How to Store Crypto Safely

Storing crypto is different from holding money in a bank. There is no "forgot password" button and no one to call if your coins are stolen. This beginner guide walks through your real options, the trade-offs, and concrete steps to protect what you own.

Who Holds the Keys? Exchange vs Self-Custody

Every crypto storage decision comes down to one question: who controls the private keys. A private key is the secret code that authorizes spending your coins. There's a well-known saying in crypto: "not your keys, not your coins."

There are two broad approaches:

Custodial (exchange) storage: A company like a centralized exchange holds the keys for you. You log in with a username and password, similar to online banking. Convenient, but you are trusting that company to stay solvent, secure, and honest.
Self-custody: You hold the private keys yourself in a wallet you control. No one can freeze or seize your funds, but no one can recover them for you either. Responsibility is 100% yours.

Factor	Exchange (custodial)	Self-custody
Who controls keys	The company	You
Password recovery	Possible (support)	Impossible — only your backup
Main risk	Exchange hack, freeze, or insolvency	You lose keys or get phished
Best for	Active trading, small amounts	Long-term holding, larger amounts

Example Maria keeps $200 of Bitcoin on an exchange because she trades weekly. As her holdings grow to $5,000, she moves most of it to her own wallet, keeping only a small trading balance on the exchange. This is a common and reasonable split.

Neither option is "safe" in an absolute sense — each just moves the risk around. Many people use both. To go deeper on wallet options, see our guide to crypto wallet types.

Hot Wallets vs Cold Wallets

Within self-custody, wallets are split by whether they connect to the internet.

Hot wallet: Software connected to the internet — a phone app, browser extension, or desktop program. Fast and free, but exposed to malware and phishing because it's online.
Cold wallet: Keys stored offline, most commonly on a hardware wallet (a small USB-like device). Transactions are signed on the device, so the key never touches your internet-connected computer.

	Hot wallet	Cold wallet
Connectivity	Online	Offline
Convenience	High	Lower (need the device)
Cost	Usually free	~$50–$150 for hardware
Good for	Small, everyday amounts	Savings you rarely touch

A practical mental model: treat a hot wallet like the cash in your pocket and a cold wallet like a safe at home. You wouldn't carry your life savings in your pocket, but you also wouldn't run to the safe to buy coffee. The same logic applies whether you hold Ethereum, a stablecoin, or an altcoin.

The Seed Phrase: Your Master Key

When you set up a self-custody wallet, it generates a seed phrase (also called a recovery phrase) — usually 12 or 24 random words. This phrase is your wallet. Anyone with those words can take everything; anyone without them (including you) cannot recover the funds.

How to back up a seed phrase properly:

Write it on paper by hand in the exact order shown. Double-check every word.
Store at least two copies in separate secure locations (e.g., a home safe and a trusted relative's safe) to survive fire, flood, or loss.
Never type it into a website, photo, cloud drive, email, or password manager. Online copies are the most common way people get drained.
For larger amounts, consider a fireproof metal backup plate that survives heat and water.

Example Tom screenshots his 12 words "just in case" and saves them to his phone's cloud backup. Months later his cloud account is breached, and the attacker empties his wallet within minutes. A handwritten copy in a drawer would have stayed invisible to the hacker.

One more rule: a legitimate wallet or support agent will never ask for your seed phrase. Any request for it — by chat, email, pop-up, or phone — is a scam. Learn the warning signs in our guide on how to avoid crypto scams.

Choosing and Using a Hardware Wallet

For meaningful amounts held long term, a hardware wallet is the standard recommendation. A few practical tips:

Buy new, directly from the maker or an authorized reseller. Never use a second-hand device or one with a pre-printed seed phrase — that's a known theft trap.
Generate the seed yourself on first setup. The device should create fresh words that no one else has seen.
Set a strong PIN on the device so a thief who physically takes it still can't open it.
Do a small test transfer first. Send a tiny amount in, then confirm you can send it back out before moving large sums.

Hardware wallets reduce risk but don't make you invincible. You can still be tricked into approving a malicious transaction, so always verify addresses and amounts on the device screen, not just on your computer.

A Simple, Balanced Setup for Beginners

You don't need a complex system on day one. A reasonable starting routine:

Keep only small, actively-used amounts on a reputable exchange or hot wallet.
Move longer-term holdings to a hardware (cold) wallet as your balance grows.
Back up your seed phrase on paper or metal, in two locations, offline.
Enable two-factor authentication on any exchange account — ideally an authenticator app, not SMS.
Review your setup periodically and as your holdings change.

Honest reality check: no method is 100% safe. The goal is to reduce the chances of catastrophic, unrecoverable loss to a level you're comfortable with. Storage is just one piece of staying safe — for the bigger picture, see our checklist of security best practices, and if you're just getting started, our guide on how to start with crypto covers the basics. This article is educational information, not financial advice.

NOONOO TRADING — join the free chat and watch live trading together.

Join free chat →

📈 Sign up on OKX for a trading fee discount

Get OKX fee discount →