Custody Model

Encrypto's embedded wallet is non-custodial through a Trusted Execution Environment. The user's private key is generated and sealed inside the TEE on first sign-in and never leaves it. Encrypto cannot access user keys or move user funds. Only the user, authenticated through their session, can authorize a transaction.

Recovery

Recovery is by authentication, not by seed phrase. The user signs in through any configured method (email, Google, X, phone, or external wallet) and signing access resumes. Losing access to every configured method may permanently lose access to the embedded-wallet balance. Enable multiple methods, or export the key, to mitigate that.

External wallets

Users who prefer to hold their own keys can connect any of 500+ supported external wallets. External wallets stay external; Encrypto requests signatures at execution time only.

Where Encrypto does not custody

Encrypto does not operate a custodial wallet, an internal multisig, or a pooled user-asset omnibus. Crypto sits in the user's TEE-sealed wallet or in an external wallet they connect. Fiat conversion, card settlement, and payment-rail delivery are performed by licensed partners, each holding the regulatory scope for its layer.