WALLETS & SECURITY
Are Paper Wallets Still Safe? How to Create Secure Physical Backups in 2026
Before hardware wallets existed, before software wallets were polished consumer products, and before the cryptocurrency industry had developed the security infrastructure it has today, the paper wallet was the primary method of cold storage for Bitcoin and other early cryptocurrencies. It is the simplest form of cold wallet possible: a physical document containing the private key and public address of a cryptocurrency wallet, printed or written on paper and stored offline.
Understanding what a paper wallet is, how it works, why it was historically significant, and why it has been largely superseded by hardware wallets for most use cases is useful context for any investor building a comprehensive understanding of cryptocurrency security. For some specific use cases, paper wallets or their metal equivalents remain relevant. For most investors, the limitations of paper wallets make them a less appropriate choice than modern alternatives.
What a Paper Wallet Contains
A paper wallet is a physical record of two pieces of information: a private key and its corresponding public address.
The public address is the address you share with others to receive cryptocurrency. It is derived from the private key through a one-way cryptographic function: knowing the public address reveals nothing about the private key. Anyone can send cryptocurrency to a public address, and anyone can look up its balance on a blockchain explorer. The public address being public is not a security risk.
The private key is the credential that authorises spending the cryptocurrency held at the corresponding public address. As covered in our private keys resource, whoever controls the private key controls the funds. The private key must be kept absolutely secret: anyone who sees it can immediately drain the wallet.
Both pieces of information are typically printed on a paper wallet in two forms: as a long alphanumeric string and as a QR code that can be scanned by a wallet application. The QR code format makes it easier to scan and import the key without manually typing a long string of characters.
How a Paper Wallet Works
The mechanics of a paper wallet are straightforward. The private key and public address are generated, recorded on paper, and the paper is stored offline. Because the private key exists only on the paper and never on any digital device, there is no digital attack surface. No malware can steal a private key that doesn’t exist on any computer or phone.
To receive cryptocurrency to a paper wallet, you share or scan the public address QR code. The cryptocurrency is sent to that address on the blockchain and is visible to anyone who looks up the address on a blockchain explorer. The paper wallet holds the key to those funds, not the funds themselves: the cryptocurrency exists on the blockchain, the paper holds the credential to access it.
To spend cryptocurrency from a paper wallet, you must import or “sweep” the private key into a software wallet or other signing tool. The wallet application uses the private key to sign the outgoing transaction. At this point, the private key is exposed to a digital environment, and the cold storage property of the paper wallet ends. This transition from cold to hot when spending is one of the most significant security considerations for paper wallet users.
The History of Paper Wallets
Paper wallets emerged in Bitcoin’s earliest years as a practical solution to the problem of securely storing Bitcoin without trusting any third-party custodian. At the time, the alternatives were limited: software wallets were rudimentary and the risks of malware-based theft were already apparent, while hardware wallets as a consumer product category didn’t yet exist.
BitAddress.org, launched in 2011, became the most widely used paper wallet generator for Bitcoin, allowing users to generate a Bitcoin address and private key entirely within a browser and print the result. The tool could be downloaded and run completely offline, addressing the concern about internet-based key generation. At its peak, paper wallets were recommended by many in the Bitcoin community as the gold standard for cold storage.
As the cryptocurrency industry matured and hardware wallets became widely available and affordable, paper wallets were gradually superseded for most use cases. The complexity of generating them securely, the risks of physical degradation, and the complications of partial spending made them less practical than dedicated hardware wallets for typical investors.
How to Generate a Paper Wallet Safely
If you are generating a paper wallet, the security of the generation process itself is as important as the security of storing the result. A private key generated on a compromised or internet-connected computer may have been seen by malware during generation, making the resulting paper wallet insecure from the moment it was created.
The secure process for generating a paper wallet involves several critical steps.
Use a dedicated, clean device. Ideally, generate the paper wallet on a freshly installed operating system that has never been connected to the internet, or on a device that has been verified as clean of malware. A computer booted from a live USB drive running a clean operating system, without connecting to any network, provides a high degree of confidence that the generation environment is uncompromised.
Download the generator tool before going offline. Download a reputable, open-source paper wallet generator, verify its integrity through the developer’s published checksum, then disconnect from the internet before using it. BitAddress.org allows downloading its complete code for offline use.
Generate the private key with strong randomness. Most paper wallet generators ask you to move the mouse randomly or type random characters to add entropy to the key generation process. The randomness of the private key is fundamental to its security: a predictably generated key is a compromised key.
Print to a non-networked printer. Printing to a network-connected printer transmits the document containing the private key over the network and may store it in the printer’s memory. Use a printer connected directly via USB to the generation computer and not connected to any network.
Verify the generated address. After printing, verify the public address on a blockchain explorer to confirm it is a valid address. Send a small test amount and verify it arrives before storing the paper wallet as a primary cold storage solution.
Store multiple copies securely. The paper itself is vulnerable to physical damage: fire, water, fading, and simple physical degradation over time can render a paper wallet unreadable. Storing multiple copies in different physically secure locations, considering lamination for protection against moisture, and testing readability before relying on the wallet for significant storage all reduce the risk of loss.
The Risks and Limitations of Paper Wallets
Paper wallets carry several significant risks that have made them less recommended relative to hardware wallets for most investors. Understanding these risks clearly is essential before using a paper wallet for any significant amount.
Physical vulnerability. Paper is fragile. Fire, water, fading ink, physical tearing, and simple degradation over time can all render a paper wallet permanently unreadable. A paper wallet storing significant cryptocurrency that is destroyed in a house fire with no backup is a permanent total loss. As covered in our seed phrase storage advanced techniques resource, metal backups that stamp or engrave key information into stainless steel solve this specific problem and represent the next evolution of the paper wallet concept.
Generation security complexity. Creating a genuinely secure paper wallet requires a level of technical knowledge and process discipline that most investors don’t have. The steps required: a clean offline device, a verified generator tool, a non-networked printer, and secure offline storage, are more complex than setting up a hardware wallet and require careful execution at every step. A single mistake in the generation process can compromise the private key from the outset.
The partial spend problem. This is one of the most significant and frequently misunderstood risks of paper wallets, particularly for Bitcoin. Bitcoin’s UTXO transaction model, as covered in our how cryptocurrency transactions work resource, means that when you spend Bitcoin from an address, the entire UTXO is consumed and change is returned to a change address. If you import a paper wallet private key into a software wallet to spend a portion of the Bitcoin it holds, the change may be automatically sent to a new address generated by the software wallet rather than back to the original paper wallet address. This can result in the remaining Bitcoin being held at an address that the original paper wallet no longer controls, effectively losing the unspent portion if the software wallet isn’t preserved. The safest approach is to sweep the entire balance of a paper wallet in a single transaction rather than spending partial amounts.
Exposure during sweeping. When you sweep a paper wallet by importing the private key into a software wallet to spend the funds, the private key is exposed to the digital environment of that software wallet. If the device running the software wallet is compromised at that moment, the private key can be stolen. Once a paper wallet private key has been swept into a software wallet, the paper wallet should be considered hot and the cold storage property is gone.
No seed phrase backup. Unlike hardware wallets and software wallets that generate a seed phrase capable of recovering all addresses and assets, a paper wallet backs up a single address and its corresponding private key. Each paper wallet address requires its own separate physical backup. An investor using multiple paper wallets for different assets must maintain multiple separate physical backups, each of which is a potential point of failure.
No native multi-asset support. A single paper wallet is specific to one blockchain and one address. A Bitcoin paper wallet cannot hold Ethereum. An Ethereum paper wallet cannot hold Solana. Investors holding multiple assets need multiple paper wallets, each with its own generation process and physical storage requirements.
Paper Wallets vs Hardware Wallets: The Direct Comparison
For the vast majority of investors considering cold storage, a hardware wallet is a superior choice to a paper wallet across nearly every dimension.
Security of generation. Hardware wallets generate private keys inside their isolated chip, which is specifically designed for secure key generation. Matching this security with a paper wallet requires a more complex and error-prone offline generation process.
Physical durability. A hardware wallet is a durable electronic device. The seed phrase backup, stored on metal, is physically more durable than paper. Paper wallets are vulnerable to physical degradation that hardware wallet setups handle better.
Ease of use. Hardware wallets have companion software that makes sending, receiving, and verifying balances straightforward. Paper wallets require importing private keys into a software wallet to spend, with the associated sweeping risks.
Multi-asset support. A single hardware wallet with one seed phrase can manage Bitcoin, Ethereum, Solana, and thousands of tokens across many networks. Paper wallets are single-address, single-chain.
Transaction signing security. Hardware wallets sign transactions inside their isolated chip without exposing the private key. Paper wallets expose the private key to a digital environment every time a transaction is signed.
The primary advantage of a paper wallet is cost: it is free to create. A hardware wallet requires purchasing a dedicated device, typically costing between $80 and $300 AUD. For investors holding significant cryptocurrency, this cost is trivial relative to the security improvement. For investors with very small holdings where the cost of a hardware wallet is disproportionate to the value being secured, a paper wallet generated with proper security precautions represents a legitimate though more complex cold storage option.
When Paper Wallets Still Make Sense
Despite their limitations, paper wallets retain relevance in several specific use cases.
Long-term archival storage. A paper wallet, or better, a metal seed phrase backup of a private key, stored in a physically secure location such as a safety deposit box or a fireproof safe, can serve as an archival backup for cryptocurrency that is never intended to be moved. For very long-term storage where the intention is to hold an asset for decades, a paper or metal backup kept in a secure physical location that is never brought near an internet-connected device maintains the cold storage property indefinitely.
Cryptocurrency gifts. Paper wallets preloaded with a small amount of Bitcoin or Ethereum make tangible cryptocurrency gifts that can be physically handed to the recipient. The recipient can import the private key into their own wallet when ready to access the funds.
Educational demonstrations. Paper wallets provide a concrete, tangible illustration of the public key and private key concept that is useful for educational purposes.
Redundant backup for hardware wallet seed phrases. While not a wallet itself in active use, the concept of paper storage: recording critical information on a physical medium stored offline, is the foundation of seed phrase backup practice for all cold storage approaches. Metal backups apply the same concept with greater physical durability.
Tax Considerations for Paper Wallet Users
For Australian investors using paper wallets, the tax treatment of cryptocurrency holdings and transactions follows the same principles as any other wallet type. Generating a paper wallet and sending cryptocurrency to it is not a taxable event: it is a transfer of assets you already own to cold storage.
Sweeping a paper wallet, importing the private key and spending the funds, is also not a taxable event in itself. The taxable event occurs when the cryptocurrency is disposed of: sold, traded, or used to purchase goods and services.
Maintaining records of what was sent to paper wallet addresses, when, and at what cost base is essential for future ATO crypto reporting obligations. The public address of a paper wallet can be used to look up the complete transaction history on a blockchain explorer, providing a permanent record of all inflows and outflows regardless of whether paper records have survived. Our cryptocurrency tax Australia and capital gains tax for cryptocurrency in Australia resources provide the complete framework.
Key Takeaways
A paper wallet is a physical document containing a cryptocurrency private key and public address, providing cold storage by keeping the private key entirely offline. It was the primary cold storage method in Bitcoin’s early years before hardware wallets became available. Its significant limitations include physical vulnerability to damage and degradation, the complexity of secure generation, the partial spend problem with Bitcoin’s UTXO model, private key exposure during sweeping, single-address single-chain limitations, and the absence of a seed phrase backup covering multiple assets.
For most investors, a hardware wallet is a superior cold storage solution across every meaningful dimension. Paper wallets retain relevance for long-term archival storage, cryptocurrency gifts, and educational demonstrations. Metal backups of private keys or seed phrases address the physical durability limitation while maintaining the offline security property.
For everyday investors who want to understand cold storage options and make informed decisions about how to secure their cryptocurrency holdings properly, our Runite Tier Membership provides the education and frameworks to do exactly that. For serious investors who want personalised guidance on their complete security architecture across all cold and hot storage solutions, our Black Emerald and Obsidian Tier Members receive direct specialist support.
Find out more at shepleycapital.com/membership.
WRITTEN & REVIEWED BY Chris Shepley
UPDATED: MARCH 2026
Choose your next topic from our Cryptopedia
