What "Ownership" Actually Means in Crypto
In traditional finance, owning money in a bank account means the bank records a number next to your name. You trust that the number is accurate, and you trust the bank to honour it when you want to withdraw. The bank can freeze your account, reverse transactions, or go insolvent. Your "ownership" is a legal claim, enforced by regulation and deposit insurance.
In Bitcoin and most cryptocurrencies, ownership works differently. Whoever controls the private key controls the funds. Full stop. There is no name attached to a Bitcoin address on the blockchain. There is no freeze mechanism. There is no insurance. The private key is ownership — nothing else is.
This is what "not your keys, not your coins" means. If someone else is holding the private key to your crypto balance, they own it. You have a promise from them that you can have it back. That is not the same thing.
Custodial vs Non-Custodial: The Core Distinction
Every crypto service falls into one of two categories:
Custodial
A custodial service holds your private keys on your behalf. You log in with a username and password. The service manages the actual keys behind the scenes. Examples: Coinbase, Binance, PayPal Crypto, most exchange accounts.
When you "have" crypto on a custodial exchange, you have an IOU. The exchange holds the actual coins and owes them to you. If the exchange is hacked, goes bankrupt, freezes withdrawals, or defrauds users — your IOU may be worthless.
Non-Custodial
A non-custodial service never holds your private keys. You generate and store your own keys. The service interacts with the blockchain on your behalf — but it cannot move your funds without your private key. Examples: MetaMask, hardware wallets, non-custodial payment processors that use xPub keys.
When you hold crypto in a non-custodial wallet, the coins are genuinely yours. No third party can freeze them, seize them, or lose them. The tradeoff is that you are also responsible for securing the keys yourself.
In November 2022, FTX — at the time the third-largest crypto exchange in the world, valued at $32 billion — collapsed in 72 hours. Approximately $8 billion in customer funds were missing. Customers who had left their crypto on the platform lost access to it.
What happened? FTX held customer funds in custodial accounts. Users believed they owned their crypto. In reality, FTX held the keys — and used customer funds for its own purposes. When trust collapsed and everyone tried to withdraw at once, there was nothing there.
The customers who were not affected were the ones who had withdrawn their funds to their own wallets before the collapse. Their keys were on their own devices. FTX going bankrupt was irrelevant to them.
The FTX collapse was not a crypto failure. It was a custody failure. The blockchain worked exactly as designed. The promise from a centralised custodian did not.
Self-Custody in Practice
Self-custody means generating and storing your own private keys. In practice, this means managing a seed phrase — the 12 or 24 words that encode your master private key (see our article on HD wallets for the full explanation).
The security requirements are straightforward:
- Generate keys securely — use reputable wallet software or a hardware wallet. The seed phrase should be generated on the device, never transmitted anywhere.
- Store the seed phrase offline — write it on paper or engrave it on metal. Do not photograph it. Do not store it in a password manager. Do not email it to yourself.
- Back it up in multiple physical locations — a house fire that destroys your only copy destroys your funds too.
- Never enter it anywhere online — any website that asks for your seed phrase is attempting theft. No legitimate service ever needs it.
The Tradeoffs Are Real
Self-custody is not free. The tradeoffs are genuine and worth being honest about:
You cannot recover from mistakes
Lose your seed phrase with no backup, and your funds are gone. Send to the wrong address, and the transaction is irreversible. There is no customer support line. This is an enormous responsibility that some people are not ready for.
The user experience is harder
Self-custodial wallets require more technical understanding. Connecting to DeFi protocols, managing gas fees, understanding network differences — these are all friction points that custodial services abstract away.
Security is your problem
A hardware wallet and a proper backup procedure are excellent security — but they require you to actually implement them. A seed phrase written on a Post-It note stuck to your monitor is worse security than a reputable custodial exchange with 2FA enabled.
What This Means for Merchants
If you accept crypto payments through a custodial processor, you are re-introducing the same custody risk you were trying to avoid by accepting crypto in the first place. The processor holds your incoming funds until you withdraw, creating a window where their solvency and honesty determine whether you get paid.
Non-custodial payment processors use your xPub key to generate receive addresses that route funds directly to your wallet — the processor is in the data path but never the funds path. Your payment revenue lands in your wallet instantly, with no withdrawal step and no counterparty risk.
The custody question is not a philosophical one. It has a concrete answer with concrete consequences. The FTX collapse is the most dramatic example, but exchange hacks, frozen withdrawals, and exit scams happen regularly at smaller scale. The technology exists to avoid all of it entirely.
The Summary
Crypto's core promise — censorship-resistant, self-sovereign money — only holds if you hold the keys. Using a custodial service is a conscious choice to trade that sovereignty for convenience. Sometimes that tradeoff is worth it. But you should make it knowingly, not by default.
For merchants specifically: there is almost no convenience reason to use a custodial processor when non-custodial alternatives exist that are equally easy to integrate. The risk is asymmetric. The downside of a custodial processor failing is losing your revenue. The downside of a non-custodial processor failing is that you need to find a different processor.