Wallets · Self-Custody · Part 1 of 4
Crypto Wallets Part 1: Why Self-Custody Matters & Ledger vs Trezor
Cryptocurrencies exist on public blockchains, not inside the apps used to access them. A wallet holds the private keys that prove ownership and authorise transactions. Without control of those keys, your coins are held at someone else's discretion. This first part of a four-part guide covers why self-custody matters and compares the two dominant hardware wallet brands: Ledger and Trezor.
- Self-custody removes counter-party risk from exchanges and custodians
- Ledger Nano Gen5 and Trezor Safe 7 both announced in October 2025
- Key difference: Ledger uses proprietary firmware, Trezor is fully open source
- Both companies state no device has been compromised when used correctly
The case for self-custody
Why holding your own keys matters
Centralised exchanges and custodians make buying crypto straightforward, but they introduce counter-party risk. For a full overview of how Coinbase and Kraken handle custody versus self-custody solutions, including how funds are held and what protections apply, see our exchange reference guide. When an exchange holds your keys, you are trusting that institution to remain solvent, honest and secure. The failures of FTX, Celsius and several other platforms have demonstrated that this trust is not always warranted — coins held by a third party can be frozen, lost or stolen through no fault of the holder.
Hardware wallets and self-custody software wallets address this by keeping private keys under the owner's control. Moving assets off exchange also affects HMRC's ability to track exchange activity through CARF — exchanges report on-exchange transactions, but self-custody wallet activity is not automatically visible to HMRC. The trade-off is clear: self-custody removes counter-party risk but places full responsibility on the individual. If a recovery phrase is lost, disclosed or destroyed, there is no support team to contact and no mechanism to restore access. This is not a reason to avoid self-custody — it is a reason to approach it carefully.
The phrase commonly used in crypto communities captures it accurately: not your keys, not your coins. It is also worth understanding UK crypto regulation and what it means for exchange custody — the FSMA framework coming into force by 2027 will extend FCA oversight of custodial services significantly.
What this means
The choice between a custodial and non-custodial wallet determines who controls your private keys — and therefore who bears the risk if a platform fails. Neither option is universally better; it depends on how you use crypto. This is context, not advice.
Ledger
Nano Gen5 — proprietary security with broad ecosystem integration
Ledger is a French company founded in 2014 and one of the most widely used hardware wallet brands globally. In October 2025 it announced the Nano Gen5, which the company now refers to as a signer rather than a wallet — a deliberate shift in framing that positions the device as a broader digital identity and signing tool.
The Gen5 uses a certified Secure Element chip to generate and protect private keys entirely within the device. It features a large E Ink colour touchscreen and a function called Clear Signing, which displays full transaction details on the device screen before the user approves. This is designed to prevent blind signing — approving transactions without seeing what is actually being authorised.
Connectivity includes USB-C, Bluetooth and NFC. The companion Ledger Wallet app handles portfolio management, buying, swapping, staking and DeFi access across multiple blockchains, while keeping private keys on the hardware device at all times.
- Certified Secure Element: BOLOS operating system isolates keys and handles signing entirely within the device
- Clear Signing: Full transaction details displayed on screen before approval, reducing the risk of authorising malicious transactions
- Broad ecosystem: Ledger Wallet supports buying, swapping, staking and FIDO2 passkeys with optional encrypted recovery
- Limitation — closed firmware: The Secure Element and firmware are not open source; users must trust Ledger's implementation
- Limitation — Recover controversy: In 2023, Ledger drew criticism for a feature capable of sharding the private key with third-party partners; the feature is opt-in but raised fundamental questions about the security model
Under the incoming FCA FSMA regime, custody services will require authorisation — which means the standards applied to custodial wallets offered by UK-regulated exchanges will significantly increase.
Trezor
Safe 7 — open-source transparency with quantum-ready design
Trezor is made by SatoshiLabs, a Czech company that produced the first commercial hardware wallet in 2014. The entire product line — hardware designs, firmware and companion software — is fully open source and independently audited. Users can examine and verify what is running on their device rather than trusting the manufacturer's claims.
The flagship Trezor Safe 7, announced in October 2025, introduces TROPIC01, described by SatoshiLabs as the world's first fully auditable secure element. The device features a 2.5-inch colour touchscreen, a metal unibody construction, Bluetooth Low Energy and Qi2 wireless charging. Its quantum-ready architecture allows post-quantum firmware updates as cryptographic standards evolve, extending the device's operational lifespan without requiring hardware replacement.
Earlier models remain available: the Model T (touchscreen, microSD backup), the Safe 5 with EAL6+ certification, and the original Model One. All are open source and compatible with the Trezor Suite desktop and mobile application.
- Fully open source: Hardware, firmware and software are open source and regularly audited; TROPIC01 is fully auditable — a first for the category
- Quantum-ready: Safe 7 designed to receive post-quantum firmware updates as standards evolve
- Layered security: Dual secure elements isolate keys; all transactions require physical confirmation on the device
- Limitation — no battery: Devices must be powered externally; wireless charging available on Safe 7 but requires a power source during use
- Limitation — wireless: Trezor recommends USB-C for maximum security; some users disable Bluetooth entirely
Side by side
Ledger Nano Gen5 vs Trezor Safe 7
| Feature | Ledger Nano Gen5 | Trezor Safe 7 |
|---|---|---|
| Key storage | Certified Secure Element, BOLOS firmware | Open-source firmware, auditable TROPIC01 SE |
| Firmware | Closed source, audited | Fully open source, community audited |
| Display | E Ink touchscreen, Clear Signing | 2.5” colour touchscreen, physical confirmation |
| Connectivity | USB-C, Bluetooth, NFC | USB-C, Bluetooth Low Energy, Qi2 charging |
| Recovery | Optional paid Recover service | Seed phrase; post-quantum seeds planned |
| Approx. price | ~£140 (Oct 2025) | ~£195; older models cheaper |
| Best suited for | Convenience, integrated DeFi services | Open-source priority, long-term security |
The choice between Ledger and Trezor is largely a question of values: proprietary secure hardware with integrated services versus fully open-source transparency with quantum-ready design. Both companies state that no device has been compromised when used correctly. Always purchase hardware wallets directly from the manufacturer's official website — second-hand devices carry a risk of physical tampering that cannot be reliably detected.
Market impact snapshot
Hardware wallet sales in the UK increased following several high-profile exchange insolvencies globally, as users sought to reduce platform counterparty risk.
Next in this series
Part 2: Beyond Ledger and Trezor
NGRAVE, SafePal, BitBox02, Coldcard and Keystone — hardware wallets for different priorities, from extreme air-gap isolation to Bitcoin-only security.