F-01
Shielded by default
Transparent funds must be shielded before they can spend. Sending to a public address takes a deliberate, explicit acknowledgement, never an accident.
Chain · Sapling / Orchard
▸ Broadcast
▮ Zcash · Desktop · Self-custody
A Zcash wallet
that keeps quiet.
zbag shields by default, routes through fail-closed Tor, and signs air-gapped on your hardware wallet. Spending keys never leave the Rust core. Desktop-first for macOS, Windows, and Linux.
Early access by waitlist
01 / Posture
Five layers of privacy.
Always on the glass.
Every screen tells you exactly where you stand, across five independent layers. Icon, text, and pattern together. Never colour alone. If a layer degrades, you see it before you spend.
Chain
CHShielded only. Sender, recipient, and amount stay hidden on-chain.
Route
RTTor active. Your ISP cannot link wallet traffic back to you.
Service
SVLightwalletd over Tor. The server sees nothing that identifies you.
Local
LCNo screen recording. No viewing key exported. Secrets stay in the core.
Availability
AVFail-closed. If anything degrades, zbag blocks rather than leaking quietly.
Posture model ported 1:1 from the wallet · icon + text + pattern, never colour alone
02 / System
Built like an instrument.
A Rust core does the dangerous work. The interface only ever touches derived, non-sensitive data. Every automation has a manual lever, and every guarantee is something you can verify.
F-02
Fail-closed Tor
Network anonymisation that blocks rather than silently downgrading. If Tor cannot connect, nothing leaks. An embedded client, no system setup.
Route · Arti, embedded
F-03
Air-gapped signing
Keystone hardware support over animated QR. Your spending keys can live on a device that never touches the internet, signing with PCZT.
Sign · Keystone / PCZT
F-04
Keys stay in Rust
Spending keys never reach the interface. Seed phrases appear only in explicitly permitted flows, never logged, never persisted by the UI layer.
Core · librustzcash
F-05
Built-in swap
Move to and from ZEC without leaving the wallet, settled through NEAR Intents. Self-custodial the whole way. Swaps settle on mainnet.
Swap · NEAR Intents
F-06
Desktop-first
A real desktop application, not a browser tab. The dense, deliberate surface privacy work deserves. macOS, Windows, and Linux.
Build · macOS / Win / Linux
03 / Exposure
What everyone else sees.
Privacy is only real if you can name who is watching and prove what they get. Here is the take for each observer when a shielded send leaves your machine.
Your ISP
✓ Cannot link traffic
The lightwallet server
✓ Nothing identifying
The Zcash chain
✓ Amount & parties hidden
You
★ Everything, in the clear.
04 / Access
Get on the list.
zbag is not public yet. The Rust core works; the interface is coming together. Join the waitlist for early builds, audit news, and a heads-up before launch.
No third-party email service. Your address lives on our own infrastructure, a single Cloudflare Worker and a small database. We store a SHA-256 of your IP, never the raw address. One message when there is something real to say.