It the service knows who you are it's not very important to give them a new bolt12 invoice. That's doubly true when they have a personal relationship with you, eg my consulting clients.
Discussion
> It the service knows who you are
Good clarifying words
I was particularly thinking of robosats, which is a service that (1) doesn't know who I am (2) they recommend (and facilitate through their UI) creating a new account for every transaction
On a service like that, I think it is also wise to create a new bolt12 for every transaction (and thus every account), because otherwise they can correlate two different payments and build a profile on you that way
Mining pools should not know who you are. 👀
Sadly in lightning if you’re doing repeated payments, even with a fresh BOLT 12 each time with blinded paths, in practice you can probably group most outbound payments :/
Dang, ok
how? what info lets you group them?
Not thinking of one single thing, but there’s plenty of ways fingerprinting different users is likely possible. If you have 10K withdraws per user you can probably cluster the blinded paths many of them are using, add on top features which may identify specific clients and you can probably do pretty well. Obv you can’t tell the difference been any two invoices for different Phoenix (or other wallet with a fixed LSP (set)) wallets, but across wallets I’m skeptical it’s robustly private.