🛡️ PermaGuard

Autonomous On-Chain Privacy Shield Powered by MetaMask Advanced Permissions

Overview

PermaGuard is an autonomous, agent-based privacy protection system for Web3 wallets.
It acts as a user’s personal on-chain privacy sentinel, continuously monitoring wallet activity and proactively defending against privacy leaks—without requiring repeated user approvals.

Using MetaMask Advanced Permissions (ERC-7715) and Smart Accounts, PermaGuard can securely execute pre-approved privacy actions (such as obfuscation swaps, controlled fund routing, or address rotation) on behalf of the user, strictly within user-defined limits.

Think of PermaGuard as a “VPN for your wallet”—but fully on-chain, transparent, revocable, and user-controlled.

Problem

Web3 users unintentionally leak sensitive information every day:

• Address linking through repeated swaps and transfers

• Transaction pattern fingerprinting

• Public exposure of balances and behavioral data

• Manual privacy tools that are reactive, complex, and error-prone

Current solutions require constant user intervention, deep technical knowledge, or unsafe unlimited approvals.

Solution

PermaGuard introduces proactive, permissioned, agent-driven privacy protection.

Instead of reacting after exposure, users pre-authorize bounded actions using MetaMask Advanced Permissions, allowing PermaGuard to defend privacy automatically in real time—without ever exceeding consented limits.

How PermaGuard Works

1. Permission-First Onboarding (ERC-7715)

The user connects MetaMask and grants PermaGuard a fine-grained Advanced Permission, such as:

“Allow up to 50 USDC per week for privacy-preserving actions for the next 30 days.”

These permissions are:

• Time-bound

• Amount-limited

• Fully revocable

• Enforced on-chain via Smart Accounts

No unlimited approvals. No hidden access.

2. Agentic Architecture (Core Innovation)

PermaGuard uses a hierarchical agent swarm:

🔹 Master Guardian Agent

• Holds the user’s primary permission

• Enforces global limits and safety policies

🔹 Scout Agent

• Monitors wallet activity and exposure signals

• Uses indexed on-chain data (via Envio) to detect privacy risks

🔹 Shield Agents (A2A Delegation)

When risk is detected, the Scout Agent re-delegates micro-permissions to specialized agents:

• Obfuscation Agent – breaks transaction linkability

• Routing Agent – changes fund flow patterns

• Rotation Agent – moves assets to ephemeral addresses

This agent-to-agent (A2A) permission flow demonstrates a real-world use of Advanced Permissions beyond simple automation, directly aligning with hackathon goals.

3. Autonomous Privacy Actions (No Re-Signing)

Once permissions are granted:

• PermaGuard executes defensive transactions automatically

• No repeated wallet pop-ups

• No user intervention mid-flow

• Every action remains auditable and constrained

Example:

A burst of swaps risks address fingerprinting → PermaGuard performs a small obfuscation swap within allowed limits.

4. Transparency & Control

The user dashboard shows:

• Active permissions and remaining allowance

• All executed actions (on-chain)

• Real-time privacy status

• One-click revoke / emergency stop

Revoking permissions immediately halts all activity.

Envio Integration (Best Use of Envio)

PermaGuard uses Envio HyperSync to index and query:

• User transaction events

• Permission grants, redemptions, and revocations

• Agent-executed transactions

• Balance and exposure patterns

Envio enables:

• Real-time risk detection

• Fast GraphQL queries for the UI

• A transparent, auditable action timeline for users and judges

The demo explicitly shows Envio queries powering risk detection and monitoring.

Why PermaGuard Is Unique

• Proactive, not reactive privacy protection

• First agent-based privacy mesh using ERC-7715

• Real A2A permission re-delegation

• Strong focus on user consent, safety, and revocability

• Combines Account Abstraction + Privacy + Agentic Systems

Most Web3 automation focuses on yield or trading.
PermaGuard focuses on protecting the user.