Security March 30, 2026 · 11 min read

What Is a Seed Phrase and How Do You Keep It Safe?

Those 12 or 24 words your hardware wallet generates are not a password. They are your Bitcoin. Anyone who has them can take everything. Here is what they are, how they work, and the only right way to protect them.

In This Article

  1. What a Seed Phrase Actually Is
  2. How BIP39 Works: The Technical Reality
  3. 12 Words vs 24 Words
  4. What Not to Do With Your Seed Phrase
  5. How to Store Your Seed Phrase Correctly
  6. How Many Copies and Where
  7. What to Do If Your Seed Phrase Is Compromised
  8. Hardware Wallets and Seed Phrases
  9. Summary: The Rules
Affiliate disclosure: This article contains affiliate links to Ledger and Trezor. If you purchase through our links, we may earn a commission at no additional cost to you. We only recommend products we genuinely endorse. See our full affiliate disclosure.

Quick Verdict

A seed phrase is the master backup for your Bitcoin, not a password you can casually store or reuse. If you mishandle those words, neither your wallet manufacturer nor anyone else can recover your funds for you.

Best for: Bitcoin holders learning how to back up a wallet and protect a recovery phrase correctly.

What a Seed Phrase Actually Is

When you set up a Bitcoin hardware wallet or any self-custody wallet for the first time, the device generates a list of 12 or 24 common English words. Your wallet calls it your seed phrase, recovery phrase, or mnemonic. The naming varies by device and software, but the underlying thing is the same.

Here is the most important thing to understand: that list of words is not a password. It is not a backup code. It is the master key that controls every single Bitcoin address your wallet will ever generate. Whoever holds those words holds your Bitcoin, full stop. There is no customer service number to call. There is no account to recover. There is no third party who can override the mathematics.

This is the deal you accept when you move into self-custody. You become your own bank. The seed phrase is the vault key. If you lose it and something happens to your device, your Bitcoin is gone. If someone else gets it, your Bitcoin is theirs.

For a broader look at why self-custody matters and what it means in practice, read our guide to cold storage vs. hot wallets. This article focuses specifically on the seed phrase itself.

How BIP39 Works: The Technical Reality

The seed phrase standard used by virtually every Bitcoin wallet today is called BIP39. BIP stands for Bitcoin Improvement Proposal. BIP39 was authored in 2013 by Marek Palatinus and Pavol Rusnak of SatoshiLabs, the company that builds Trezor hardware wallets, along with Aaron Voisine and Sean Bowe. It has since been adopted across the industry and is the reason a seed phrase generated on a Ledger can recover your wallet in Trezor Suite or any other BIP39-compatible software.

The process behind a seed phrase has three steps.

Step 1: Entropy

The device generates a random number. This is the entropy, and it is the foundation of everything. The entropy is between 128 and 256 bits, in multiples of 32 bits. Critically, this number must be generated by a secure random number generator on hardware you trust, which is one reason hardware wallets exist. You do not want a browser extension or a web page generating this randomness.

Step 2: Checksum

A checksum is added by taking the first few bits of the SHA256 hash of the entropy and appending them to the end. This checksum serves a practical purpose: it allows any wallet to detect if you mistyped a word when entering your seed phrase. If the checksum does not match, the words are rejected. This catches transcription errors before they matter.

Step 3: Words

The combined entropy-plus-checksum bit string is split into groups of 11 bits each. Each 11-bit number is a value between 0 and 2047, which maps to a word in the BIP39 wordlist. The wordlist contains exactly 2,048 English words, carefully chosen so that the first four letters of each word are unique. This means that even if your handwriting is poor, anyone reading your seed phrase backup can unambiguously identify each word from just four letters.

The resulting words are your seed phrase. They represent, in a human-readable form, a large random number that is effectively impossible to guess. A 24-word seed phrase represents 256 bits of entropy. There are more possible 256-bit combinations than there are atoms in the observable universe.

From those words, the wallet derives a master seed (via a key stretching function called PBKDF2, applied 2,048 times using HMAC-SHA512). From that master seed, using a hierarchical deterministic wallet structure defined in BIP32, every Bitcoin address your wallet ever generates is derived in a deterministic, reproducible sequence. Type those 24 words into any BIP39-compatible wallet and you get back every address, every key, and every sat that was ever associated with them.

12 Words vs 24 Words

Both 12-word and 24-word seed phrases are valid under BIP39. The difference is the amount of entropy.

  • 12 words: 128 bits of entropy. Corresponds to the lower bound of what BIP39 allows.
  • 24 words: 256 bits of entropy. Doubles the security margin.

In raw terms, 128 bits of entropy is already computationally impossible to brute-force with any technology that exists or is plausible in the foreseeable future. A 24-word phrase provides a larger margin, which is why hardware wallets like Ledger and Trezor default to 24 words. For a long-term Bitcoin stacker, there is no reason not to use 24 words. The only cost is writing down 12 more words.

Some mobile wallets default to 12 words for simplicity. Either is technically sound. The bigger risk is not the word count but how the seed phrase is stored and handled.

What Not to Do With Your Seed Phrase

The list of ways people have lost Bitcoin through seed phrase mishandling is long. These are the most common failures.

Do not photograph it

A photo of your seed phrase syncs to iCloud, Google Photos, or whatever cloud backup service you use. That means it is now on servers in data centers, subject to breaches, account takeovers, and subpoenas. One breach of your email account is all it takes. Do not photograph your seed phrase under any circumstances.

Do not type it into any device

Your computer has a clipboard history, autocorrect logs, browser autofill, and potentially keylogger malware you are not aware of. Your phone is no better. The seed phrase should never be typed into any device. The only time it should be entered electronically is into a hardware wallet or a verified offline recovery process.

Do not store it in a password manager

Password managers are excellent for passwords. They are the wrong tool for seed phrases. A password manager account can be compromised remotely. Your seed phrase should never exist in a form that can be accessed over a network.

Do not email it to yourself

Self-explanatory, but it still happens. Email is stored on third-party servers. Do not do this.

Do not store it digitally in any form

This means no text files, no notes apps, no encrypted PDFs, no encrypted drives that stay connected to an internet-connected machine. The safest seed phrase storage is physical, offline, and in your control.

Do not enter it into any website

If a website asks for your seed phrase, it is a scam. No legitimate service, including Ledger, Trezor, or any exchange, will ever ask you to enter your seed phrase online. This is one of the most successful phishing attacks in Bitcoin because scared users who think their wallet is "broken" get tricked into surrendering their keys. Legitimate hardware wallet recovery happens on the device itself, not on a website.

How to Store Your Seed Phrase Correctly

The baseline method is simple and accessible to anyone: write it down by hand on the paper card that comes with your hardware wallet, in order, legibly, and store it somewhere secure and physically protected.

Paper works. It is also vulnerable to fire and water damage. For a stack that matters, most serious stackers upgrade to metal backup.

Metal seed phrase backup

Metal seed phrase storage devices are purpose-built plates or tiles that let you stamp or engrave your seed words into stainless steel or titanium. They survive house fires, flooding, and physical abuse that would destroy paper. Products like Cryptosteel, Bilodil, and Blockplate are popular options. These are not expensive relative to the value they protect.

For most stackers holding meaningful amounts of Bitcoin, a metal backup is not optional. It is the baseline.

What you need to record

Write down every word, in exact order, with the number next to it. Word 1, word 2, all the way to word 24. Order matters completely. The same 24 words in a different order generate a different wallet and are useless for recovering yours. Double-check your transcription against the device screen before storing the backup.

If your wallet uses a passphrase (sometimes called the 25th word), that must be stored separately. It is an additional layer of security that is useless to an attacker who finds your seed words without the passphrase, and useless to you if you forget it.

How Many Copies and Where

A single copy of your seed phrase in a single location is a single point of failure. A fire, flood, or theft and it is gone. Most serious stackers keep at least two copies in separate physical locations.

Common approaches:

  • Home safe + bank safe deposit box. Fireproof home safe for accessibility, bank vault for a geographically separate backup.
  • Home safe + trusted family member's property. Two separate physical locations you control or can access.
  • Metal backup at home + metal backup at a second location. Two metal plates at different addresses.

The goal is to survive any single failure, whether fire, flood, theft, or death. Two copies at different locations achieves that. Three is more resilient. More than three starts to create its own risk surface, since each additional copy is another location that could be compromised.

Think carefully about who you trust with the physical location of your backup. The threat model for most people is not a sophisticated state actor; it is opportunistic theft or a house fire. Plan accordingly.

What to Do If Your Seed Phrase Is Compromised

If you have any reason to believe someone else has seen your seed phrase, or that a digital copy may have been exposed, act immediately.

  1. Set up a new hardware wallet and generate a fresh seed phrase. This creates a completely new set of keys.
  2. Transfer all Bitcoin from the old wallet to the new wallet. Every address associated with the compromised seed phrase should be treated as exposed. Send every sat to fresh addresses from the new wallet.
  3. Do not reuse the compromised seed phrase for anything. Abandon it entirely, even if no funds have been taken yet.

If you are unsure whether your seed phrase is compromised but suspect it might be, treat it as compromised and act accordingly. The cost of moving funds to a new wallet is trivial compared to the cost of losing them.

Hardware Wallets and Seed Phrases

The reason hardware wallets exist is specifically to solve the seed phrase generation and signing problem. A hardware wallet generates your entropy in a secure, isolated environment. It stores your private keys in a secure chip that cannot be read from the outside. And it signs transactions internally, so your keys never touch a potentially compromised computer.

Without a hardware wallet, your seed phrase is only as secure as the device that generated it and the software that stores the derived private keys. For meaningful amounts of Bitcoin, that is not an acceptable risk.

The two most established hardware wallet brands, Ledger and Trezor, both use 24-word BIP39 seed phrases by default. Either is a solid foundation for managing your seed phrase securely.

For a detailed comparison of which hardware wallet is right for your situation, read our Ledger vs. Trezor 2026 comparison. For a broader survey of hardware wallet options including budget picks, see our best hardware wallets guide for 2026. Once your wallet is set up, make sure you understand how to verify every address before sending; our guide to Bitcoin address verification covers clipboard hijacking, address poisoning, and the correct verification procedure.

Summary: The Rules

Seed phrase security reduces to a short set of rules. Follow them and the risk of losing your Bitcoin to a seed phrase failure drops close to zero.

  • Write it down by hand, in order, the moment it appears on your device. Verify the transcription before proceeding.
  • Use metal backup if you hold meaningful value. Paper is fine to start; metal is the standard for serious holdings.
  • Store copies in at least two separate physical locations. Eliminate single points of failure.
  • Never photograph it, type it into any device, or store it digitally. Any digital copy is an attack surface.
  • Never enter it into any website for any reason. Hardware wallet recovery happens on the device, not online.
  • If you suspect compromise, act immediately. Generate new keys, transfer your funds, and abandon the old seed phrase.

Your seed phrase is the one thing that Bitcoin's cryptography cannot protect you from mishandling. The mathematics are sound. The risk is entirely in how you handle those 24 words in the physical world.

Use a hardware wallet and protect the backup properly

A metal backup can protect your recovery words from fire and water damage, but it still needs secure physical storage. Pair it with a hardware wallet and store copies in separate locations.

Shop Trezor → Shop Ledger →

Continue Reading

Security

Cold Storage vs Hot Wallet: What Every Bitcoin Holder Needs to Know

The distinction between cold storage and a hot wallet determines whether your Bitcoin is genuinely yours or can be taken without your direct involvement.

Read Article
Security

Best Hardware Wallets 2026: The Only Guide You Need

Not all hardware wallets are created equal. A no-nonsense breakdown of the best cold storage options for Bitcoin stackers in 2026.

Read Article

Frequently Asked Questions

What is a seed phrase in Bitcoin?

A seed phrase is a list of 12 or 24 words that acts as the master backup for your Bitcoin wallet. Anyone who has those words can fully recover and control your funds.

What happens if I lose my seed phrase?

If you lose your seed phrase and then lose access to your wallet device, your Bitcoin is likely gone permanently. There is no password reset and no company that can recover it for you.

Is a seed phrase the same as a private key?

Not exactly. A seed phrase is a human-readable backup that can generate all the private keys in your wallet, which is why it must be protected just as carefully.

Can I store my seed phrase on my phone?

No, storing a seed phrase on a phone, computer, or cloud service creates unnecessary risk. The safer approach is to keep it offline in a durable physical backup.

Free. No Spam.

The Hard Money Stack Letter

Practical Bitcoin education for long-term stackers. No price predictions, no trading calls.

No spam. Unsubscribe any time.