Cold vs hot wallet — how to store crypto safely
How hot wallets, cold wallets, and exchange wallets differ, when to use each, and the self-custody rules that keep you from losing everything when an exchange collapses or gets hacked.
"Not your keys, not your coins" — a crypto classic. Beginners often keep everything on an exchange, and only understand why self-custody matters when an exchange collapses (FTX, 2022).
This post explains the wallet types, their trade-offs, and how to split assets sensibly between convenience and safety.
The private key — the thing that actually matters
In crypto, owning a coin = owning the private key that controls its address. Whoever holds the key controls the funds.
- Coins on an exchange = the exchange holds the key for you. You trust it not to collapse, get hacked, or freeze your account.
- Coins in a self-custody wallet = you hold the key. Full control, but also full responsibility.
Three places to keep crypto
1. Exchange wallet (custodial)
Coins sit in your Binance account; the exchange holds the key. Most convenient for trading, but carries counterparty risk: the exchange could go bankrupt, get hacked, or freeze withdrawals.
✅ Use for: funds you're actively trading or DCA-ing. ❌ Don't: keep the bulk of your long-term assets here.
2. Hot wallet
A software wallet on your phone/computer, connected to the internet (MetaMask, Trust Wallet...). You hold the key, but because it's online it still carries risk from malware, scams, and signing malicious transactions.
✅ Use for: moderate amounts, DeFi interaction, frequent use. ❌ Don't: keep large amounts meant to sit for years.
3. Cold wallet (hardware wallet)
A hardware device (Ledger, Trezor) that keeps the key offline, never connected to the internet. Every transaction must be physically confirmed on the device. The safest against remote hacks.
✅ Use for: the bulk of long-term holdings (cold storage). ❌ Inconvenient: must plug in the device for each transaction, plus the cost of buying one.
Quick comparison
| Criteria | Exchange wallet | Hot wallet | Cold wallet |
|---|---|---|---|
| Who holds the key | Exchange | You | You |
| Internet-connected | Yes | Yes | No |
| Trading convenience | Highest | High | Low |
| Long-term safety | Low | Medium | Highest |
| Main risk | Exchange collapse/hack | Malware, scams | Lost device + seed |
A sensible way to split assets
There's no "absolutely right" choice — it's a balance based on need:
- Funds being traded / DCA-ed: keep on the exchange (Binance) — you need liquidity and speed.
- Medium-term funds: a hot wallet if you interact frequently.
- Long-term accumulation, large amounts: move to a cold wallet. The principle: money whose loss would hurt shouldn't sit online.
A simple rule many use: keep on the exchange the amount you'd be willing to lose if it collapsed; move the rest to self-custody.
Protect your seed phrase — this is survival
When you create a self-custody wallet, you get a seed phrase (12-24 words). This is the backup of your private key.
- Write it on paper, store it somewhere safe. Do NOT photograph it, do NOT store it on the cloud, do NOT type it into an online computer.
- NEVER enter the seed into a website or share it with anyone. Any request to enter your seed is a scam.
- Lose the seed = lose the coins forever. Leak the seed = anyone can take the coins.
Trading API keys are different from wallet keys
When using a bot like fastbot, you provide your exchange API key — not your wallet seed phrase. API keys can have limited permissions: allow placing orders only, and disable withdrawals.
This is a key safety point: even if the API key leaks, an attacker can't withdraw funds if you've disabled the withdrawal permission. See Binance API key security.
Conclusion
- Exchange = convenient for trading, but don't keep all your assets there.
- Hot wallet = you hold the key, frequent use, online risk.
- Cold wallet = safest for large long-term holdings.
- The seed phrase is everything — protect it like a vault.
In short: trade on the exchange, store in a cold wallet, never leak your seed.
Next step
Trade and DCA safely with a permission-limited API key, without moving your coins anywhere:
👉 Open fastbot — 7-day free trial, no credit card required.