Skip to main content
Other Assets

Custody: self vs exchange

Pomegra Learn

Custody: self vs exchange

"Not your keys, not your coins" is crypto's first principle. This maxim captures a profound truth: if you hold the private key that controls a cryptocurrency address, the funds are yours to move at will. If you do not hold the key—if an exchange, custodian, or other party holds it—you are trusting that entity with your assets. That trust can be broken by hacking, insolvency, theft, or regulatory seizure.

Yet self-custody is not costless. It requires technical competence, safe storage practices, backup discipline, and an understanding of how to recover funds if devices are lost or corrupted. For many users, the operational burden and security risks of self-custody (particularly the risk of catastrophic loss through human error or device failure) outweigh the risks of leaving assets on an exchange. For others, the principle is non-negotiable: self-custody is a prerequisite for genuine financial sovereignty.

The 2022 collapse of FTX and the bankruptcy of Celsius Network vindicated the self-custody advocates. Millions of users who believed their assets were safely held in "custody accounts" discovered that their funds had been lent out, invested in risky ventures, or simply misappropriated. No insurance, no regulatory protection, and no recourse: they lost their money. Mt. Gox, the bitcoin exchange that filed for bankruptcy in 2014 after a catastrophic hack, remains a lesson in the fragility of centralized custody—creditors did not recover their full funds for years, and the recovery process was mired in legal complexity.

This history has catalyzed two trends. First, institutional-grade custody solutions—offered by established financial institutions and specialized custodians—now provide insurance, regulatory oversight, and segregated asset accounts that approximate the protections available in traditional finance. Second, the technology of self-custody has improved: hardware wallets are now user-friendly, multisignature schemes allow multiple parties to control a single address (requiring agreement from a threshold of signers to move funds), and social recovery mechanisms enable users to regain access to wallets through trusted contacts rather than remembering long passphrases.

Understanding custody is about more than just security. It touches on inheritance and estate planning: what happens to your cryptocurrency if you die? If you hold the key, your heirs must find the key to move the funds—and many estates have lost cryptocurrency because no one knew where the keys were stored. If assets are on an exchange, your heirs must prove their right to the account, navigate the exchange's procedures (which vary widely), and possibly deal with regulatory holds or the exchange's own insolvency. Each path has hazards. Multi-signature custody with a trusted executor named in your will offers one middle ground. Institutional custodians increasingly offer inheritance planning services—but at a cost, and with the ongoing counterparty risk.

For serious cryptocurrency holdings, the decision between self-custody and delegated custody should rest on three factors: the size of your holdings (larger positions justify the effort and cost of self-custody or institutional custody), your technical competence and risk tolerance, and your jurisdiction's regulatory environment and tax treatment. Most investors find that a hybrid approach—keeping small holdings on an exchange for liquidity and trading, and holding the bulk of their portfolio in self-custody or institutional custody—balances operational simplicity with security.

The trade-offs: control, risk, and responsibility

What do you gain and lose by holding your own keys? What are the realistic security risks of exchange custody, and how do they compare to the risks of self-custody?

Institutional custody and the new standard

What do major custodians offer, and how has institutional-grade custody reduced the gap between crypto and traditional finance in terms of security and insurance?

Articles in this chapter

📄️ What is Crypto Custody?

Custody in the context of cryptocurrency refers to the safekeeping, control, and administration of digital assets on behalf of an individual or institution. It's a fundamental concept that separates crypto from traditional finance in critical ways. Unlike your bank account, where a financial institution holds your money and you trust them to manage it responsibly, cryptocurrency custody places the responsibility for asset safety directly in the hands of the asset owner—or, if delegated, with a custodian you explicitly choose.

📄️ Self-Custody in Crypto Explained

Self-custody is the practice of directly controlling your cryptocurrency by holding the private keys that authorize all transactions. When you self-custody, you are your own bank. No intermediary stands between you and your money. No institution can freeze your account, charge unexpected fees, or go bankrupt and take your funds with them. This autonomy is the revolutionary promise of cryptocurrency—but it comes with significant responsibilities and risks that traditional banking insulates you from.

📄️ Exchange Custody Risks

When you deposit cryptocurrency on an exchange, you are exposing it to a unique set of risks that differ fundamentally from both traditional banking and self-custody. An exchange holding your cryptocurrency becomes a single point of failure. If the exchange experiences a security breach, operational failure, or management fraud, your funds are at risk. Unlike traditional banks, most cryptocurrency exchanges are not federally insured, and regulatory frameworks are still developing. Understanding these risks is essential for any cryptocurrency user who chooses to hold funds on an exchange.

📄️ Fractional Reserves on Crypto Exchanges

Fractional reserves occur when a financial institution holds less in actual assets than it owes to customers. If an exchange holds 100 Bitcoin but owes 110 Bitcoin to its customers, it's operating on fractional reserves. This practice is normal and legal in traditional banking—banks are expected to loan out most customer deposits and keep only a fraction in reserve. However, in cryptocurrency, fractional reserves represent a serious risk to customers because cryptocurrency exchanges are not regulated like banks and lack the safeguards (like FDIC insurance) that protect bank customers.

📄️ Mt. Gox Lesson

The collapse of Mt. Gox stands as the starkest warning in cryptocurrency history—a cautionary tale that reshaped how the industry thinks about custody, asset security, and exchange accountability. Once the world's largest Bitcoin exchange, Mt. Gox processed roughly 70% of all Bitcoin transactions globally at its peak in 2013. Its spectacular implosion, involving the loss of nearly 850,000 Bitcoin (roughly 7% of all Bitcoin in existence at the time), crystallized the existential risk that poor custody practices pose to cryptocurrency holders.

📄️ Exchange Hacks

When billions in cryptocurrency vanish from an exchange in moments, it exposes a fundamental truth: no platform is immune to attack. Over the past fifteen years, some of the world's largest cryptocurrency exchanges have suffered catastrophic breaches, resulting in the loss of customer funds and permanent damage to reputation. These incidents teach us invaluable lessons about the perils of centralized custody and why understanding exchange security matters to every participant in the crypto economy.

📄️ Coinbase Custody

Coinbase Custody represents a pivotal moment in cryptocurrency institutional adoption—the combination of an established cryptocurrency exchange's operational experience with the security infrastructure and regulatory compliance required for institutional asset management. Launched as a separate entity in response to institutional demand, Coinbase Custody evolved into a dedicated custodian managing tens of billions of dollars in cryptocurrency assets, serving pension funds, endowments, family offices, and cryptocurrency funds globally.

📄️ Qualified Custodians

The Securities and Exchange Commission's concept of a "qualified custodian" represents one of the most important regulatory frameworks enabling institutional cryptocurrency adoption. Under SEC Rule 206(4)-2, registered investment advisers managing client assets must use qualified custodians—certain banks, registered broker-dealers, and other entities that meet specific safeguarding and verification standards. For years, this requirement created a custody bottleneck preventing institutional investment advisers from offering cryptocurrency products, because few custodians met the "qualified custodian" definition for digital assets.

📄️ Fidelity Digital Assets

Fidelity's entry into cryptocurrency custody represents the convergence of traditional financial infrastructure with digital assets. Fidelity Digital Assets, launched in 2018, brought over a century of securities custodial expertise to Bitcoin and cryptocurrency holdings. Unlike specialized cryptocurrency custodians emerging from the tech sector, Fidelity approached digital asset custody as an extension of its core business—safely maintaining valuable assets on behalf of institutions.