MoneroSwap
Don't trust — verify
Privacy you have to take on faith isn't privacy. Almost everything we claim, you can confirm yourself in under a minute — no account, mostly no source code, just your browser.
No cookies, no analytics, no trackers
Open your browser's developer tools (F12) → Application (or Storage) → Cookies and Local Storage for this site. Empty. We set nothing and load no analytics script — there's nothing to clear.
No third-party calls — the page can't phone home
In dev tools, open the Network tab and reload. Every request points back to this site's own address — nothing to Google, no analytics, no outside CDN. Your browser enforces it too: our Content-Security-Policy is connect-src 'self', which forbids the page from connecting anywhere else. You can read that header on any request in the Network tab.
Our key never touches your browser
View the page source, or search the loaded JavaScript, for an API key — there is none. The key that talks to the settlement network lives only in our server-side proxy; your browser only ever talks to our own /api endpoints on this domain. The secret never leaves the server.
We never hold your funds
The deposit address you're given belongs to the network that settles your swap — not to us. Your coins go straight there; we have no wallet in the path. Nothing for us to freeze, seize, reverse, or lose, and nothing anyone can pressure us to hand over.
Your Swap Pass stays on your device
A saved swap link keeps its details after the # in the URL — the fragment, which browsers by design never transmit to any server. Watch the Network tab as you open one: the part after # never leaves your machine.
Read the code
The strongest checks above need no source at all — your own browser is the proof. We're also opening the frontend itself: every line your browser runs, published for anyone to read and diff against what's served. The key-holding proxy stays private (publishing it would expose the key), but it never runs in your browser — and the no-third-party-calls guarantee is enforced by your browser, not by our word.
Still here, still uncompromised
Our warrant canary is dated and refreshed. If it goes stale, disappears, or its wording changes, treat that as a warning. And you can reach the whole site over Tor at our .onion address — no clearnet, no DNS, no exit node.
More on what we keep (nothing) and what we can't control: Privacy & canary · FAQ.