§ Q & A · Self-Custody

Is my Bitcoin safe on an exchange?

Short answer

No. When you leave Bitcoin on an exchange you own an IOU, not Bitcoin. History is full of exchanges that failed — Mt. Gox, QuadrigaCX, Celsius, FTX. The solution is self-custody: your keys, your coins.

Last updated · April 23, 2026

No. Bitcoin held on an exchange is not safe — not in the way that Bitcoin held in your own wallet is safe. When you deposit Bitcoin to an exchange, you transfer the private keys to the exchange, and in return you receive an IOU: an internal database entry that says the exchange owes you that amount. You are no longer holding Bitcoin in the technical sense. You are holding a claim against a financial institution.

That distinction sounds abstract until the institution fails. And they fail. Mt. Gox was the world’s largest Bitcoin exchange in 2014 and lost approximately 850,000 BTC through a combination of hacking and mismanagement. QuadrigaCX froze customer funds when its founder died and took the only copies of private keys with him. Celsius, BlockFi, and Voyager all suspended withdrawals within months of each other in 2022. FTX — the second-largest exchange in the world by volume, backed by major venture capital firms, with a founder who appeared at financial conferences and before regulators — filed for bankruptcy in November 2022 with an estimated customer shortfall in the billions. The CNBC reporting at the time showed customers with no ability to access funds they believed were safely held.

The pattern repeats because the underlying dynamic is unchanged: when you hand your Bitcoin to someone else to hold, you take on all of their operational risk, financial risk, and fraud risk. Bitcoin’s design solves exactly this problem — it is a bearer instrument controlled by whoever holds the private key. The moment you leave an exchange, you reassign that control to the exchange. Whether that exchange is trustworthy is a separate question from whether Bitcoin itself is safe.

The IOU vs bearer asset distinction

Bitcoin at the protocol level is a bearer instrument. Whoever holds the private key corresponding to a Bitcoin address controls the funds at that address. There is no account number, no username, no KYC record that establishes ownership. Control is established cryptographically by the key.

An exchange account is not this. When Coinbase or Binance or any other exchange credits your account with Bitcoin, that credit exists only in their internal database. They pool customer Bitcoin into institutional wallets and track your “balance” as an internal record. Your 0.5 BTC is not sitting in a specific on-chain address with your name on it — it is one entry in a ledger the exchange controls.

This means: the exchange can freeze your withdrawals, delay them, impose limits, go insolvent, be hacked, be exit-scammed, or be seized by regulators — and your Bitcoin cannot leave until the exchange permits it. When FTX suspended withdrawals in November 2022, the Bitcoin in customer accounts was inaccessible regardless of what the price was doing. The Bitcoin existed on-chain; it just wasn’t in addresses the customers controlled.

The Mastering Bitcoin text by Andreas Antonopoulos describes this property precisely: ownership in Bitcoin is not established by a database entry or a legal agreement, but by possession of the cryptographic key. Without the key, you are relying on someone else’s promise.

Why “Proof of Reserves” does not fully solve this

In the wake of exchange failures, the industry introduced “Proof of Reserves” audits — cryptographic methods that purport to show an exchange holds at least as much Bitcoin as customers claim. These are better than nothing, but they have well-understood limitations.

Proof of Reserves typically proves that an exchange controls a certain number of Bitcoin addresses and the funds in those addresses at a specific moment in time. What it does not prove is the exchange’s liabilities: what they owe to customers, what off-balance-sheet obligations they have, whether the assets shown are subject to liens or loans.

FTX could have passed a naive Proof of Reserves audit shortly before its collapse, because the issue was not that it lacked Bitcoin — it was that the same funds were being used as collateral for loans at the affiliated trading firm Alameda Research, creating a situation where the liabilities far exceeded what could actually be returned to customers. Proof of Reserves that shows assets without a corresponding proof of liabilities tells you half the story.

The only complete solution is to not leave your Bitcoin on an exchange at all.

A brief history of exchange failures

The list is long enough to be instructive by itself:

Mt. Gox (2014). At its peak, Mt. Gox handled approximately 70% of all Bitcoin transactions worldwide. In early 2014, it suspended withdrawals and then filed for bankruptcy, reporting that approximately 850,000 BTC — belonging to customers and the company — had been lost over years, apparently through a combination of hacking and internal theft. Many affected customers waited nearly a decade for partial recovery through bankruptcy proceedings.

Cryptsy (2016). A smaller exchange that quietly lost hundreds of thousands of bitcoin to internal theft in 2014, continued operating while insolvent, and eventually filed for bankruptcy in 2016. The founder was later convicted of fraud.

QuadrigaCX (2019). Canada’s largest cryptocurrency exchange froze customer funds when its founder Gerald Cotten died unexpectedly, with the claim that he was the only person with access to the cold storage private keys. Subsequent investigation raised serious questions about whether the funds had already been stolen before his death. Customers were left with recovery of approximately 13 cents on the dollar.

BitConnect (2018). Not a standard exchange but a lending platform promising 1% daily returns on “Bitcoin deposits.” It was a Ponzi scheme. When it collapsed, investors lost an estimated $2 billion.

Celsius Network (2022). A Bitcoin and crypto lending platform promising yield on deposits. Celsius suspended withdrawals in June 2022 as crypto prices fell and its risky lending strategies created a liquidity crisis. Chapter 11 bankruptcy followed in July 2022. Customers were eventually made partially whole after a multi-year bankruptcy process.

FTX (2022). The industry’s most visible collapse. FTX filed for Chapter 11 bankruptcy in November 2022. Subsequent court filings and journalistic investigation revealed that customer funds had been transferred to Alameda Research, FTX’s affiliated trading firm, for speculative use. The founder was convicted of fraud in October 2023.

The common thread: customers trusted institutions that controlled their keys. The control went wrong. The customers had no recourse until bankruptcy courts resolved it — slowly, partially, years later.

The solution: self-custody

Self-custody means you hold your own private keys. The Bitcoin ledger records that a specific address — controlled by your key — holds your bitcoin. No exchange, no bank, no government has any ability to prevent you from moving that bitcoin, because they don’t have the key.

The mechanics are simpler than people expect. A hardware wallet — a small dedicated device like a Ledger, Trezor, Coldcard, or BitBox02 — generates and stores private keys offline. You connect it to your computer only to sign transactions; the key never touches the internet. When you send Bitcoin, the transaction is constructed on your computer, signed inside the hardware wallet, and broadcast to the network. Your computer never sees the private key.

Your key is represented as a seed phrase: 12 or 24 common English words, standardized by BIP-39. This seed phrase is the master backup for all addresses in your wallet. Write it on paper. Stamp it on metal. Store it somewhere physically secure, geographically separated from your hardware wallet. This is your true backup — not a screenshot, not a cloud note, not an email to yourself.

The bitcoin.org wallet chooser is a useful starting point for evaluating wallet options by your technical level and use case. If you’re new to self-custody, the self-custody basics guide covers the full process including hardware wallet selection, seed backup, and the first test send.

Starting safely: you don’t have to move everything at once

The most common mistake I see people make when learning about self-custody is freezing up because the stakes feel high. Here is how I think about it: start with an amount you can afford to learn with.

Buy a hardware wallet. Set it up following the manufacturer’s instructions. Generate a seed phrase. Write it down carefully, word by word, checking each word. Then send a small amount — 20 USD equivalent or whatever feels trivially small to you — to an address on the hardware wallet. Confirm it arrived. Then send it back out to test that you can also spend from the wallet. Verify the backup by checking your seed phrase words against the wallet display.

Once you have done all of this and are comfortable with the process, you can move larger amounts. The skills — reading addresses carefully, verifying on-device, understanding the send flow — are the same regardless of amount. Learn them with small stakes first.

For longer-term holdings, consider multisig: a configuration where two or three separate keys must all sign a transaction. This means a single key being compromised or lost doesn’t lose your bitcoin. Mastering Bitcoin covers multisig in depth; the setup is more involved but provides meaningful protection for larger amounts.

The risk calculus

I want to be honest: self-custody is not risk-free. The risks are different from exchange risk, not absent.

With an exchange, your risks are: exchange insolvency, hacking, fraud, regulatory seizure, withdrawal suspension. You cannot protect against these from the outside.

With self-custody, your risks are: losing your seed phrase, losing your hardware wallet without a backup, physical theft of both your device and backup, forgetting your passphrase if you use one. You have complete control over all of these risks. You can mitigate them with good backup practices, geographic separation, and operational discipline.

The important difference is who is in control of the mitigation. On an exchange, someone else’s operational security, financial management, and honesty determines your exposure. In self-custody, your practices determine your exposure. I’d rather control my own risk than trust a company whose books I can’t audit.

Primary sources

  1. FTX bankruptcy — CNBC coverage [1]
  2. bitcoin.org — Choose your wallet [2]
  3. Mastering Bitcoin (Antonopoulos) — GitHub [3]
  4. BIP-39 — Mnemonic code for generating deterministic keys [4]