Verifier · disclosure review

For a verifying counterparty (a compliance desk, tax authority, or KYC provider) that needs proof of a single fact about one on-chain transfer. You hold no key into the system and learn nothing beyond what is explicitly proved to you. No wallet required: this page reads the chain, verifies the proof against the shared circuit artifacts, and decrypts the amount sealed to your key. Nothing here is published.

1 · Your disclosure request

Hand this to the account holder (they paste it on the wallet page under “Disclose amount”). The nonce nuis one-time: a proof bound to it cannot be replayed against any other request, and the disclosed value is readable only with this browser's secret key.

2 · Verify the holder's bundle

Paste the bundle the holder sent back. The event payload, the disclosing account's key, and the contract binding are all re-read from the chain — never trusted from the bundle.

Create a request first. A bundle can only be verified against the (P_R, ν) it was produced for.