# TokensFund

Category: exchanges · Aggregators
Grade: C
Highlights: AGGREGATOR, NO-KYC, NO-ACCOUNT, XMR, ZEC, MULTICHAIN, NEW
Web: https://tokensfund.xyz
Contact: X: https://x.com/tokensfund
Last verified: 2026-06-26
Also listed at: KYCnot.me, Monerica

> Cross-chain swap aggregator routing through THORChain, Chainflip, NEAR Intents, Changee and CCE — no account, no email, no KYC, 15+ assets including XMR and ZEC. Flat 2% fee.

## Review

**What it is.** Cross-chain swap aggregator that compares live quotes from five routing protocols — THORChain, Chainflip, NEAR Intents, Changee, and CCE — and routes each trade through whichever quote wins. One-time deposit address per swap, mandatory refund address, no account, no email, no KYC. 15+ assets across BTC, ETH, XMR, ZEC, SOL, XRP, DOGE, LTC, TON, NEAR, USDC, and USDT (Ethereum + Tron).

**Fees.** The Terms of Service disclose a flat 2% fee, already baked into the quote shown to you. Network gas and the underlying protocol's spread are separate. 2% is on the high side for an aggregator — competitors with similar protocol coverage typically charge 0.5%-1% — but it is at least disclosed up front.

**Peer position.** Listed at kycnot.me (community-contributed, 8/10) and monerica.com.

**Custody note.** The homepage leads with 'non-custodial.' The underlying protocols (THORChain, Chainflip) genuinely don't take custody — they're atomic-swap chains — but TokensFund itself sits on top as the price-comparison and deposit-address-generation layer. Funds move through atomic-swap rails, but the aggregator is still a layer between you and them.

**Privacy-policy placeholder finding.** The published Privacy Policy at `/privacy` (last updated 2026-06-25) carries unfilled template residue: an unedited bracket `[e.Vercel]` where the hosting provider name belongs, an `[any analytics or error-monitoring provider]` bracket, and a stray template-instruction sentence — *"If you add analytics, advertising, or other non-essential cookies, disclose them here and provide a consent mechanism where required by law"* — that was meant for the operator drafting the page, not the reader. The policy also contradicts itself on analytics (*"We do use analytics; if we do…"*). This isn't a scam signal on its own, but it's a sign the operator pushed a privacy policy without finishing it — readers who care about which hosting platform and which analytics they're transacting through cannot answer those questions from the current text.

**Tenure note — why C.** New on xmr.club, zero directory tenure. The legal surface (ToS, privacy, FAQ) is all dated 2026-06-25 — published the day before the operator self-submitted. Exchange-class services start at C here regardless of how clean the publishable surface looks, because the loss-asymmetry is high if a no-KYC swap UI ever flips to shotgun-KYC mid-trade. Path to B is six clean months without that flip, a cleaned-up privacy policy without placeholder brackets, and at least one independent peer prose read confirming the protocol-routing claims.

Source: https://xmr.club/exchanges/tokensfund