Compliance Tool
By design, everything is public on the blockchain, which can deprive users from their right to privacy. Anyone can have access to everyone’s whole transaction history. In response to this core problem,Tornado.Cash protocol allows cryptocurrency holders to earn back their privacy and gain anonymity. Indeed, it enables users to break the on-chain link between a source and a destination address.
However, maintaining privacy and preserving financial freedom should never come at the expense of non-compliance. The right of privacy lies in the ability to have control over the information we provide and to whom we provide it.
To this extent, Tornado.Cash Compliance Tool enables users to prove the origin of their funds. Thanks to the Note generated after each deposit, this tool will issue a cryptographically verified proof of transactional history using the Ethereum addresses used to deposit & withdraw assets.
You can visit the Medium post related to this tool to learn more about its development and launch: Tornado.Cash compliance Medium Post.
Therefore, if you are ever in need to prove the origin of held assets withdrawn from one of Tornado.Cash pools, we invite you to use the following Compliance Tool:
https://app.tornado.cash/compliance/

How To Use the Compliance Tool?

With each deposit made through the Tornado.Cash app, a new Note is generated by the protocol. This Note is necessary to withdraw the deposited assets later on any withdrawal address. It is this same Note that, if needed, allow users to generate a Compliance Report to prove the origin of their assets.
More information about how to deposit & withdraw assets on Tornado.Cash are available on: Deposit & Withdraw.
To get a Compliance Report, the user solely need to copy the Note, generated after the deposit, in the dedicated box.

Before Withdrawal

If the Note wasn't spent yet (i.e. assets have still not been withdrawn), the Compliance tool will only provide you with information about the deposit:
  • Transaction hash of the deposit;
  • The source address;
  • The Commitment hash.
The commitment is the hashed random area of bytes generated at each deposit that is sent to Tornado.Cash smart contract to characterize the transaction.
https://app.tornado.cash/compliance/
You can find more information about how Tornado.Cash achieve to provide privacy by reading How does Tornado.Cash work?.

After Withdrawal

If the Note was spent (i.e. assets were withdrawn to a given address using the Note), the Compliance Tool will complete the information above by adding:
  • Transaction hash of the withdrawal;
  • The destination address;
  • The Nullifier Hash.
The nullifier hash is a public input that is sent on-chain to get checked with the smart contract & the Merkle tree data to allow the withdrawal.
https://app.tornado.cash/compliance/
Therefore, the tool allows users to re-link source & destination addresses in order to prove transaction history for assets used on Tornado.Cash.
This information can also be downloaded under a PDF format, making it is easier to get sent to any desired third part:
https://app.tornado.cash/compliance/
Written by @ayefda