Custodial, hot, cold, hardware, multisig. Most beginners pick a wallet based on what they saw in an ad. Here is how to pick based on how much you actually have to protect.
The wallet conversation gets weirdly tribal. Hardware-wallet fans treat software wallets as reckless; software-wallet people call hardware wallets unnecessary theater. Both are wrong — the right wallet depends entirely on how much Bitcoin you are protecting and how you expect to use it.
This article does two things: (1) walks through the four wallet categories in plain English, and (2) gives you a simple rule for picking one based on your situation.
When you buy Bitcoin on Coinbase or Kraken and leave it there, you are using a custodial wallet. The exchange holds the keys. You have a balance in their database. Convenient, integrated with the buy experience, but in the rare bad-day scenario (exchange hack, bankruptcy, regulatory freeze), you are in line with every other customer waiting for a resolution that may or may not come.
Best for: small amounts you actively trade or are about to move. Treat it like a checking account, not a vault.
Apps like BlueWallet, Muun, Sparrow, and Electrum generate keys on your device and store them there. You now own the keys. The risk surface is your phone or computer — if either is compromised by malware, so is the wallet.
Best for: up to about one month of living expenses in Bitcoin. Actively used, held on a device you keep updated, with a strong device passcode.
A small USB-sized device — Trezor, Ledger, Coldcard, BitBox — that generates and stores keys in a chip that never connects to the internet. When you want to send Bitcoin, the transaction is signed on the device, then relayed through a companion app.
Even if your computer is infected with the worst malware in the world, an attacker cannot steal your Bitcoin — the keys never leave the device.
Best for: any meaningful amount (rough rule: anything above one month of expenses). $60–$150 one-time cost. If you are serious about owning Bitcoin long-term, this is not optional.
A multisig wallet requires multiple signatures (say, 2 of 3 hardware wallets in different locations) to send Bitcoin. This is the serious-money tier — used by treasuries, families with six- or seven-figure Bitcoin holdings, and anyone who has specifically decided that a single hardware wallet is too much of a single point of failure.
Best for: holdings where the loss scenario is life-changing. Requires real setup effort and a recovery plan. Services like Unchained and Casa offer guided multisig for non-technical users.
Here is the unglamorous, bulletproof guideline we give new Bitcoin holders:
Every wallet you ever use will generate a 12- or 24-word seed phrase the first time it runs. That phrase IS your Bitcoin. Anyone with it can restore the wallet on any device and empty it. Anyone without it who loses the hardware is permanently locked out.
Rules: pen on paper, two copies in two physical locations. NEVER take a screenshot. NEVER save in a password manager or cloud storage. NEVER email it to yourself.
Before you send a real amount of Bitcoin to any new wallet, verify that you can restore that wallet from the seed phrase. Most wallet apps have a ‘verify seed phrase’ flow. Better: wipe the device and restore from your written seed. If that works, fund it. If it does not, you just avoided the worst possible outcome — a wallet you own on paper but cannot actually access.
Some malware silently replaces Bitcoin addresses on your clipboard with attacker-controlled addresses. Always check the first four and last four characters of the receive address on your wallet device against what the sending app shows. Two displays must match. This one habit eliminates a real class of attacks.
Lightning wallets (Muun, Phoenix, Wallet of Satoshi) are fantastic for small, fast payments but have a different security model — they are not where you park long-term savings.
Paper wallets (private keys printed on a piece of paper) are a 2013 idea that has aged poorly. Hardware wallets are cheap enough now that there is no practical reason to use a paper wallet, and the human-error failure modes are brutal.
Brain wallets (memorizing a seed phrase) have caused more losses than thefts. Human memory is not a backup system. Do not do this.
The wallet is a tool. The seed phrase is the actual asset. 99% of Bitcoin loss stories we have tracked over the past five years come down to something that happened to a seed phrase: it was stored somewhere insecure, it was never backed up, it was typed into a phishing site, or it was lost in a move.
Pick a wallet that matches the amount you are protecting. Then spend most of your energy protecting the seed phrase. Everything else is detail.