# What is Privacy on Demand? ## The problem PoD addresses Public blockchains are excellent for **agreement**, **auditability**, and **open participation**. They are weaker when an application must hide **amounts**, **scores**, **personal fields**, or **business logic inputs** from everyone who can read the chain. Classic options include “only encrypt off-chain” (which weakens composability) or “move everything to a specialized chain” (which may not fit your custody, liquidity, or regulatory story). **Privacy on Demand** offers a middle path: * Keep **accounts, tokens, and workflow** where you already run them: on an **EVM-compatible chain**. * Send **encrypted inputs** into a **private computation** environment on **COTI**. * Receive **encrypted outputs** back on your chain, which **only authorized users** can decrypt on their own devices. So: **public chain for coordination**, **COTI for the sensitive math and data handling**. ## What “privacy” means in this model PoD is not one magic switch. In practice, privacy here means: 1. **Sensitive values are not stored on the orchestrating chain in plaintext** in the way ordinary `uint256` balances are. 2. **Computation over those values** happens in COTI’s private execution path, not in a trace everyone can replay from calldata. 3. **Users decrypt only what they are entitled to see**, using **client-side keys** (for example an account AES key managed through your wallet or onboarding flow), as described in the SDK’s client integration guides. What PoD does **not** automatically guarantee by itself: * Perfect **metadata privacy** (timing, gas, which contract was called, and linkage patterns may still leak information unless you design around them). * **Legal or regulatory** classification of your use case; you still need product and counsel review. ## What ships in the SDK versus what your team builds The **COTI PoD SDK** ([GitHub](https://github.com/cotitech-io/coti-pod-sdk), [npm](https://www.npmjs.com/package/@coti/pod-sdk)) provides **contracts and TypeScript helpers** for the PoD pattern. Your project still typically supplies: * **Application-specific** EVM contracts and state machines. * **User experience** for onboarding, showing **pending / completed / failed** private operations, and **safe key handling**. * **Operations**: monitoring, indexing, or internal tools for stuck requests and fee configuration, as appropriate for your deployment. The SDK’s own [documentation README](https://github.com/cotitech-io/coti-pod-sdk/blob/main/docs/README.md) states scope clearly: it does not replace deployment scripts, indexers, or backend services for you. ## Next steps * For a **walkthrough of one request**, read [How a private request travels end to end](/coti-documentation/privacy-on-demand/how-a-private-request-travels-end-to-end.md). * For **boxes-and-arrows** views of Inbox, executor, PodUser, and PodLib, read [Architecture and main components](/coti-documentation/privacy-on-demand/architecture-and-components.md). --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.coti.io/coti-documentation/privacy-on-demand/what-is-privacy-on-demand.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.