Most Bitcoin users think of their wallet balance as a single number — like a bank account. In reality, Bitcoin works completely differently. Your "balance" is made up of individual chunks called UTXOs, and how you manage them has a direct impact on your privacy.

Understanding UTXOs is one of the most important — and most overlooked — aspects of Bitcoin privacy.

What is a UTXO?

UTXO stands for Unspent Transaction Output. Every time you receive Bitcoin, you receive it as a UTXO — a discrete, indivisible chunk of BTC sitting at a specific address.

Simple analogy: Think of UTXOs like physical banknotes in a wallet. If you have a €50 note and a €20 note, your balance is €70 — but it's made up of two separate notes, not one. Each note is a UTXO. When you spend, you hand over one or more notes and receive change back.

When you send Bitcoin, your wallet selects one or more UTXOs as inputs, creates outputs to the recipient and — if needed — a change output back to your own wallet. The original UTXOs are "spent" and destroyed; the new outputs become new UTXOs.

Why UTXOs Matter for Privacy

Here's where it gets critical: every input in a Bitcoin transaction is publicly visible on the blockchain. When your wallet combines multiple UTXOs into a single transaction, anyone can see that all those UTXOs came from the same wallet.

This is the basis of the Common Input Ownership Heuristic (CIOH) — the core technique used by Chainalysis and other analytics firms. If multiple addresses appear as inputs in the same transaction, they assume the same person controls all of them.

Real example: You receive 0.05 BTC from a P2P sale (no KYC) and 0.03 BTC withdrawn from Coinbase (KYC). Your wallet combines both UTXOs to pay 0.07 BTC for something. Chainalysis now knows your anonymous P2P coins belong to the same person as your Coinbase-KYC coins. Your anonymity is gone.

UTXO Consolidation — The Hidden Risk

Many users "consolidate" their UTXOs — combining many small UTXOs into one large one to reduce future transaction fees. This seems logical from a cost perspective, but it is a privacy disaster.

Consolidation transactions create an explicit, permanent, public link between all the input addresses. If even one of those addresses is linked to your identity, all of them are now linked too.

Coin Control — Managing UTXOs Manually

Privacy-focused Bitcoin wallets like Sparrow and Electrum offer a feature called coin control — the ability to manually select exactly which UTXOs to use as inputs in a transaction.

With coin control you can:

Dust UTXOs — A Special Case

A dust UTXO is a very small UTXO — usually under 546 satoshis — that costs more in transaction fees to spend than it is worth. Analytics firms deliberately send dust to your addresses to create UTXOs that, if ever spent, will link your addresses together.

The correct response to dust is to never spend it. Mark dust UTXOs as frozen in your wallet and leave them permanently unspent. Wizardo's free Dust Detector tool scans any Bitcoin address for dust attacks instantly.

Best Practices for UTXO Privacy

Pro tip: Use separate wallets for separate purposes — one for KYC exchange withdrawals, one for P2P purchases, one for post-CoinJoin spending. Never let UTXOs from different wallets touch each other in the same transaction.