Desktop installs
500K+
Non-custodial users on Windows, macOS & Linux.
Built for power-users: M-of-N multisig wallets, encryption at rest, zero telemetry, and FREE Gas (Energy) routing for seamless transfers.
Non-custodial users on Windows, macOS & Linux.
Years of real-world production usage.
Stable desktop builds, not just marketing drops.
Install the hardened desktop app for your primary device. See installation docs for full setup steps.
The app is built as three concrete layers — Vault, Routing, and Operator Console — so you always know what protects keys, what moves funds, and what you control.
Every feature in the app belongs to one of three layers. Together they form a stack that’s predictable to reason about — even under stress.
The feature cards on the right are grouped by layer, so you can quickly see what protects what. Learn how these layers interact in the security model and the networking docs.
See Networking & FREE Gas docs for technical details.
A few of the people and teams you’re most likely to meet first when you open issues, propose changes, or ask for help.
Core maintainer · Runtime
Keeps the runtime stable, reviews risky changes, and makes sure upgrades don’t break real-world setups.
Documentation · Guides
Turns rough notes, edge cases, and internal checklists into clear, “copy–pasteable” guides that teams can actually follow.
Multisig setups · Protocol design
Contributes real-world M-of-N schemes, rotation patterns, and failure modes for teams that must not lose access or continuity.
These are just some of the folks involved — there’s a wider group of reviewers, translators, and maintainers you’ll see across issues and pull requests.
Straight answers to the important questions: who controls your keys, how FREE Gas behaves, what happens if you lose your password, and how to verify that the build is legitimate.
This is a non-custodial wallet: you hold your own keys and seeds. For a deeper explanation of how keys are stored and encrypted, see the security model.
Yes. The app supports full M-of-N multisig wallets. You can define how many signatures are required, assign named cosigners, and approve transactions from separate devices or operators before they are broadcast on-chain. For a full step-by-step example, see the multisig setup guide.
Your seed never leaves your machine. It is encrypted using Argon2id and additionally sealed in the operating system keychain (Windows, macOS, or Linux, depending on your platform). We do not transmit or store your recovery secrets on our infrastructure.
No. With Ledger or Trezor, all sensitive operations happen on the hardware device itself. The desktop app only requests public data (addresses) and signatures for specific transactions that you explicitly confirm on the device’s screen.
No. Telemetry is disabled by default. You can optionally enable anonymous crash reports; these never include private keys or full wallet addresses. All outbound network calls are documented in the security whitepaper so you can review exactly what the app talks to.
Open Settings → Backup, export an encrypted backup archive, and store it offline (for example, on a USB drive kept in a safe). Store the backup password separately from the file. Periodically test the restore flow on a spare device or virtual machine to make sure your backup actually works.
FREE Gas (Energy) can subsidize or optimize network fees for supported transfers. If relays are unavailable, the app falls back to standard on-chain fees. Technical details are covered in the Networking & FREE Gas docs.
Yes. You can disable FREE Gas per-wallet or per-transaction. In that mode, the built-in fee estimator selects an appropriate network fee and you pay it directly from your funds, like in a traditional wallet.
There is no password reset. Always keep your seed phrase and backups in separate, safe locations. Periodically test the restore flow with small amounts. A full overview is in Keys, backups & recovery.
After downloading a build, compute the SHA256 hash of the file and compare it with the published checksum for your platform. Then, optionally verify the PGP signature using our public key. Only run the installer if both checks pass.
USDT can exist on multiple networks, and “USDT” on one network is not automatically compatible with another. Always pick the same network on both sides (your wallet and the sender/exchange) before you copy an address or confirm a withdrawal. In the app, use the network selector on the Receive/Send screen and double-check the network badge shown next to the address.
Sometimes — but not always. First, do not send any more funds. Find the transaction on the explorer for the network you used and confirm the destination address. If the receiving address is yours (derived from your seed/hardware wallet) and that network uses compatible key derivation/address formats, you may be able to access the funds by importing the same seed into a wallet that supports that network. If you sent to an exchange or a custodial service, recovery depends on their policy — contact their support and provide the transaction hash.
A pending transaction usually means the network fee was too low for current congestion, or a relay/broadcast step failed. Check the transaction status in the explorer. If the network supports fee replacement (speed-up / replace-by-fee), you can re-broadcast with a higher fee using the same nonce/sequence (when available). If you’re using FREE Gas and a relay is temporarily unavailable, try again later or disable FREE Gas for that send and pay a normal on-chain fee to broadcast directly.
Yes. For normal on-chain sends, you can choose a recommended speed tier and (where supported) switch to an advanced/manual fee. Lower fees can save money but may delay confirmation; extremely low fees can leave a transaction pending for a long time. If you don’t understand the fee fields, stick to “Standard” or “Fast” during busy network periods.
A relay can see the transaction data it needs to broadcast (like the recipient, amount, and network), plus typical network metadata (like timing and your IP address). It never receives your seed phrase or private keys. If you want to minimize relay exposure, disable FREE Gas for that transaction and broadcast directly with a normal fee, and consider using a VPN/Tor at the system level.
You can reveal the recovery phrase only locally after unlocking the wallet. Do it in a private place, offline if possible, and never store it in screenshots, notes apps, cloud drives, or email. Anyone who gets your seed can drain your funds — there’s no “chargeback” or “account recovery” in crypto.
Treat every new recipient as high-risk. Verify the first and last characters of the address (or scan a QR), and use an address book with labels once verified. For larger transfers, send a small test amount first. Hardware wallets add a strong safety layer because you confirm critical details on a trusted device screen, not on the potentially compromised computer.
Some deposit systems (especially at exchanges) require an additional identifier (memo/tag/payment ID) so they can credit your account internally. If the destination provides one, you must include it exactly — missing or incorrect IDs can delay crediting and may require a manual support ticket. When in doubt, follow the exchange’s deposit instructions for that specific asset and network.
Never. Not for troubleshooting, not for refunds, not for upgrades. Any person or website asking for your seed, private key, or a “verification transaction” is trying to steal funds. Only install builds from official sources, verify checksums/signatures, and ignore DMs offering “urgent help” or “recovery services”.
