When you connect your Leather wallet to a decentralized app (dApp), you're granting one-time access to a limited set of information — usually your wallet address. That connection does not give the app full access to your wallet or funds.

Unlike Web2 apps where logging in gives the app persistent control over your session or account, crypto wallets like Leather use a stateless model:

• Apps must request transaction approval every time

• Apps must request message signing every time

• Your wallet retains full custody and must confirm any action

Apps connected to Leather only access the information described in getAddresses, such as:

• Your account addresses

• The current selected network

• Optional metadata like the wallet name

This connection is for convenience only — it does not persist privileges like a traditional OAuth token or password session would.