Why You Should Move Your Crypto Off Exchanges (And How to Do It Safely)

In November 2022, FTX — the third-largest crypto exchange in the world, valued at $32 billion just months earlier — filed for bankruptcy. Millions of users who had trusted FTX with their crypto discovered they could not withdraw. Many lost everything. This was not the first time. It will not be the last.

The pattern is consistent across every major crypto exchange collapse: Quadriga, Mt. Gox, Celsius, Voyager, FTX. Users trusted a company with their assets. The company misused, lost, or stole those assets. Users had no recourse because they were creditors of an insolvent company, not owners of their own coins.

This guide explains why the risk exists structurally, how to evaluate your exchange exposure, and exactly how to move your holdings to self-custody with a hardware wallet.

Why Exchange Custody Is Inherently Risky

When you hold crypto on an exchange, you do not hold crypto. You hold a credit — a promise from the exchange to give you back your crypto if you ask. The exchange holds the actual keys. This means:

• If the exchange becomes insolvent, your "credit" is a claim against the bankruptcy estate. You become an unsecured creditor, typically recovering cents on the dollar after legal fees and years of proceedings.
• If the exchange is hacked and customer funds are stolen, you may be covered by insurance (rare and limited) or you may not.
• If the exchange freezes withdrawals — for any reason, regulatory, technical, or fraudulent — you cannot access your funds.
• If a government orders the exchange to freeze your account (asset seizure, sanctions compliance), your access is gone regardless of whether you personally did anything wrong.

None of these risks exist if you hold your own private keys.

The Warning Signs You Can Ignore... Until You Can't

In hindsight, FTX showed multiple warning signs before collapse: a CEO who publicly questioned the need for proof-of-reserves, a native exchange token (FTT) that was being used as collateral for billions in loans to related entities, and a business model that couldn't be explained clearly. Users saw these warning signs and rationalised them because withdrawals still worked — until they didn't.

The uncomfortable truth: exchange insolvency is often invisible until withdrawal freezes begin. By then it's too late. The only reliable protection is not having more funds on an exchange than you are prepared to lose entirely.

The Self-Custody Rule

A practical framework for managing exchange exposure:

• Keep only active trading balances on exchanges. If you're actively trading, keep the capital needed for those trades. The rest goes to cold storage.
• Diversify across multiple exchanges if you must keep funds on-exchange. Don't concentrate all your exchange-held crypto on a single platform.
• Move anything you wouldn't want to lose entirely. If the exchange collapsed tonight and you lost everything on it, what would the impact be? If the answer is "significant," you have too much there.

Step-by-Step: Moving to a Hardware Wallet

Step 1: Buy a hardware wallet from the official manufacturer. Go directly to Ledger.com, Trezor.io, or Coldcard.com. Never buy from Amazon, eBay, or second-hand — supply chain tampering is a documented risk. The Ledger Nano X (~$149) or Trezor Model T (~$219) are the standard recommendations for most users.

Step 2: Set up the device without connecting it to any software first. When you first power on the device, it will generate a seed phrase on the device screen. Write this 24-word seed phrase down on paper — carefully, in order — using the provided card. Verify you've written it correctly by confirming back to the device.

Step 3: Store the seed phrase securely offline. Your seed phrase is the master key to everything. It goes on paper (or steel if you're concerned about fire) in a physically secure location — not photographed, not stored digitally, not emailed to yourself. If you lose the seed phrase and the device, your funds are gone permanently.

Step 4: Install companion software. Ledger Live (for Ledger) or Trezor Suite (for Trezor) on your computer. These are the interfaces for managing your wallet — checking balances, initiating transactions. Download only from official sources.

Step 5: Find your receiving address. In Ledger Live or Trezor Suite, navigate to Bitcoin or Ethereum (whichever you're withdrawing). Click "Receive" — the software will show you a wallet address. Critically: verify this address matches what is shown on your hardware wallet's physical screen before using it. This protects against clipboard malware.

Step 6: Do a test withdrawal first. Before moving your full balance, send a small amount (e.g. $20 equivalent) from the exchange to your hardware wallet address. Wait for the transaction to confirm (check the blockchain explorer). Verify it appears in Ledger Live/Trezor Suite.

Step 7: Move the rest. Once the test transaction confirms, transfer your remaining holdings from the exchange to your hardware wallet address. Large transfers may be split by the exchange into multiple batches or require additional verification — this is normal.

Step 8: Verify receipt. Confirm the full balance appears in your wallet software. You are now in full self-custody.

Ongoing Security Practices

• Never type or photograph your seed phrase — not for any reason, not for any person.
• Verify receiving addresses on the hardware wallet screen before every transaction.
• Keep the device's firmware updated via the official companion software.
• Store the seed phrase and device in separate physical locations if your holdings are significant.
• Test your recovery annually: use the device's "check recovery phrase" feature to confirm your backup is intact, without actually wiping and restoring.

Summary

Exchange custody means trusting a company with your assets — and history shows this trust is periodically catastrophic. Hardware wallets give you sovereign ownership: a physical device generating and storing private keys in hardware isolation, requiring your physical approval for every transaction. The setup takes 30 minutes. The protection it provides is permanent. Use the Hardware Wallet guide for a deeper comparison of device options, and the Crypto Wallets guide for the broader custody framework.