Hot and Cold Wallets for a Crypto Exchanger: How to Store Funds Safely

iEXExchanger
Hot and Cold Wallets for a Crypto Exchanger: How to Store Funds Safely

How to divide an exchanger's assets between hot and cold wallets — and why getting the split wrong kills liquidity faster than any security breach.

A cold wallet for a crypto exchanger isn't a luxury — it's the line between a sustainable business and one that loses everything overnight. The problem isn't that exchanger owners don't know this. The problem is in how storage is actually organized.

Hot and Cold: What the Difference Actually Means

A hot wallet is connected to the internet — it's what your exchanger uses for automated customer payouts. A cold wallet lives offline: a hardware USB device in a safe, an encrypted file on an air-gapped machine, or a paper backup. The key distinction is attack surface. A hot wallet is exposed to server breaches, key leaks, and infrastructure attacks. A cold wallet is physically protected — but slow to use when you need it fast.

Why the 90% Cold Storage Rule Does Not Fit Every Exchanger

The classic advice: keep 90% of assets in cold storage, 10% in hot. Sounds sensible. In practice, a smaller exchanger processing $50,000 a day might find the hot wallet empty by noon — and customers start waiting. A high-turnover exchanger might keep 25–30% in hot storage; one that runs overnight without refills might only need 15–20%. The right number is whichever keeps the hot wallet from running dry at peak hours.

How to Calculate the Right Balance

A simple formula: take your average payout volume over 12 hours and multiply by 1.5 — that's the minimum for the hot wallet. The rest goes into cold storage. If your daily volume is 80,000 USDT, the hot wallet should hold at least 60,000. Top it up at night — when traffic is lowest and a transfer won't race ahead of a pending customer payout.

What to Use for Cold Storage

  • Hardware wallet (Ledger, Trezor) — ideal for amounts up to $300k. Keys stay on the device, transactions are signed offline. Keep a backup device and store your seed phrase somewhere secure and offline.
  • Multisig — a setup where multiple keys must sign a transaction together (e.g., 2-of-3). Best for amounts above $100k or when several partners share control. More complex to configure, but doesn't depend on a single device.
  • Air-gapped wallet — a computer that has never touched the internet. Transactions are signed via QR code or USB. Maximum security, maximum operational overhead.

Paper wallets aren't on this list intentionally — the risk of physical loss or theft is too high for a real business.

Common Mistakes When Setting Up Storage

The most frequent: a single hot wallet with no cold storage at all. This is common among exchangers that just launched and plan to deal with security later. Later tends to arrive sooner than expected.

Second: the seed phrase in the cloud. A screenshot in iCloud, a note in Google Keep, an email to yourself — that's not cold storage. It's just another hot wallet with a different name.

Third: never testing whether the cold wallet actually works. Some exchanger owners hold funds offline for years, then discover they can't access them precisely when it matters most.

Conclusion

Splitting assets between hot and cold storage isn't a one-time setup — it's an ongoing process. Revisit the ratio as volume grows, test recovery procedures, update the scheme when key team members change. An exchanger with this sorted runs calmer, with far less risk of being caught short at the worst moment. If you're building out your exchanger's infrastructure from scratch, take a look at iEXWallet — a non-custodial wallet built for exchanger operators, with no middleman fees.

Questions and answers

Frequently asked questions about this article

Does a crypto exchanger need a hardware wallet?

It depends on how much you're holding. Below $50,000, a well-secured hot wallet with isolated keys and 2FA may be sufficient. Above $100,000, a hardware wallet or multisig setup moves from a recommendation to a necessity — the breach risk clearly outweighs the setup cost.

What is the ideal hot-to-cold wallet ratio for an exchanger?

There's no universal rule. A practical starting point: keep 1.5x your average 12-hour payout volume in hot storage. For an exchanger with $80,000 daily volume, that's around $60,000 in hot. The rest goes cold. Revisit this ratio whenever your throughput changes.

What is multisig and why does an exchanger need it?

Multisig is a wallet setup where a transaction requires signatures from multiple keys at once — say, 2 out of 3. This means losing one key or having one team member compromised doesn't result in lost funds. For exchangers with multiple owners or large cold storage balances, it's practically essential.

How do you safely move funds from cold to hot storage?

Plan transfers ahead of time — not when the hot wallet is already dry. Best practice: move funds during low-traffic hours, verify the recipient address on multiple devices, and send a small test transaction first. With multisig, always require two signatories to confirm before executing.

Is it safe to store a seed phrase in a password manager?

Not recommended. A password manager is a cloud service with its own attack surface — if it's breached or your account is compromised, so is your seed phrase. Store it offline: on paper in a safe, engraved on a metal plate, or in an encrypted container on a fully air-gapped device.

Read also