PermaGuard as a “VPN for your wallet”—but fully on-chain, transparent, revocable, and user-controlled.
PermaGuard is an autonomous, agent-based privacy protection system for Web3 wallets.
It acts as a user’s personal on-chain privacy sentinel, continuously monitoring wallet activity and proactively defending against privacy leaks—without requiring repeated user approvals.
Using MetaMask Advanced Permissions (ERC-7715) and Smart Accounts, PermaGuard can securely execute pre-approved privacy actions (such as obfuscation swaps, controlled fund routing, or address rotation) on behalf of the user, strictly within user-defined limits.
Think of PermaGuard as a “VPN for your wallet”—but fully on-chain, transparent, revocable, and user-controlled.
Web3 users unintentionally leak sensitive information every day:
Address linking through repeated swaps and transfers
Transaction pattern fingerprinting
Public exposure of balances and behavioral data
Manual privacy tools that are reactive, complex, and error-prone
Current solutions require constant user intervention, deep technical knowledge, or unsafe unlimited approvals.
PermaGuard introduces proactive, permissioned, agent-driven privacy protection.
Instead of reacting after exposure, users pre-authorize bounded actions using MetaMask Advanced Permissions, allowing PermaGuard to defend privacy automatically in real time—without ever exceeding consented limits.
The user connects MetaMask and grants PermaGuard a fine-grained Advanced Permission, such as:
“Allow up to 50 USDC per week for privacy-preserving actions for the next 30 days.”
These permissions are:
Time-bound
Amount-limited
Fully revocable
Enforced on-chain via Smart Accounts
No unlimited approvals. No hidden access.
PermaGuard uses a hierarchical agent swarm:
Holds the user’s primary permission
Enforces global limits and safety policies
Monitors wallet activity and exposure signals
Uses indexed on-chain data (via Envio) to detect privacy risks
When risk is detected, the Scout Agent re-delegates micro-permissions to specialized agents:
Obfuscation Agent – breaks transaction linkability
Routing Agent – changes fund flow patterns
Rotation Agent – moves assets to ephemeral addresses
This agent-to-agent (A2A) permission flow demonstrates a real-world use of Advanced Permissions beyond simple automation, directly aligning with hackathon goals.
Once permissions are granted:
PermaGuard executes defensive transactions automatically
No repeated wallet pop-ups
No user intervention mid-flow
Every action remains auditable and constrained
Example:
A burst of swaps risks address fingerprinting → PermaGuard performs a small obfuscation swap within allowed limits.
The user dashboard shows:
Active permissions and remaining allowance
All executed actions (on-chain)
Real-time privacy status
One-click revoke / emergency stop
Revoking permissions immediately halts all activity.
PermaGuard uses Envio HyperSync to index and query:
User transaction events
Permission grants, redemptions, and revocations
Agent-executed transactions
Balance and exposure patterns
Envio enables:
Real-time risk detection
Fast GraphQL queries for the UI
A transparent, auditable action timeline for users and judges
The demo explicitly shows Envio queries powering risk detection and monitoring.
Proactive, not reactive privacy protection
First agent-based privacy mesh using ERC-7715
Real A2A permission re-delegation
Strong focus on user consent, safety, and revocability
Combines Account Abstraction + Privacy + Agentic Systems
Most Web3 automation focuses on yield or trading.
PermaGuard focuses on protecting the user.