Your Bitcoin is your legacy, not just an asset. We’ve built the Fort Knox of Bitcoin; a fortress of layered, institutional-grade protection so you can stop worrying about threats to your wealth and start enjoying the freedom it can provide.1, 2
Military-grade bunkers
Self-custody was once a necessity; today, it is a liability. We’ve replaced the risks of personal hardware with geographically distributed, military-grade bunkers. Your Bitcoin is protected behind rock and steel—giving you the ultimate security for your wealth.2
Military-Grade Construction: Bunkers designed to withstand natural disasters and military-level attacks.
Undisclosed & Remote Locations: Bunkers are purposefully remote and their locations kept undisclosed.
Strict Access Control: Facilities are protected by armed guards and requires multiple layers of authentication to access.
Entirely Offline: Wallets are offline and are housed in Faraday cages to protect against electromagnetic pulses.
Multi-Party Computation (MPC) technology
Your private key never exists in its entirety, eliminating the risk of a single breach. Using Multi-Party Computation (MPC), we distribute encrypted "shards" across multiple secure locations, including our bunkers. This ensures that your Bitcoin only moves when you authorise it.
No Single Point of Failure: An attacker would need to breach multiple, independent systems simultaneously to access your BTC at Xapo Bank.2
Elimination of Seed Phrases: Eliminate the need for a seed phrase & reduce the risk of account loss due to misplaced backups.
Account Recovery: If you lose access to your device, you can regain access to your account with Xapo Bank’s MPC, through multiple independent security checks.2
App Security & User Controls
The Xapo Bank app provides granular control over your wealth without the traditional burdens of self-custody. We’ve built a financial ecosystem that respects your independence, delivers a high level of protection, and lets you focus on your future, not your hardware.
End-to-end Encryption: Data transmitted between your device and our servers remains confidential and tamper-resistant ensuring total privacy.
Biometric Security: Use your fingerprint or Face ID for an extra layer of security & connivance.
Jailbreak/Root Detection: The app can detect if your device’s security has been compromised and proactively blocks access to keep your funds safe.
Hardware Security Keys: A physical hardware key means even if your device is stolen, it is still locked and your account is secure.
Capital Ratio167%
EstablishedIn 2013
Liquidity Ratio1663%
Capital Ratio167%
EstablishedIn 2013
Liquidity Ratio1663%
The BTC Vault
The BTC Vault is designed for long-term, secure storage of your Bitcoin, with a unique set of security features to protect your wealth.2
Mandatory 48-Hour Withdrawal Delay: A two-day window to cancel any transaction you did not authorise.
Hide Vault Option: Choose to hide your BTC Vault from the app's main view
Hardware keys: Hold a physical key, to your digital vault.
FAQs
See all FAQs
As a fully licensed institution, regulated by the Gibraltar Financial Services Commission (GFSC), Xapo Bank is legally bound to the highest global standards for data privacy, including GDPR. This ensures that your personal information is handled with the utmost care and is protected against unauthorised access.
The BTC Vault is an optional, enhanced security feature for your Bitcoin. It adds an extra layer of protection by requiring a mandatory PIN confirmation and enforcing a 48-hour withdrawal delay. This delay gives you a critical window to cancel any unauthorised transaction, providing peace of mind for your long-term Bitcoin holdings.
Savings on the Xapo Bank app offer a secure alternative to the traditional USD & BTC Wallet. Savings is not directly connected to debit card transactions or external financial transfers You must first transfer funds to the USD or BTC Wallet before they can be spent via debit card transactions or be transferred out. This means that if your card is stolen or compromised and payment attempts are made, all funds in your Savings account will be protected from being spent. A PIN/biometric validation is required when transferring funds out of Savings.
Xapo Bank implements strong two-factor authentication (2FA) as a core part of its security framework to protect your account access. We also use multi-layered authentication that typically includes methods like biometric authentication (using your fingerprint or facial recognition on your device), PIN/Password as your primary credential, and linking your account to trusted devices.
Multi-Party Computation (MPC) is a cryptographic technology that Xapo Bank uses to manage access to your crypto funds. Instead of relying on a single private key—which creates a single point of failure—MPC splits the key's authority across multiple parties. This means that no single individual or compromised server can ever access your crypto assets, dramatically increasing security.
No. Even if your phone is lost or stolen, your account remains secure. Thanks to the multi-layered security model, including biometric authentication, a thief would not be able to pass the security checks required to access your account or move your funds. Additionally, your can reach your dedicated Relationship Manager through other means and they can assist you in locking your account.
Yes, members can link their accounts to hardware keys, such as a YubiKey, meaning the only way to access their account is through a dedicated hardware key that can be kept separate from your phone. This means when you and your phone are separate from the key, there is no way to access, or to be forced to access, your account.
As a fully licensed institution, regulated by the Gibraltar Financial Services Commission (GFSC), Xapo Bank is legally bound to the highest global standards for data privacy, including GDPR. This ensures that your personal information is handled with the utmost care and is protected against unauthorised access.
Multi-Party Computation (MPC) is a cryptographic technology that Xapo Bank uses to manage access to your crypto funds. Instead of relying on a single private key—which creates a single point of failure—MPC splits the key's authority across multiple parties. This means that no single individual or compromised server can ever access your crypto assets, dramatically increasing security.
The BTC Vault is an optional, enhanced security feature for your Bitcoin. It adds an extra layer of protection by requiring a mandatory PIN confirmation and enforcing a 48-hour withdrawal delay. This delay gives you a critical window to cancel any unauthorised transaction, providing peace of mind for your long-term Bitcoin holdings.
No. Even if your phone is lost or stolen, your account remains secure. Thanks to the multi-layered security model, including biometric authentication, a thief would not be able to pass the security checks required to access your account or move your funds. Additionally, your can reach your dedicated Relationship Manager through other means and they can assist you in locking your account.
Savings on the Xapo Bank app offer a secure alternative to the traditional USD & BTC Wallet. Savings is not directly connected to debit card transactions or external financial transfers You must first transfer funds to the USD or BTC Wallet before they can be spent via debit card transactions or be transferred out. This means that if your card is stolen or compromised and payment attempts are made, all funds in your Savings account will be protected from being spent. A PIN/biometric validation is required when transferring funds out of Savings.
Yes, members can link their accounts to hardware keys, such as a YubiKey, meaning the only way to access their account is through a dedicated hardware key that can be kept separate from your phone. This means when you and your phone are separate from the key, there is no way to access, or to be forced to access, your account.
Xapo Bank implements strong two-factor authentication (2FA) as a core part of its security framework to protect your account access. We also use multi-layered authentication that typically includes methods like biometric authentication (using your fingerprint or facial recognition on your device), PIN/Password as your primary credential, and linking your account to trusted devices.
What our members say about Xapo Bank’s security
