By the end of this you will know what a wallet actually holds, which one secret controls everything you own, and the survival rules that follow from the mechanics, not from being told.
In Act 1 you used a wallet the way you use a banking app: a thing that holds your money. Now that you have opened the ledger, that picture has to change. A wallet holds no coins. It holds keys.
Hold one idea for the whole checkpoint, because everything else is a consequence of it. There is no door to guard, no lock to pick, no building to break into. The key is the account itself. Whoever holds the key is the owner. Understand that one fact and the survival rules stop being a list you memorize and start being obvious.
Remember the ledger nobody owns. Your coins are not objects sitting in an app on your phone. They are a row on that shared ledger, copied across thousands of computers. The wallet on your phone never held them.
So what is in the wallet? The key. A secret that lets you sign instructions the ledger will accept as coming from the owner of that row. Lose the phone and buy a new one, and the coins are still there on the ledger, waiting, as long as you still hold the key. The wallet is a keyring, not a vault.
Two things come out of one secret. The private key is the secret that signs. From it, the wallet generates an address: a long string of characters that is your public mailbox, the thing you hand out so people can send you coins.
The arrow runs one way only. The key creates the address; the address can never reveal the key. That is why the address is safe to share and the key is not. There is no name attached to any of it. The ledger does not know who you are. It only checks: was this instruction signed by the key that controls this row? Hold the key, you are the owner. No account manager, no password reset, no appeal.
When you first set up a wallet it shows you a list of ordinary words, usually twelve or twenty-four, and tells you to write them down. Those words are the seed phrase, and they sit above everything. From that one phrase the wallet can regenerate every private key and every address it will ever use.
That is its power and its danger in the same sentence. Type the phrase into a fresh wallet on any device and your whole account reappears. Which means anyone who reads those words can do the same, from anywhere, and there is no central office that can stop them or undo it. The seed phrase is not a password. A password can be reset. This cannot.
Here is the rule that protects you, and it follows straight from the mechanics you just saw. Some of these things exist to be given out. Others are the account itself. Mixing them up is how people lose everything in one message.
Tap each row on the board to see whether it is safe to share.
So how do you ever use the key if you can never share it? You sign. When an app wants to move your coins or connect to your wallet, it hands your wallet the request, the key signs it inside the wallet, and only the signature, the proof, travels out onto the ledger. The secret itself stays put.
This is the everyday motion of the whole space, and it explains the line you just drew. A real app will ask you to sign. It will never ask for the key or the seed phrase, because it does not need them to get your approval. Anything that asks you to type your words instead of sign with them is not requesting approval. It is requesting the account.
There are two ways to hold this key, and one sits at each end of a spectrum. On one end, an exchange holds the keys for you, exactly the internal table from CP3: you log in with a password, and the company controls the actual secret. On the other end is self-custody: you hold the seed phrase, and no company stands between you and the ledger.
Neither is the right answer for everyone, and this is not a morality test. The exchange can freeze you, get hacked, or fail, but it can also help you recover a forgotten password. Self-custody removes the company entirely, which removes their failures and hands every one of them to you. Custodial trusts an institution. Self-custody trusts your own discipline. You will choose between them based on how much is at stake and how confident you are.
Now the rules you may have heard shouted at you, laid out as what they actually are: direct consequences of everything above. Never share the seed phrase, because it is the entire account and not a password. Keep it off photos, cloud notes, and any website, because a phrase a thief can read is a phrase a thief can use from anywhere.
Always check the address before you send, because the ledger sends to exactly the address you signed, with no clerk to catch a mistake. And accept that nothing on-chain can be reversed: there is no owner of the ledger to call, no reset button, only a record of what was signed. None of this is meant to frighten you. It is the same fact stated five ways, so that the right move feels obvious instead of memorized.
Picture this, because it is the single most common way people are robbed in this entire space. You mention a small wallet problem somewhere public. Minutes later a friendly account messages you: a support agent, here to help. They are calm, they sound official, and to fix your account they just need you to confirm your seed phrase.
Nothing is broken with your account. The message is the attack. So look at the board and run the line you drew two steps ago, before you reply.
It is tempting to leave here with a hard rule: never trust a company, self-custody everything, starting tonight. That is the destination, but rushing a beginner to it on day one trades one risk for a bigger one.
You now know what almost nobody around you knows: where coins actually live, what a wallet really holds, which secrets are the account itself, and why every survival rule follows from one fact instead of a list.
So you hold a key, and you can sign things with it. Which opens the next door: the moment you press send, what actually happens between your tap and the money arriving?
Next: the life of a transaction, from your hand to the point of no return.