Day 4 — Wallets, keys, and your money's actual location
Here is the question most people get wrong on their first day in crypto. When you own one bitcoin, where is it?
The intuitive answer is "in my wallet." That answer is almost entirely wrong. Your bitcoin is not in your wallet. It is not in your phone. It is not in your hardware device. It is not stored in any container you can hold or even point to. Your bitcoin is sitting on the blockchain, in a public address, and the only thing your wallet actually holds is the private key that proves you have the right to spend what is at that address.
This sounds like a technicality. It isn't. It is the most important practical concept in crypto, because everything else about safety, custody, and risk flows from it.
Let me explain the architecture.
Every Bitcoin (and Ethereum, and Solana) address has two halves: a public key and a private key. The public key is your address. It's like an account number. You can share it with anyone. People can send you bitcoin by addressing it to that public key. The blockchain shows the world that this address holds, say, 0.5 BTC.
The private key is the secret that controls that address. Whoever has the private key can sign transactions that move the bitcoin sitting there. That is what "owning" bitcoin actually means. Not that the asset is in your possession, but that you alone hold the cryptographic key that can authorize moving it.
This is why the phrase "not your keys, not your coins" is the single most-repeated piece of advice in this entire industry. If you keep your bitcoin on Coinbase, you do not have the keys. Coinbase has the keys. You have an account record that says Coinbase owes you some bitcoin. If Coinbase fails, gets hacked, or freezes your account, your "bitcoin" disappears with it, exactly the way customer funds disappeared in the 2014 Mt. Gox collapse and the 2022 FTX collapse. The blockchain itself was fine. The companies holding the keys for everyone else were not.
That tradeoff (custody vs. self-custody) is the most important call you will make as a participant. There are basically three postures.
Custodial. An exchange or a service holds the keys for you. Coinbase, Binance, Kraken, the new wave of crypto-native banks. You log in with a username and password. The experience feels like online banking. The benefits are real: easy recovery if you forget your password, customer service, fiat on-ramps, fraud protection on the exchange side. The cost is that you are trusting the custodian. If they fail, you can lose everything.
Software self-custody. A piece of software on your phone or browser holds your keys. MetaMask, Phantom, Trust Wallet, Coinbase Wallet (the non-custodial version, confusingly named). You control the keys directly. The exchange has no claim on your assets. If you lose your phone or your laptop, you can restore the wallet on a new device using a seed phrase (typically 12 or 24 randomly generated words that encode the keys). The risk shifts to you: lose the seed phrase, lose the funds. Get phished into giving away the seed phrase, lose the funds. There is no customer service.
Hardware self-custody. A physical device (Ledger, Trezor, GridPlus, Coldcard) stores the keys in a chip that never connects to the internet. You sign transactions by physically pressing a button on the device. Even if your computer is compromised, the keys cannot be extracted. This is the gold standard for serious holdings. The cost is that the experience is slightly slower and the device costs about $80 to $200.
For larger amounts, professional users add another layer: multisig. A multisig wallet requires multiple keys (often 2-of-3 or 3-of-5) to authorize any transaction. The keys can be held by different people, on different devices, in different locations. Even if one key is compromised, the funds are still safe. This is how institutions, family offices, and serious individual holders structure large balances.
A practical heuristic for thinking about which posture you should be in: the amount you would not be willing to lose to a single point of failure is the amount that should be in self-custody. For most people just starting, that means keep small "operating" balances on a reputable exchange and move anything you wouldn't tolerate losing into a hardware wallet. As your stack grows, the right structure escalates: software wallet, hardware wallet, multisig, eventually professional custody at scale.
Two more terms worth knowing before tomorrow.
A seed phrase is the human-readable version of your private key. Twelve or twenty-four words, generated randomly, that encode everything the wallet needs to know to recreate your keys on any compatible device. Write it down. On paper. Never in a screenshot. Never in a cloud document. Never in your email. The single biggest source of crypto loss for retail users is people storing their seed phrase digitally and getting phished or compromised.
A hot wallet is any wallet whose keys touch an internet-connected device. A cold wallet is one whose keys do not. Hardware wallets are cold. Software wallets are hot. The distinction matters because the entire universe of remote attacks only works against hot wallets.
Tomorrow we look at what actually happens when you click "send." The mechanics of a transaction are oddly satisfying, and they explain a lot of what feels confusing about crypto fees, speeds, and confirmations.
Glossary
| Term | Definition |
|---|---|
| Private key | The secret cryptographic value that controls a blockchain address. Whoever has the private key can spend the funds at that address. |
| Public key | The publicly shareable counterpart of a private key, used to derive your wallet address. Anyone can send funds to it; only the private key can move them out. |
| Wallet address | The "account number" of a crypto wallet, derived from the public key. Where funds get sent. |
| Seed phrase | A list of 12 or 24 random words that encodes a wallet's private key in a human-readable form. Used to recover or import a wallet on any compatible device. |
| Custodial | A wallet or service where a third party (an exchange, a fintech) holds your private keys on your behalf. |
| Self-custody | A wallet where you alone hold the private keys. |
| Hot wallet | A wallet whose keys are stored on an internet-connected device (phone, browser, exchange). |
| Cold wallet | A wallet whose keys are stored offline, typically on a dedicated hardware device. |
| Hardware wallet | A physical device (Ledger, Trezor, etc.) that stores private keys in an offline chip and signs transactions with a button press. |
| Multisig | A wallet that requires multiple private keys to authorize a transaction. Used for high-value holdings to eliminate single points of failure. |
| "Not your keys, not your coins" | The catchphrase summarizing why self-custody matters. If you don't hold the keys, you don't really own the asset. |
Reality check
You have $50,000 in crypto. Walk through where you would store it, in what proportions, and why.
If your answer is "all on Coinbase," you missed the lesson. If your answer is "all on a hardware wallet I bought yesterday and put in my desk drawer," you also missed the lesson (single device, no backup, no recovery plan). The real answer involves a layered structure with explicit tradeoffs between convenience and risk. There is no one right structure. There is a structure that matches how much you would actually be willing to lose to a single failure, and that is the thing to articulate.
Read deeper
1. What is a crypto hardware wallet and how to safely use one by The Block
The practical primer on hardware wallets.
Read on IMPCT (curated commentary) | Read original (theblock.co)
Deven's take. If you do not currently own a hardware wallet and you hold more than a couple thousand dollars in crypto, this is a homework assignment. The whole setup takes about thirty minutes. Ledger and Trezor are the two most-used brands. Coldcard is the more paranoid option (Bitcoin-only). The cost is somewhere between a nice dinner and a flight, and it is the single highest-leverage investment in your own financial security you will make in this space. Most people skip this step until they get burned. Don't be one of them.
2. What is a multisig wallet? by The Block
The pro-grade setup for serious balances.
Read on IMPCT (curated commentary) | Read original (theblock.co)
Deven's take. Skip this if you are managing a couple thousand dollars in crypto. Don't skip this if you are managing six figures or more, or if you are responsible for institutional or family-office capital. Multisig eliminates the most damaging single point of failure (one key, one device, one human). The setup is more involved, but services like Casa, Unchained, and BitGo have made it accessible. The mental model: a multisig is to a single-key wallet what a corporate bank account with multiple signers is to a personal checking account.
3. What is MetaMask? by The Block
The most-used software wallet, the gateway to most of Ethereum.
Read on IMPCT (curated commentary) | Read original (theblock.co)
Deven's take. If you are going to do anything on Ethereum or an EVM-compatible chain (most chains), you'll end up with MetaMask sooner or later. It is the de facto standard. The user experience has improved a lot over the last few years. The two things to know going in: MetaMask is non-custodial (your keys are on your device, not on MetaMask's servers), and the single biggest source of MetaMask losses is users approving malicious transactions or signing scam messages. We will get into transaction safety in Day 5. For now: install it, set up a wallet you don't put real money in yet, get used to the interface.
4. What is Trust Wallet? and What is the Phantom Wallet? by The Block
Two other major software wallets worth knowing about.
Read on IMPCT (curated commentary) | Read original Trust Wallet (theblock.co) | Read original Phantom (theblock.co)
Deven's take. Trust Wallet is the Binance-affiliated multi-chain mobile wallet that a lot of newer users start with. Phantom is the dominant Solana wallet and increasingly multi-chain. The exact wallet matters less than understanding the category: these are all non-custodial software wallets, all use the same general seed-phrase mechanism, all let you connect to applications on their respective chains. Pick one based on what chains you're using and what device you're on. Skim these two pieces for the differences.
5. Casa and Unchained (resources for hardware-multisig setup)
Two services that make the institutional-grade setup accessible to individual holders.
Deven's take. When you cross into "this is a meaningful amount of money" territory, the DIY approach gets risky. Casa and Unchained provide guided multisig setups, key recovery services, and inheritance planning. Worth knowing about before you actually need them. The price tag is meaningful (Casa runs from $250 to $25,000+ per year depending on tier). For most people in the first six months of this course, that is not where you are yet. But you should know the path exists.
Tomorrow
We watch what actually happens when you click send. The mechanics will surprise you. Once you've seen them once, you'll understand why crypto fees move the way they do, why "confirmation" takes minutes instead of milliseconds, and why even the right transaction can fail.
See you in the morning.
Preview reader
You are reading a private preview of IMPCT Institute. If something landed, didn't land, or felt confusing on this lesson, tell us. Short notes are useful. Long notes are useful. No notes are also fine.