# Hinkal Private Payments The Request Network SDK supports Hinkal Private Payments using ERC-20 tokens. Hinkal is a middleware and suite of smart contracts on EVM-compatible chains that leverage zero-knowledge proofs and private addresses to facilitate compliant and private transactions. Each public address has exactly one Hinkal private address. The `@requestnetwork/payment-processor` package provides functions to: * **Pay a request from a Hinkal private address to a public address:** such that the payment sender's public address never appears on-chain. * **Deposit to a Hinkal private address from a public address**: such that the payment recipient's public address never appears on-chain. Callers can choose to deposit to their own private address or someone else's private address. {% hint style="info" %} Paying a request where the payment recipient address is a Hinkal private address is not supported because the Request Network payment proxy smart contracts can only send funds to public addresses. Consider using [declarative-request](https://docs.request.network/advanced/request-network-sdk/sdk-guides/payment/declarative-request "mention") instead. {% endhint %} ## Benefits * **Privacy**: Obfuscates payer address when paying a request. * **Compliance**: Ensures transactions adhere to regulatory requirements. See [Hinkal Compliance](https://hinkal-team.gitbook.io/hinkal/hinkal-wallet/compliance) for details ## Supported Chains See [Hinkal Supported Chains](https://hinkal-team.gitbook.io/hinkal/ecosystem/supported-chains) for a list of chains on which Hinkal Private Payments are supported. ## Installation To use Hinkal Private Payments, install the necessary package: ```bash npm install @requestnetwork/payment-processor ``` ## Usage ### **Pay a request from a Hinkal private address** To pay a request from a Hinkal private address to a public address, where only the payment sender's address is obfuscated, use the \``` payErc20FeeProxyRequestFromHinkalShieldedAddress()` `` function. Ensure the payment sender's Hinkal private address has a positive balance using [#deposit-to-a-hinkal-private-address](#deposit-to-a-hinkal-private-address "mention") {% hint style="warning" %} Strongly consider using [encryption-and-decryption](https://docs.request.network/advanced/request-network-sdk/sdk-guides/encryption-and-decryption "mention") to keep the request contents private, including the payer and payee identity addresses, when paying requests from a Hinkal private address. Revealing the payer and payee identity addresses increases the likelihood of un-shielding the payment sender's address via on-chain analysis. {% endhint %} ```typescript import { payErc20FeeProxyRequestFromHinkalShieldedAddress, } from '@requestnetwork/payment-processor'; // Instantiation of `RequestNetwork` and `Signer` omitted for brevity const request = await requestClient.fromRequestId('insert request id'); const requestData = request.getData(); const relayerTx = await payErc20FeeProxyRequestFromHinkalShieldedAddress( requestData, signer, ); ``` {% hint style="info" %} See [quickstart-browser](https://docs.request.network/advanced/request-network-sdk/get-started/quickstart-browser "mention") for how to instantiate a `RequestNetwork` and `Signer` {% endhint %} ### Deposit to a Hinkal private address To deposit funds to a Hinkal private address from a public address, where only the payment recipient's address is obfuscated, use the `sendToHinkalShieldedAddressFromPublic()` function. * Deposit to own Hinkal shielded address: omit the `recipientInfo` argument * Deposit to someone else's Hinkal shielded address: set `recipientInfo` to the shielded address of the payment recipient. {% hint style="info" %} Hinkal private addresses must be shared out-of-band. This SDK doesn't offer functions for sharing Hinkal private addresses. {% endhint %} {% code overflow="wrap" %} ```typescript import { sendToHinkalShieldedAddressFromPublic, } from '@requestnetwork/payment-processor'; // Instantiation of `Signer` omitted for brevity const recipientShieldedAddress = '142590100039484718476239190022599206250779986428210948946438848754146776167,0x096d6d5d8b2292aa52e57123a58fc4d5f3d66171acd895f22ce1a5b16ac51b9e,0xc025ccc6ef46399da52763a866a3a10d2eade509af27eb8411c5d251eb8cd34d' const tx = await sendToHinkalShieldedAddressFromPublic({ signerOrProvider: paymentSender, tokenAddress: '0x833589fcd6edb6e08f4c7c32d4f71b54bda02913', // USDC on Base amount: '1000000', // 1 USDC recipientInfo: recipientShieldedAddress, // omit to deposit to own Hinkal shielded address }) ``` {% endcode %} {% hint style="info" %} See [quickstart-browser](https://docs.request.network/advanced/request-network-sdk/get-started/quickstart-browser "mention") for how to instantiate a `Signer` {% endhint %} ## **Content Security Policy** The Hinkal SDK depends on [snarkjs](https://www.npmjs.com/package/snarkjs), a powerful library that enables local zero-knowledge proving in browser and Node.js environments. Snarkjs leverages [WebAssembly](https://webassembly.org/) to perform complex cryptographic computations efficiently. As a result, any client-side application integrating the Hinkal SDK must adjust its **Content-Security-Policy** to allow the `wasm-unsafe-eval` directive under the `script-src` setting. This configuration ensures that the cryptographic processes can execute properly. See [Hinkal SDK Integration](https://hinkal-team.gitbook.io/hinkal/developers/sdk-integration) for more details. ## Details For more details about Hinkal Private Payments, refer to [Pull Request #1482](https://github.com/RequestNetwork/requestNetwork/pull/1482) on GitHub.