Ctrl+ArcZ is a security layer for USDC payments on Arc. It covers both sides of a payment: it protects the recipient you send to (address poisoning), and it protects you when you pay (doxxing and drainers). It ships as a TypeScript SDK, a set of smart contracts, and reference apps.

Private Pay

Pay a merchant from a fresh, single-use address so they never see your main wallet, guarded by an enclave co-signer that vetoes bad spends.

Poisoning firewall

A pre-send scan that refuses a lookalike or zero-value-bait recipient before any funds move. Fail-closed by default.

Protected transfer

Escrowed, code-claimed transfers: a wrong or poisoned send is recoverable, and the recipient claims with a short code.

The Machine (co-signer)

The enclave half of a 2-of-2. It does not warn, it vetoes: a spend that fails policy or the firewall is physically impossible.

Why Arc

Ctrl+ArcZ is built for Arc because Arc is what makes it practical:
  • USDC is the gas token. Ephemeral payment addresses need no separate gas funding, the detail that kills this design on other chains.
  • Sub-second finality. The create-fund-pay chain finishes in one breath, so a private checkout feels instant.
  • Circle tooling built in. CCTP and Gateway move USDC in and out; Arc Privacy Sector (APS) is the roadmap for confidential balances.

Install

Then jump to the quickstart or an integration guide above.