Bitcoin wallets explained: hot, cold and how to choose one
On this page
- What does a Bitcoin wallet actually store?
- Custodial or non-custodial: who holds the keys?
- Hot wallets and cold storage: what is the difference?
- Wallet types at a glance
- How do hardware wallets work?
- Multisig in one paragraph
- What is a seed phrase and what should you never do with it?
- How do people actually lose bitcoin?
- How should you choose a Bitcoin wallet?
- Frequently asked questions
Ask a newcomer what a Bitcoin wallet does and they will describe a container with coins inside. A fair guess, and wrong in a useful way: no bitcoin is ever stored in a wallet. This is Bitcoin wallets explained from the ground up: what a wallet actually holds, how hot and cold storage differ, why "not your keys, not your coins" became a proverb, and the mundane ways people lose life-changing sums. By the end you should be able to pick a setup that matches how you use bitcoin.
What does a Bitcoin wallet actually store?
A Bitcoin wallet stores keys, not coins. Your bitcoin exists only as records on the blockchain, held as unspent transaction outputs. The wallet keeps the private key that lets you spend those records, and derives the public address other people pay you at. Protect the key and you protect the money.
Under the hood, a wallet is a pair of cryptographic keys. The private key is an enormous random number, drawn from a range that tops out at a 78-digit figure: nearly as many possible keys as atoms in the known universe. Elliptic curve mathematics turns that number into a public key, which is hashed into the address you hand out for payment. The maths runs one way only, so an address never reveals its key. The coins themselves sit on the blockchain as unspent transaction outputs (UTXOs), covered in how Bitcoin works, a design unchanged since Satoshi Nakamoto released the first software in 2009.
Addresses carry built-in error protection. The final characters are a checksum derived by hashing the rest, and wallet software verifies it before sending. Mistype a character and the payment is refused rather than swallowed; the odds of a typo still yielding a valid address are below one in four million. The format even bans lookalikes such as a lowercase L and a capital I.
You can, however, construct a valid address that no key has ever matched. The famous example is 1BitcoinEaterAddressDontSend59kuE, typed out as a joke with a working checksum bolted on. Anything sent there is gone for good, yet it has collected more than 13 bitcoin over the years. Key generation is also fast enough to mass-produce wallets and keep the ones you like: for the book I generated several thousand key pairs and kept two whose addresses begin with my first name, a personalised number plate in address form.
Everything else in this article flows from three blunt rules. Never let your private key become known. Anyone who learns it owns your bitcoin from that moment. And if you do not hold the key, you do not really hold the coins.
Custodial or non-custodial: who holds the keys?
A custodial wallet means a company, usually an exchange, holds the private keys and owes you the balance. A non-custodial wallet means you hold the keys yourself. Custody is convenient but adds counterparty risk; self-custody removes that risk but makes you solely responsible. Every wallet decision flows from this split.
Most people's first bitcoin sits in a custodial wallet, because that is what an exchange account is. Buy on a large exchange such as Coinbase and the balance on your screen is a row in the company's database. The exchange generated your deposit address, keeps its private key, and sweeps incoming coins into big communal wallets it controls; withdrawals are paid out of that pool.
Custody has honest advantages. You cannot lose keys you never held, a forgotten password gets reset, and the coins sit beside the order book, sellable in seconds. Plenty of people have neither the time nor the appetite to manage keys competently, and for them a reputable exchange beats a botched attempt at self-custody. I held large sums on exchanges for years for exactly these reasons.
The catch is that your bitcoin becomes a promise. If the exchange loses its keys, leaks them, or simply stops honouring withdrawals, that promise becomes a place in a bankruptcy queue. I kept roughly one bitcoin on FTX, then one of the world's biggest exchanges, until the day it collapsed in November 2022. Earlier that year my balance there had at times been worth several million dollars, so the tuition was cheap. Hence the proverb the community repeats until everyone is sick of it: not your keys, not your coins.
Hot wallets and cold storage: what is the difference?
A hot wallet keeps its private key on an internet-connected device, so it can sign transactions instantly. Cold storage keeps the key entirely offline, where remote attackers cannot reach it. Hot is for convenience and small balances; cold is for security and savings. Most serious holders end up using both.
Exchanges themselves show the pattern. A busy platform keeps a working float in hot wallets, where software signs customer withdrawals automatically around the clock. That float is the most stealable money in the building, so the bulk of customer coins sits in cold storage: keys offline, spendable only through deliberate, human-supervised steps.
The same thinking scales down to one person. A wallet app on your phone is hot: superb for paying people, exposed to whatever malware or fake app your phone meets. Cold storage is any arrangement where the key never touches a networked device. The book's deliberately extreme recipe: buy a laptop, never connect it to the internet, generate a wallet from a USB stick, write the key on paper, destroy the laptop. The result is an address that can receive any amount, guarded by a key that has never existed online. The price is friction, since spending eventually means reuniting that key with a signing device. Every wallet choice trades along this line between convenient and safe.
Wallet types at a glance
| Wallet type | Custody | Convenience | Risk profile |
|---|---|---|---|
| Exchange account | Custodial: the company holds the keys | Highest: log in, trade, reset forgotten passwords | Counterparty risk: hacks, frozen withdrawals, collapse |
| Mobile or desktop app | Non-custodial | High: spend from your pocket | Malware and device loss; suited to small balances |
| Hardware wallet | Non-custodial | Medium: plug in and confirm on the device | Loss recoverable via seed; watch for supply-chain tampering |
| Paper or steel key (deep cold) | Non-custodial | Low: slow, deliberate spending | Fire, water and discovery; a single copy is a single point of failure |
| Multisig (m of n keys) | Non-custodial, threshold of several keys | Lowest: multiple keys per spend | Strongest against theft and coercion; complexity is the main hazard |
If the table has one lesson, it is that no row wins every column. You are choosing which risks you would rather carry.
How do hardware wallets work?
A hardware wallet is a small dedicated device that generates your private key and never lets it leave. Your computer builds each transaction and passes it over; the device signs it internally and returns only the signature. Even a malware-riddled computer never sees the key itself, only the finished signature.
Trezor (2013) and Ledger (2014) established the template most rivals follow. The key is created on the device and lives in a dedicated secure chip, never copied to your computer. To spend, the wallet software assembles an unsigned transaction and sends it down the cable; the device shows the amount and destination on its own screen, signs internally, and returns the signature alone. That screen is the point: a compromised computer can lie about what you are signing, but malware cannot rewrite the device's display.
Two warnings bear repeating. Buy new, directly from the manufacturer: a second-hand or third-party device may already have had its keys harvested. And hardware firms can still fail you in ways that never touch the device. In July 2020, attackers copied Ledger's customer database, exposing names, home addresses, emails and phone numbers for up to a million customers. No keys leaked, but the breach fuelled years of phishing, and some customers received threats of violence at home. Hand over as little personal information as a vendor will allow.
A hardware wallet is not a backup in itself. The seed phrase recorded at setup is what survives the device being lost, stolen or dropped in the sea; restore it onto a replacement and your bitcoin reappears. Self-custody cuts both ways: strong security, and no support line when a mistake is yours.
Multisig in one paragraph
A multisig (multi-signature) wallet splits control across several unique keys and requires a threshold of them, commonly two of three or three of five, to sign any transaction; the m-of-n scheme has been standard in Bitcoin since BIP 11. Scatter the keys well, say home, office, phone, a bank vault and a site abroad, and one stolen key steals nothing. Even the notorious "five dollar wrench attack" fails: a thug cannot take keys you are not carrying, and reaching the threshold means marching your attacker through office security, a bank or an airport. The spread buys redundancy too, since a house fire or a lost phone costs one key while the survivors can still move the coins, something a single-key setup never forgives. The cost is that spending becomes slower and more ceremonial, which is why multisig suits long-term savings rather than lunch money, and why firms such as Casa sell managed multisig as a subscription.
What is a seed phrase and what should you never do with it?
A seed phrase is your private key encoded as 12 or 24 ordinary words drawn from a fixed list of 2,048. Anyone who reads those words controls your bitcoin. Never type them into a website, never store them in cloud notes or photos, and never share them with anyone who asks.
The standard comes from BIP39, a Bitcoin improvement proposal adopted in 2013. Instead of asking humans to copy a 52-character, case-sensitive key perfectly, it encodes the underlying number as words from a fixed list. Twelve words already give around 5.5 duodecillion combinations, a 39-digit number, and 24 words push far beyond that, so the convenience costs nothing in security. Everyday words also survive shaky handwriting far better than jumbled characters where one wrong capital ruins everything.
Treat the phrase as the master copy of your money, because that is what it is. Write it down and store it safely; serious savers stamp the words into steel that will outlive a house fire. The logical extreme from the book: generate the wallet offline, stamp the phrase into steel, bury it on your property. Cryptographically secure, physically hidden, effectively unseizable. Back the phrase up even when you use a hardware wallet, since the device is replaceable and the phrase is not.
The never list is short and absolute. Never type a seed phrase into a website, however convincing: harvesting phrases is the entire business model of crypto phishing. Never photograph it, email it to yourself or keep it in cloud notes. Never read it out to "support staff"; no legitimate company will ask. And treat a brain wallet, a phrase kept only in your head, as a novelty: I keep one myself, holding under a hundred dollars and backed up elsewhere, because memory is the least reliable storage medium in this article.
How do people actually lose bitcoin?
Mostly through mundane failures rather than exotic hacks. Exchanges collapse or freeze withdrawals, single copies of keys burn in house fires, seed phrases get typed into phishing sites, and second-hand hardware arrives pre-compromised. Almost every loss traces back to one person or company knowing a key they should not, or nobody knowing it at all.
The chapter's examples, and Bitcoin's wider history, sort into a few repeating patterns:
- Custodian failure. Exchanges have been hacked, frozen and bankrupted. My FTX loss is one story among thousands; repayment, when it comes, takes years and arrives partial.
- The only key is gone. A single-key wallet has no plan B: house fires, dead drives and phones in lakes have erased fortunes, and the half-remembered brain wallet belongs here too.
- The seed leaks. Typed into fake wallet sites, photographed beside a laptop, or read out to fake support agents. The Ledger breach showed how leaked contact details let scammers aim precisely.
- Tampered hardware. Second-hand or unofficially sourced devices, shipped with keys an attacker already held.
- Unspendable destinations. The checksum stops typos, but not pasting the wrong valid address, and it did not stop 13 bitcoin drifting into the eater address.
Notice what is missing: nobody on that list had their key cracked. The cryptography holds. People, and the companies they trust, are the parts that fail.
How should you choose a Bitcoin wallet?
Match the wallet to the job. Money you plan to spend belongs in a small hot wallet on your phone. Money you plan to keep belongs offline, on a hardware wallet or in cold storage, backed by a seed phrase. Large long-term holdings justify the extra ceremony of multisig.
For day-to-day spending, use a well-reviewed non-custodial app holding what you would carry as cash in a leather wallet. Losing your phone should sting, not ruin you. For saving, use a hardware wallet bought new from the manufacturer, its seed phrase written or stamped and stored somewhere fireproof. A first ever purchase can start custodial on an exchange; withdraw to your own keys once losing the balance would hurt. For large, long-horizon holdings, consider multisig with keys in separate locations.
No single product is "best", and this site deliberately avoids crowning one. Bitcoin.org maintains a neutral wallet chooser that filters options by platform and feature, plus a plain-language security checklist worth reading before you move serious money. The rest of our guide series fills in the surrounding context whenever you are ready.
Frequently asked questions
Can someone guess my private key?
No, not in practice. A private key is a number chosen from a range with roughly as many possibilities as there are atoms in the observable universe. Every computer on Earth guessing together for millions of years would not make a dent. Keys are lost through human error, not brute force.
What happens if my hardware wallet is lost or broken?
Nothing happens to your bitcoin, which lives on the blockchain rather than on the device. Buy a replacement, or use any compatible wallet software, and restore from the seed phrase you wrote down at setup. This is exactly why the seed phrase backup matters more than the gadget itself.
Is it safe to leave bitcoin on an exchange?
Safe enough for small balances and short periods, but you are trusting a company rather than holding bitcoin. Exchanges have been hacked, have frozen withdrawals and have gone bankrupt, taking customer coins with them. I lost around one bitcoin in the FTX collapse. Withdraw amounts you would mind losing.
Do I need more than one wallet?
Most people end up with two: a hot wallet holding pocket money for spending, and a cold or hardware wallet holding savings. There is no limit and no cost to creating wallets, so separating funds by purpose is cheap insurance. One compromised phone should never expose everything you own.