3 Rules for Healthy Pseudonymous Hygiene with Ethereum

Anonymity with Ethereum is hard. It’s a public blockchain, after all.

Sure, you can create your seed phrase offline or with a hardware wallet, but as soon as it comes to moving funds to your fresh accounts you should expect that eyes will see that transaction – even years later.

Even with all the proper steps taken to create a cold wallet, the currencies you put into those accounts still come from somewhere. And somewhere wasn’t in your control.

Typical Transactions

Let’s take the classic example of where that money comes from: an exchange.

When you sign up for an exchange like Coinbase, you go through KYC. They know who you are, how much you buy, and where you send it.

So, when you send funds from the exchange to your secure cold wallet, they have access to this transaction. They could deduce that wallet as yours (and share that info with the IRS or NSA, etc). Even if you use a mixer, the exchange will still see this and flag or even block your address.

It’s all connected, forever.

Now, in this pure example, nobody else could deduce that this cold wallet is yours. Randos on Twitter wouldn’t be the wiser. On-chain it’s just another transaction.

This is basic pseudo-anonymity: the public doesn’t know that this account is yours, but there is some trail that could identify you to someone. In essence: you are not guaranteed anonymity. 

The risk of exposing your addresses and losing that pseudo-anonymity is exacerbated by participation in the network:

  • Transferring funds
  • Registering ENS
  • Buying NFTs
  • Using DeFi
  • Transacting with platforms like God’s Unchained

So it’s good to arm yourself with some principles & rules for using Ethereum so you can guard yourself from exposure.

Principle #1: Be Public AND Private

Use specific public & private addresses and keep them completely separate.

With this one principle, you’ll be able to maintain pseudo-anonymity with one reason: intention.

When you commit to using a public address, you acknowledge and understand the public nature of the chain itself. This inherently will train you to think between public and private transactions.

Always think: “Should I use my public address for this transaction?”

For example, I use my public address for:

  • Registering ENS & mapping it to my Twitter
  • Connecting to God’s Unchained
  • Building example transactions for education
  • Kicking the tires on DeFi platforms before diving in
  • Linking with 3box and Satellite

Not everything can be private; rather than deprive yourself of using various protocols, use a public address with them instead.

With that, you can expand into a few simple rules (and a handy flowchart).

Rule #1: Use multiple addresses

Not only should you split between public and private addresses, but you should use multiple of each to diversify your pseudo-anonymity.

Maybe you don’t want two public protocols to know that you’re using the other. Consider using a public address for each.

If you want to guard your private address against the risk of exposure, split it into multiple. Use one for DeFi and one for hodling – this way no one can determine your full net worth by uncovering one account.

Use one for a public pseudonymous Twitter account.

With multiple addresses, you limit your exposure to connecting them all.

Unfortunately, as you expand your address collection, your fees for moving those funds around grows. Be sure to consider transaction fees into your privacy plan.

Rule #2: Never cross streams

Never transact directly between your public and private addresses.

Only send assets to your addresses from a centralized exchange (or a mixer).

Due to the way centralized exchanges are set up, they essentially act as a mixer with the way their receive/send currency. So, if you need to send money from your private address to your public one, send it to your exchange first and disperse it to your public address in two transactions to ensure you leverage the mix properly.

Obviously this does still leave you exposed to exchange deduction, but it will keep the public out of the know. You’re not trying to hide from big brother, are you?

Rule #3: Use Brave, a VPN, and Tor

Looking to supercharge your privacy?

Use Brave browser and always clear cookies & local storage when switching between public and private accounts. This prevents individual applications from tracking that two addresses could be linked to the same user.

Use a VPN or Tor to totally obfuscate your internet browsing history from your ISPs.


When you actively commit to dividing transactions between multiple public and private addresses, you’ll be well on your way to concealing your true net worth & activity; limiting your exposure to being a target for crypto theft and questions from your mother-in-law.

What tips do you have?

How to create a pseudonomous identity on the internet

Image credit

A short guide to creating a pseudonymous identity on the internet that probably can’t be traced to your real identity (for fun).

Maybe you want to launch a DeFi product without attaching it to your identity? I don’t know you.

Prerequisites:

Step 1: Use VPN or Tor

Obfuscate your IP address with a VPN or Tor when interacting with these applications to maximize cloak. Or don’t. At least use Brave browser.

Step 2: Fund a new Ethereum address with a Mixer

Properly transfer some ether through a mixer like Tornado to a brand new address (probably MetaMask). This kills off any connection to your central exchange (CEX) funded address.

Remember, don’t dox your new address with direct transactions or other touches.

Step 3: Create an Ethmail address

Legacy internet is built with email. Claim your ethmail.cc email address using your new Ethereum address. Don’t add an email forwarder.

Step 4: Signup for Twitter, Github, etc.

Use your new email to signup for new accounts.

Don’t reuse a password – always use VPN. Be careful when you set up 2FA to not use a linked phone number – maybe no 2FA at all.

Make sure you’re using incognito so Twitter can’t link your old sessions to the new account – clear browser cookies/local data first.

Step 5: Claim an ENS name and link your social profiles [optional]

Add Twitter to your ENS record and ENS to your Twitter profile. This ties and proves your address to your profiles. Don’t want to prove it? Do you.

Step 6: Use

Launch smart contracts and tweet tweets, you’re free! 

Web3: The next generation of internet use

Web3 is quite an elusive term to define beyond “you know it when you see it”.

For me, it’s the glue between the web as we know it and the emerging permaweb (read as Ethereum); allowing us to use our crypto with every smart contract in existence with the click of a button.

It’s the UI you use to open a CDP with MakerDAO to create DAI, the way you login to p2p social networks like Satellite, use DeFi, and even to register your name on the internet for eternity 999 years.

And now, Web3 is coming to Web2 sites like Twitter & Facebook with a new Chromium extension called MaskBook, which offers encrypted messaging, truly private images, and even native Web3 ecommerce embeds!

With Web3, you can:

  • Login to an application without them storing (and losing) your person information
  • Send a private message on any platform that only your recipient can read
  • Send money anywhere without permission from your government and bank in seconds
  • Donate money directly to a cause without a middleman directly from your Twitter feed
  • Establish the foundation of your self-sovereign digital identity

Let’s dive in and learn about some of the cool projects building out Web3 for the rest of us to enjoy.

It starts with Wallets

Web3 starts with a wallet (I recommend the Meta Mask extension).

Web3 wallets like MetaMask hold your money – obviously – but more importantly they make Web3 available on every webpage you visit. You bring Web3 with you as you browse; it’s just a matter of each site using it, too!

When you use a Web3 native website like Zapper Fi, it can ask your wallet for permission to submit transactions to smart contracts, transfer crypto, or sign messages using your private key (more on signing below – spoiler alert, it’s cool).

Because you are in complete control of your wallet & transactions, these site’s can’t do anything without your express permission. In fact, Web3 sites are analogous to speed dial for smart contracts: they offer easy buttons or forms that let you interface with the blockchain on your own.

When you visit websites that don’t support Web3 like Twitter, nothing happens – unless you add your own Web3 functionality to them…

Introducing Maskbook!

Web3 on Twitter with MaskBook

What if you could tweet something that only your followers could read.

Imagine sending a “private” DM to your partner that Twitter itself couldn’t decipher (or leak).

What if you could contribute to a GitCoin fund straight from your Twitter feed.

Imagine purchasing an NFT directly from your DMs.

MaskBook is a very interesting piece of tech that injects Web3 into websites as you browse (with permission) and edits the page (DOM) to create integrated experiences in context. For example:

Through MaskBook, I create a GitCoin Web3 link and tweet it. On Web2, nobody is the wiser: it looks like a regular link

Maskbook fallback

But with MaskBook’s Web3 lens, you would see the embed come alive directly in your feed.

Maskbook progressive enhanced Gitcoin embed
Amazing!

Clicking the button opens a dialog to execute a Web3 transaction (currently using a native wallet implementation, adding Meta Mask soon).

Boom – Web3 p2p ecommerce within your Twitter feed.

Pair a decent UI & capture for shipping/download info and you could sell any product with a single link.

Here’s how it works:

Maskbook uses a loophole in Twitter’s character-limit logic: they don’t count links as characters. So, Maskbook can build a super long link with the details and extract/interpret it in the DOM as anything imaginable. 

For me, the most beautiful part of it is the progressive enhancement from the simple fallback link.

One more thing

But what if they fix the character loophole? Easy: Maskbook can encode text into images and interpret – like a QR code, but cool.

Maskbook also integrates the same features into Facebook and has no limit on how it could blend Web3 into any existing Web2 property.

What could you do with Web3 on Amazon? Reddit? Netflix?

Sign in on the dotted line

As I mentioned above, Web3 wallets aren’t just useful for operating smart contracts and transferring funds: they can be used to completely replace email/password login.

That’s right, no more passwords (at least, no more website passwords – please use a secure wallet password).

Because wallets contain your private key, the address is only usable by you! Typically, this means only allowing you to execute transactions, but recently MetaMask has added the ability to sign messages as the address as well. This is a simple operation that proves you have the private key without revealing it.

In practice, signing a message to the website allows them to confirm that you own the address and let you log into the site!

Satellite offers a great example of this process:

  1. Register your username & address (on-chain)
  2. Sign a message proving you own the address
  3. Tada, logged in!

Satellite also forces you to sign all of your content and stashes it all in torrents over IPFS, which is an interesting concept that we’ll visit another time.

Register your name for 999 years

Enter ENS. 

ENS is quickly becoming the preferred naming tool for Ethereum (and otherwise). Compared to its counterparts Unstoppable Domains and Handshake, ENS’s focus on address resolution instead of IPFS or root certificates has really given it a mass-adoption head start. 

But ENS is so much more than address resolution (and email); I peg it for the foundation of digital identity as we know it.

Check this out (and forgive me for skipping its IPFS and DNS functionality):

First, ENS is a shortcut.

When I need to use my ETH address, I can type in jameswmontgomery.eth instead of the whole gambit. Any of the growing number of web applications that support it can simply translate that into my actual ETH address (or BTC and other chains as well).

This feature is what most people use ENS for right now.

Second, ENS allows for custom key value text pairs.

Beyond adding all my coin addresses, I can add my website url, my twitter handle, or even an entire pgp public key – any key/value pair I can think up, linked forever to an account I alone control.

With ENS, I can connect all the pieces of my public identity into one place on the blockchain. Imagine not filling out the social links section of a profile (or any piece of a profile) ever again.

On top of that, I can give someone my ENS name and they’ll be able to lookup all my public profiles in one shot. A modern business card.

Now that I have my info added to my ENS name, let’s use it to “login”.

Then, I can “login” to applications.

Using just my ENS domain, I can pre-load any website with all my public profile info. Any transactions would be Web3 protected by my actual wallet (or signed by my key), but the publicly readable content could easily be pulled into an application.

Take a look at Zapper Fi again; you can plug in jameswmontgomery.eth and watch/review my transactions (or anybody at all) without logging in at all. This is just a taste of Web3 applications to come: simply inputting an ENS name to start using the public portion of the application, while gating real transactions with the wallet.

DeFi, NFTs, social networks, and anything on the blockchain are as easily accessible as plugging in your digital name.

It’s a healthy reminder to maintain compartmentalized pseudo-anonymity as well.

Lastly, I connect with my network.

What is identity if not in relation to other people?

Since my address might touch others, I can construct a contact list of other ENS names & profiles that I have known – whether through web applications, ETH transactions, or even Web2 applications like Twitter.

I could delegate my credit to a friend or even “stake” the information of my friends’ ENS profile as correct.

Consider how you could tie yourself publicly to other ENS names, contracts, and addresses – or inversely how you could publicly dissociate/discredit others as well.


So, ENS ties together a username that: 

  1. Easily resolves to any crypto address
  2. Preloads public data about you into any web app
  3. Allows only you to “sign in” or execute transactions
  4. Can touch every other ETH contract & contact

And you can rent it for 999 years on-chain for $5k – or, you could just grab 1 year for $5 like a normal person (or control a free subdomain, hmu). 

ENS connects the dots for an even smoother Web3 experience and I can’t wait to see how we use it for digital identity in the future. 

Web3 is dope

These are just a couple of cool projects I’m keeping my eye on. 

Web3 is constantly being built up and, in my opinion, is one of the biggest web development opportunities of the next 10 years.

So start getting used to using your wallet (and try not to get wrecked by gas fees)!

What cool Web3 projects are you into?

Review: Linus High Yield DeFi Platform

DeFi is quickly becoming one of the most impactful use cases that public blockchain networks are offering. Atomic transactions, smart contracts, and automation are driving costs down, democratizing finance, and surfacing very alluring yields on deposits.

With products like BlockFi and Compound, it takes a bit of technical know-how to participate in the space. For most in the cryptocurrency space, maintaining a wallet and working with exchanges is quite easy – but there’s a gap in participation for those that are not technically savvy.

If you want a no-fuss onramp to cryptocurrency DeFi gains, check out Linus!

What is Linus DeFi?

Linus is a simple Financial Service Provider (FSP) that accepts USD transfers and returns a high interest rate on that account. No settings, no bells, no whistles.

Behind the scenes, Linus takes the USD, exchanges it for USDC, and loads it onto Compound Finance to take advantage of their DeFi lending pool’s APY. 

In short, they handle the “techiness” on behalf of their depositors. Linus democratizes DeFi for those who don’t or can’t use DeFi themselves.

Linus has just launched out of private beta and is open for new account creation. Here’s the overview of what they have to offer.

Pros

No fees

Linus currently has no fees, at all.

They profit directly from the APY differential between their rates and Compound. 

Extremely easy

Linus only allows two actions: deposit and withdraw. You don’t need to understand cryptocurrency to take advantage of its power.

Better rates

Linus’ APY puts savings accounts and other investment products to shame. Their current (variable) APY is a monster 3.5% – topping both the 2.3% inflation rate and Marcus’s 2.05% 12mo CD.

No term limits

No need to lock up your capital in CD to get this rate – or suffer a penalty for early withdrawal. Deposit or withdraw at any time.

Instant accrual

Due to the instantaneous nature of DeFi, Linus accounts accrue interest every second – you don’t need to wait 30 days (or years) to get your interest.

USDC stability

Compared to Dai, USDC is an audited 1:1 backed stablecoin. This allows for a large liquid safety net for withdrawal needs.

Cons

No insurance

High risk, high reward. Linus does not offer insurance on their products at this time. If the underlying assets are lost, there is no recourse (as is the case when using any DeFi products). 

However, they are pursuing adding insurance policies through on-chain insurers (like Nexus and Onyx) and off-chain as well.

Variable APY

DeFi rates will go down over time. Though common investment products suffer the same variable APY, products like CDs do offer stability in the face of flux.

Unlike some competitors who adjust APY live, Linus only does this monthly.

Lower APY

USDC interest rates are typically lower than other cryptocurrencies.

Dharma, a similar product, leverages the same technique using Dai and offers nearly a 7% APY at present (skyrocketing to upwards of 20% during Black Thursday chaos, but then falling to 3% in the aftermath). 

Comparatively, putting GUSD directly on Compound gets you 8.6% (without the easy account, though).

USD only

At present, there are no options to deposit any other Fiat or crypto currencies. This tracks with their positioning towards the non-crypto userbase, but it does leave something to be desired for those like me (especially when Dharma allows for Dai deposits).

Compound only

Though they are actively pursuing diversification, Linus currently leverages Compound Finance singularly. This leaves a single point of failure open for DeFi protocol abuse – if Compound fails, Linus fails.

On top of that, by only using a single platform, Linus’s APY is essentially tracked to Compound. As they diversify, we’ll see this rate become a bit more stable.

No transparency

Compared to Compound’s public transactions and USDC’s audit trail, Linus does not offer any audits or transparency reports (similar to any bank and how they use your money).

Though on-chain transaction monitoring is in consideration, you must be able to reconcile that investment businesses set up without transparency could model ponzi schemes. 


Ultimately, I’m a fan of Linus. I spent some time talking with their founder Matthew Nemer and believe they have strong, intelligent leadership to guide them through a highly competitive DeFi landscape.

Check out Linus for yourself! [referral link]

Review: 4th International Blockchain Congress

On February 6, 2020, I attended the 4th International Blockchain Congress (Blockress) – a day’s long event comprising of keynotes, panels, discussion, and networking for blockchain, cryptocurrency, and everything in between hosted by the IDF and Microsoft.

What is Blockress?

Per their handout:

Global blockchain leaders, C-level executives, key influencers, founders, serial investors, and professional speakers from 5 continents and 20 countries will come together at the Congress in order to take part in keynotes, panel discussions, case studies, a blockchain workbench workshop, interactive Q&A, fireside chats, and lightning talks addressing intersections of blockchain with healthcare, insurance, AI, IOT, machine learning, fintech, energy, real estate, regulation, and policy.

Blockress, 2020

Event Logistics

Before I get into the specific talks, I’d like to take a moment to review the actual event operations.

Directions

To start, I had trouble actually finding where to go. There was little signage to point me in the right direction both outside of the convention hall and within it. Luckily, I’m very comfortable asking for directions and eventually found my way to the event.

Following some panels after lunch, we were directed to head to the second floor to breakout rooms, but had to stop for hall passes in order to access the second floor. No signage or people to guide us to the next area either.

Welcome Reception

By the time I arrived (9:30am) the event was 30m under way; not terribly late and certainly not alone, but there was no one at reception to greet us, sign us in, check tickets, provide handouts, or any other general welcome. Largely it seemed that they had left to go handle other business or watch the keynote. Not a huge issue for me, just an observation. Luckily there were plenty of refreshments waiting. 🙂

Time Management

Throughout the day, talks would continually go over their allotted time slots and bleed into the next. Between panel moderators and event staff, time management was lacking. Hopefully all scheduled speakers were able to present, but a few got squeezed for over half of their time slots.

Food

Lunch was provides as boxed sandwiches and cookies that were actually pretty good, easily accessible, and on time. They even had vegetarian options which is good to see.

Around 5pm, they brought in some pizzas and had additional refreshments for a wine reception. Domino’s is always a win in my book!

Conclusion

Ultimately, it was a very well-rounded, educational, and networking-worthy affair and I hope to attend next year. The event operations could use some ironing out – additional event staff, signage, and an iron grip on the schedule would easily elevate this conference to the next level.

On to the content!

Keynotes

The keynotes presentations were a great way to lead the event. Single-presenter lectures are always a fascinating way to investigate a topic deeply.

SEC Commissioner Hester Peirce: “Token Safe Harbor Proposal”

Unfortunately, I missed most of the first keynote by SEC Commissioner Hester Peirce when she introduced her 3-year safe harbor plan for token projects.

Her conclusion largely focused on the SEC’s commitment towards modernizing their rules to make room for cryptocurrency projects.

Founder of Ambisafe, Andrii Zamovsky: “Financial Inclusion through Fractionalization”

When he was introduced as helping create 100+ tokens launched on Ethereum, I couldn’t help but wonder if this guy just created a bunch of shitcoins. The reality couldn’t be further from the truth.

Andrii’s company Ambisafe licenses software to companies that need to tokenize their business. For example, one client needed to fractionalize real estate ownership on the blockchain. This feeds directly into his awesome talk on financial inclusion.

Specifically, he illustrated that there is a huge proportion of global population that cannot purchase an average US stock simply because their monthly earning does not come close enough to buy it, let alone any savings.

When you combine the fractionalization of digital assets to extreme decimal denominations (like owning 1/100,000 of a penny) with low cost smart contract substitutes for business operations (like lawyers or financial traders), you open up new digital markets to this low income population: financial inclusion through fractionalization!

Panels

Hosted by moderators, the panels were a great way to pick the minds of a few industry experts on common topics – even allowing the experts to debate topics among themselves.

Law & Regulation: New Asset Classes & Investment Products

Wulf Kaal led an engaging discussion on the intersection of regulation and new digital assets.

From the continued lack of progress with crypto ETF’s to the expectations around China’s upcoming digital CBDC (Dimension’s Katt Gu expects launch this year), the conversation kicked off a common theme for the day: crypto is moving far faster than regulation and fear of regulator enforcement pulls the wind out of many sails.

CFTC regulator Elizabeth Pendleton and crypto lawyer Justin Steffen agreed that when working on a new crypto project, it’s best to get regulators involved early to establish a relationship, rather than to have the first impression be an investigation.

DeFi, FinTech & Open Finance Panel: Decentralized by Design

Plagued by KYC, transparency, audit-ability, and liquidity issues, the DeFi conversation was a lively discussion led by Etana’s Adrian Kortez about where DeFi is today versus where it needs to be in order to engage with institutional investors.

Koine’s Phil Mochan deeply outlined seemingly built-in DeFi issues (outlined above) while Linus‘ Matthew Nemer and GRIP Investment‘s Tony Pettipiece spoke to the progress in these areas. Largely, they all agreed that DeFi projects need to work toward compliance with regulation. Particularly, they all expressed that the current KYC processes and lack of international digital identity are fundamental issues that can’t be solved by DeFi tech alone and require political solutions as well.

Digital Asset Exchanges 2.0: The Democratization of Trading, DEXs, OTCs & Custody Services

From Exchangily’s Dora Tang positioning her non-custodial decentralized exchange (DEX) within the bounds of the law to (ex) Kraken‘s Allan Stevo lively debate with ConveX‘s Chris Williams of the role of government in dampening the entrepreneurial spirit of blockchain developers, we were left with one of the most memorable moments of the conference, centered around the key question: can we govern ourselves?

The Convergence Revolution: AI, IoT, ML, Supply Chain, Healthcare, Energy, and Real Estate

The panel was missing some folks unfortunately, but Milliman‘s Julia Kong and Althash‘s Brett had enough experience between them to speak on everything from blockchain’s impact on healthcare to the tokenization of real estate.

Lightning Talks

As mentioned above, the lightning talks suffered greatly from lack of time management. Some presenters were unable to present and many were cut short from what was already an only 10m allotment. They would have been a great way to highlight individual projects or topics rapidly; better luck next year!

Presenters included Shehan Chendrasakera from CoinTracker, Wulf Kaal of Kaal Consulting, and Suji Yan from Dimension.

Fireside Chats

Staged as short, moderator-less discussions, the fireside chats were a low-key discussion of the panelists expertise and foresight.

Many thanks to Blockress‘ own Amy Kabaria, Nicole Kalajian, Aaron Winkler, and Julian Russo!

Breakouts

After the Fireside chat’s, the conference migrated to Microsoft’s offices for breakouts. At this point, many attendees took some time to network and take a moment to digest (and even nap!) – myself included.

I unfortunately missed the breakouts, but they did seem interesting:

  • Smart Contracts & Tokenomics 2020: The Evolution of Fundraising, ICOs, STOs & Stablecoins
  • Blockchain Workbench Workshop: Designing Blockchain Apps in 2020
  • Strategic Roundtable (invite only)

Wine Reception & Networking

Though I didn’t have the opportunity to stay for long, networking between bites of pizza was a great way to wind down the evening.

I had a great chance to catch up with Matthew Nemer on his new DeFi product Linus, charge my phone (live tweeting kills battery, who knew), and spare a moment for an interview with Amy Lee & Rich Napoli from BlockChain Radio before grabbing some slices of pizza on my way home.

TL;DR

In short, Blockress was a well rounded and diversely attended blockchain conference that touched on practically every facet of blockchain and cryptocurrency.

From SEC Commissioner Hester Peirce’s unveiling of her Token Safe Harbor proposal to Suji Yan’s demo of Maskbook, Blockress catered to all types.

Though the logistics of the event left something to be desired, I look forward to reviewing the conference next year (and you should, too!)

Steemit: How Delegated Proof of State can go wrong

Steemit is an interesting blockchain project that rewards its users with the cryptocurrency STEEM for publishing and curating content.

Without going into the details, Steem’s Delegated Proof of State consensus was essentially hijacked by a consortium of exchanges in order to replace the validators of the network and “take over“.

Check it out:

How Delegated Proof of Stake (DPoS) works

Standard Proof of Stake (PoS) consensus algorithm allows individual users to lock up their coins in order to validate transactions and earn transaction fees (compared to miners competing for hashrate).

More importantly, PoS allows for vote signaling in these types of systems as well. Literally, your money = your votes (roughly).

However, in standard PoS, you yourself have to signal these votes and manage your own stake.

In Delegated PoS, you have the option to allow someone else to manage your stake. They can leverage your coins to participate in staking, get rewards (and distribute to you), and vote on your behalf.

Now, combine DPoS with centralized exchanges holding your coins for you.

Whether you opt-in to have your coins participate in staking through the exchange or simply the fact that, when your coins are in an exchange, the exchange owns the coins and can do whatever they want, the exchanges consolidate a vast amount of DPoS staking and voting power.

And then, they might use it to take over a blockchain.

Vote with your wallet

The classic adage is here to stay: not your keys, not your crypto.

If you leave your DPoS coins and tokens in your exchange, not only do you leave yourself liable for their theft/loss/hack etc, you are also enabling the exchanges to vote on your behalf.

If you don’t want exchanges to have this type of buying power, withdraw your tokens to a personal wallet.

I recommend the Ledger.