If you own or are thinking about owning cryptocurrency, you will quickly encounter the concept of a "wallet." The word is somewhat misleading. A crypto wallet does not actually store your coins the way a leather wallet holds cash. What it stores — and protects — are the cryptographic keys that prove you own funds recorded on a blockchain. Understanding that distinction is the foundation of understanding how crypto wallets work.
How a Crypto Wallet Actually Works
Every crypto wallet contains two mathematically linked pieces of data: a public key and a private key. Your public key (or the address derived from it) is like a bank account number — you share it with others so they can send you funds. Your private key is the secret that proves ownership and authorises outgoing transactions. Anyone who holds your private key effectively controls your funds.
When you send Bitcoin or any other cryptocurrency, your wallet software uses your private key to sign the transaction cryptographically. The network verifies that signature without ever seeing the private key itself. The coins never actually travel anywhere — the blockchain simply updates its record of who owns what. Your wallet is, in essence, a key manager.
Custodial vs. Non-Custodial Wallets
This is arguably the most important distinction in the wallet world, because it determines who actually controls your private keys.
A custodial wallet is one where a third party — typically a centralised exchange like Coinbase, Binance, or Kraken — holds your private keys on your behalf. You log in with a username and password, and the platform manages the cryptographic layer for you. The experience feels similar to online banking. The upside is convenience and a familiar safety net: if you forget your password, customer support can help you recover access. The downside is counterparty risk. If the exchange is hacked, goes insolvent, or freezes withdrawals, your access to funds depends entirely on that company's actions. The collapses of several major platforms in recent years demonstrated this risk in stark terms.
A non-custodial wallet (also called self-custody) means you hold your own private keys. No company stands between you and your funds. Software wallets like MetaMask or Trust Wallet are popular non-custodial options for Ethereum and other tokens. When you first set one up, you are given a seed phrase — typically 12 or 24 random words — which is a human-readable backup of your private key. Lose that phrase and lose access permanently; there is no customer service to call. The responsibility is entirely yours.
The crypto community often summarises this with the phrase: "Not your keys, not your coins."
Hot Wallets vs. Cold Wallets
Separately from the custodial question, wallets are also categorised by whether they are connected to the internet.
A hot wallet is any wallet that is online or runs on an internet-connected device. This includes exchange accounts, browser extension wallets, and mobile apps. Hot wallets are convenient for frequent transactions — you can send Solana or swap tokens in seconds. The trade-off is exposure: a device that is online is a device that can, in principle, be accessed remotely by malicious actors.
A cold wallet (or cold storage) keeps private keys on a device or medium that is never connected to the internet. The most common form is a hardware wallet — a small USB-like device, such as those made by Ledger or Trezor, that stores keys in a secure chip. When you want to make a transaction, you connect the device, confirm the details physically on the device itself, and sign the transaction without the private key ever touching an internet-connected environment. This makes remote theft extremely difficult.
A more basic form of cold storage is a paper wallet — literally printing or writing down your keys or seed phrase and storing it physically. While immune to hacking, paper is vulnerable to fire, water, and loss.
Mixing the Categories
These two axes — custodial/non-custodial and hot/cold — can overlap in different combinations. An exchange account is custodial and hot. A hardware wallet you manage yourself is non-custodial and cold. Some people use non-custodial software wallets on their phone (non-custodial and hot) for small, everyday amounts, while keeping the bulk of their holdings on a hardware device (non-custodial and cold). This layered approach is common among people who interact with crypto regularly but want to limit their exposure.
What to Consider When Choosing
There is no universally correct answer — the right setup depends on how much you hold, how often you transact, and how comfortable you are managing security yourself.
If you rarely touch crypto and primarily hold it long-term, cold non-custodial storage is widely considered the most secure approach. If you are actively trading or using decentralised applications, a hot non-custodial wallet offers the necessary flexibility. If you are new to crypto and the idea of managing your own keys feels overwhelming, a reputable custodial platform lowers the technical barrier — though it introduces its own risks.
Whatever you choose, a few practices are universally recommended: never share your private key or seed phrase with anyone, store your seed phrase backup somewhere physically secure and offline, and be wary of phishing attempts that mimic legitimate wallet interfaces.
The mechanics of wallets can seem abstract at first, but the core idea is simple: in crypto, controlling your keys means controlling your assets. Every other detail flows from that.