub article Bitcoin in SSP for the basics of how the wallet's 2-of-2 multisig works.

How the Public Ledger Leaks Information

Bitcoin addresses are pseudonymous, not anonymous. They are not tied to your name on-chain, but they are tied to each other through the transactions you make. Two techniques are widely used to undo that pseudonymity:

Address clustering

When a transaction spends from several addresses at once, observers reasonably assume those addresses belong to the same wallet — they had to be controlled by one party to be spent together. This "common-input-ownership" heuristic lets analysts group your addresses into a single cluster. Reusing one address for multiple payments makes clustering trivial.

Chain analysis

Once addresses are clustered, chain-analysis firms follow the money. They trace where coins came from, where they went, and they correlate amounts and timing with off-chain data — an exchange withdrawal, a known merchant, a public donation address. A single link to an identity can de-anonymize an entire transaction history.

There are quieter leaks too. When you spend, the wallet usually creates a "change" output that returns the leftover balance to you; if an observer can guess which output is change, they keep following your cluster. Round-number payments stand out against unrounded change. Even the time of day you transact can hint at your time zone. None of these are decisive on their own, but together they give analysts a workable picture.

The practical takeaway: privacy on Bitcoin is about breaking links, not about a single magic switch.

What CoinJoin Actually Is

A CoinJoin is a single Bitcoin transaction that several participants build together. Each person contributes inputs and receives outputs, and the outputs are often equal-sized. Because many inputs and many outputs share one transaction, the deterministic link between a specific input and a specific output is broken — an outside observer cannot tell which output belongs to which participant.

CoinJoin is non-custodial by design. You never hand your coins to anyone; a coordinator only helps the participants assemble the transaction, and every participant signs their own inputs. That is an important distinction from a custodial "tumbler," which takes possession of your coins and asks you to trust it to return them.

A word on terminology: "mixing" is the older, looser term and is often associated with custodial services. CoinJoin is the specific, non-custodial protocol. People use the words interchangeably, but they are not the same thing — and the custodial kind reintroduces exactly the counterparty risk that self-custody exists to remove.

Be Cautious About Mixing Tooling

CoinJoin coordinators have a turbulent history. Implementations and services have launched, changed hands, and shut down — sometimes under regulatory or legal pressure. For that reason this guide does not recommend any specific coordinator or service. Tooling that is reputable today may be unavailable tomorrow.

A few neutral facts worth knowing. Using CoinJoin is legal in most jurisdictions, but some exchanges flag or restrict deposits that have recently passed through a CoinJoin, which can create friction later. Rules differ significantly by country and they change. None of this is legal advice — if compliance matters for your situation, consult a qualified professional in your jurisdiction. For an authoritative, vendor-neutral overview of Bitcoin privacy techniques, the Bitcoin Optech newsletter and topic pages are a reliable starting point.

SSP does not run a built-in CoinJoin coordinator. SSP is a 2-of-2 multisig self-custodial wallet; it does not mix coins for you. Anything in the next section works entirely within SSP as it exists today.

Privacy Practices That Work With SSP Today

You can meaningfully improve your privacy without ever touching a mixer. These habits work with self-custody and with SSP's multisig model right now.

Use a fresh receive address every time

SSP's 2-of-2 multisig derives a new address for each receive request. Use it. Never reuse an address for a second payment. A reused address links every payer and every payment to one on-chain identity and hands clustering analysis the easiest possible job. For the full walkthrough of address hygiene, see Receiving Bitcoin into SSP.

Be deliberate about your UTXOs

Your wallet balance is really a set of separate coins — unspent transaction outputs, or UTXOs. Each one carries its own history. If one UTXO is publicly linked to your identity and you later spend it alongside others, the common-input-ownership heuristic links all of them together. Think of UTXOs from different sources as separate pools, and be aware of which coins you are combining when you send.

A simple example makes this concrete. Suppose you receive one UTXO from a public donation address that is tied to your name, and another from a private trade that is not. If you later spend both in the same transaction, you have permanently linked the private coin to your public identity. Keeping those flows separate — and noticing when you are about to merge them — is most of practical Bitcoin privacy.

Understand the cost of consolidating

Consolidating many small UTXOs into one is useful for managing future fees, but it has a clear privacy cost: it merges the histories of every address involved into a single, openly visible cluster. Consolidation is a deliberate trade-off, not a free optimization. The companion article Consolidating UTXOs in SSP covers when that trade-off is worth making.

Keep your seed and your privacy practices aligned

Privacy and security reinforce each other. A leaked seed phrase exposes your entire transaction history at once, undoing every careful habit above. Store your SSP recovery material the way Seed Phrase Best Practices describes — offline, redundant, and never typed into a website.

Set Realistic Expectations

Privacy on Bitcoin is a spectrum, not a binary. Avoiding address reuse and being thoughtful about which UTXOs you combine will not make you invisible, but it raises the cost of analysis substantially and removes the cheapest, most common ways your activity gets linked. CoinJoin can go further, but it adds complexity and tooling risk that every user should weigh deliberately.

For self-custody users, the highest-value moves are the simple ones: a fresh address every time, deliberate coin management, and an honest understanding of what consolidating does. SSP gives you fresh addresses and full control of your coins by design — using them well is the privacy practice that costs nothing and never goes offline.

Share this article

Related articles

SSP article cover for receiving Bitcoin, showing QR code, wallet, coins and shield-check icons

Receiving Bitcoin Into SSP

How to receive Bitcoin in a wallet with SSP: the 2-of-2 multisig address, sharing it safely, change addresses, and verifying funds.

6 min read
Diagram of many small Bitcoin UTXO coins consolidating into one larger UTXO

Consolidating UTXOs in SSP

What a Bitcoin UTXO is, how small UTXOs pile up, and when to consolidate them in SSP's 2-of-2 multisig to keep future spends cheap.

6 min read