How to protect your Proton Wallet
Your Proton Wallet is protected by the same encryption that secures Proton Mail. We provide a number of ways to help you secure your account against phishing attacks(new window) and other threats. Here are some steps you should take to ensure your Proton account remains safe.
- Strong password
- Two-factor authentication
- Recovery methods
- Optional wallet passphrase
- Mask amount
- Unlock your Proton Wallet mobile app with biometrics
- Proton Sentinel
Strong password
When creating your Proton account, use a unique, strong password that’s different from passwords you use for other accounts.
For the best and safest password, we recommend using a password at least 12 characters long, with a combination of numbers and symbols. Learn more about creating a strong password.
Beware of phishing scams designed to steal your password. Always double-check the website address before entering your Proton credentials.
Two-factor authentication
In addition to setting up a strong password, you may also want to enable two-factor authentication (2FA) as an extra layer of security for your online accounts.
2FA requires two different ways to prove you are who you say you are, typically a password and a code generated by an authenticator app. This makes it much harder for hackers to break into your accounts, even if they steal your password.
You will need an authenticator app to use 2FA with Proton Wallet. An authenticator app running on a smartphone generates six-digit time-based one-time passwords(new window) (TOTPs) that you can use to sign in to your Proton Wallet. These prove you are in physical possession of a device registered to your Proton Wallet.
This means even if an attacker somehow steals your password, they still cannot get into your account without the 2FA code generated by your device. This adds an extra layer of security.
To enable 2FA, you must first install an authenticator app on your device and have it with you while logging in to your account. There are many authenticator apps to choose from. Below are a few options, but this is by no means a definitive list:
Android:
iOS and iPadOS:
How to enable 2FA in Proton Wallet
On your mobile app
1. From your Wallet homepage, there are two ways to access the 2FA setup. First, you can tap on Secure your wallet.
And select Set up 2FA to secure your account.
Or you can also access 2FA settings via your left side panel. Open it, expand User settings, and select Security.
2. A new window will appear. To enable 2FA, tap on the toggle.
This will bring up an information panel. Tap Next when you’re ready to start.
3. You will now see a QR code.
Open the authenticator app on your mobile device, select the option to scan a QR code, and point your device’s camera at it. Note: Do not scan the demo image shown below. Scan the image shown in your account settings.
As you may already be on your mobile, if you prefer, you can enter the 2FA key into your authenticator app manually by tapping on the Enter key manually link shown below the QR code.
Once you have successfully added your Proton Wallet account to your authenticator app, tap Next.
4. Enter your Proton account password and the six-digit time-sensitive code provided by your authenticator app. Tap Submit when you’re done.
Proton Wallet will now generate several one-time recovery codes for your account. These codes are crucial for account recovery.
Please securely store these codes in a location you can easily access, such as an encrypted note in your password manager. Losing these codes could result in permanent loss of access to your account.
If you ever lose your authentication device (like your phone), these recovery codes are your only way to regain access. Each code can be used only once, so keep them safe.
On your web app (wallet.proton.me)
1. From your Wallet homepage, there are two ways to access the 2FA setup. You can click on Secure your wallet and then click on Set up 2FA to secure your wallet.
Or you can also access 2FA settings via the left side panel. Expand User settings and click on Security. You’ll be redirected to your Account Settings.
2. In the settings window, go to Account and password. Under the Two-factor authentication section, turn the Authenticator app switch on.
This will bring up an information panel. Click Next when you’re ready to start.
3. You will now see a QR code. Open the authenticator app on your mobile device, select the option to scan a QR code, and point your device’s camera at it. Note: Do not scan the demo image shown below. Scan the image shown in your account settings.
If you prefer, you can enter the 2FA key into your authenticator app manually by clicking on the Enter key manually link shown above.
Once you have successfully added your Proton Wallet account to your authenticator app, click Next.
4. Enter your Proton account password and the six-digit time-sensitive code provided by your authenticator app. Click Submit when you’re done.
5. Proton Wallet will now provide you with several one-time use recovery codes. Please save these codes in a secure place (such as an encrypted note in your password manager) and do not lose them.
If you ever misplace or lose your authentication device (mobile phone, etc.), these codes provide the only way to log in to your account. If you lose your device, you can enter these codes instead of the six-digit code provided by your authenticator code app. Each code can only be used once, so save all the codes.
Recovery methods
Proton never has custody or control of your wallets or BTC. It is your responsibility to back up the following recovery methods. If you forget your Proton password, the recovery methods are the only way for you to recover your wallets and BTC.
Proton account recovery phrase
You should back up your Proton recovery phrase in case you forget your Proton password. This recovery phrase will recover all your encrypted data, including the wallets inside your Proton account. This means you must securely store this recovery phrase and not give it to anyone. If an attacker knows your recovery phrase, they can take over your wallets by accessing your Proton Wallet account.
How to set a recovery phrase for your Proton Wallet:
On your mobile app
1. In the left side panel, tap Recovery.
2. A new window will appear. To enable Recovery phrase, tap on the toggle.
3. Type your password to authenticate.
4. Then the recovery phrase will be displayed.
Please store your recovery phrase securely, as it’s required to recover your account and data if you forget your password.
For more information, see our support article Set account recovery methods in case you forget your Proton password.
On your web app (wallet.proton.me)
1. In the left side panel, click on User settings to expand the options. Click Recovery.
2. In the web app, you’ll be redirected to your Proton account. Under the Data recovery section, enable Recovery phrase by clicking the toggle.
3. Type your password to authenticate.
4. Then the recovery phrase will be displayed.
Please store your recovery phrase securely, as it’s required to recover your account and data if you forget your password.
For more information, see our support article Set account recovery methods in case you forget your Proton password.
Wallet seed phrase
Your wallet seed phrase encodes the private key that controls your digital assets. You can use your seed phrase to recover your wallet and the BTC it contains with any Bitcoin wallet provider.
The wallet seed phrase should only be used to recover the digital assets of your wallet as a last resort, such as if you lose access to your Proton account.
Unlike the Proton recovery phrase, the wallet seed phrase cannot recover encrypted metadata, such as notes or Bitcoin via Email messages. The wallet seed phrase can only recover the data stored on the public blockchain, such as your BTC. Never give your seed phrase to anyone else. Be extra careful of phishing attacks that try to trick you into inputting your seed phrase on phishing websites.
How to find your seed phrase in Proton Wallet
Each wallet in your Proton Wallet account has its own seed phrase. Here’s how to find it:
1. From your Wallet homepage, click or tap the ⚙ button next to your wallet’s name.
2. In the wallet preferences menu, scroll down to the bottom and click or tap View more. Then click or tap View wallet seed phrase.
3. Enter your password and authenticate.
4. Click or tap View wallet seed phrase.
5. Write down your seed phrase in numerical order and hide it in a safe place. Ensure no one else can see it.
Optional wallet passphrase
When you create your first wallet creation, Proton Wallet keeps it simple and does not ask for a wallet passphrase. But when you create more wallets, you can set an optional passphrase. You can think of the passphrase as another word that combines with your wallet seed phrase to encode the key that controls your wallet. You cannot change or add a passphrase after wallet creation. The passphrase is never stored by Proton Wallet, so you must enter it every time you want to unlock the wallet. If you forget or lose your passphrase, there’s no way to recover the locked wallet and assets inside, which is why we do not recommend it for most users.
How to create a passphrase
In the Wallet setup window, simply click or tap Add a passphrase (optional) and then enter and confirm that passphrase before clicking or tapping Create new wallet.
Ensure you’ve saved this passphrase somewhere secure, as you will not be able to access this wallet without it.
The ability to create a passphrase is available only when you first set up a wallet. You cannot add, remove, or change it at a later time.
When do I need to use my passphrase?
Passphrases are primarily used for advanced security measures and in situations where you need to:
- Import your wallet: If you ever need to import your wallet to recover it, you’ll need both the wallet seed phrase and the passphrase.
- Access your wallet: This optional security measure requires entering your passphrase after you log in to Proton Wallet and want to unlock the passphrase-protected wallet.
It’s important to:
- Never share your Proton recovery phrase, wallet seed phrase, or passphrase with anyone, including anyone claiming to be from Proton.
- Keep your Proton recovery phrase, wallet seed phrase, and any passphrase secure and ideally stored offline.
Mask amount
To prevent anyone physically near you from spying on your Bitcoin accounts, you can choose to mask your wallet’s account balance. This feature will obscure the amount of BTC you’re holding and its current value in fiat currency, preventing anyone from reading it over your shoulder.
To enable amount masking for any wallet:
From your wallet homepage, click or tap the 👁 button next to your wallet balance.
By default, the balance will always be visible. Each time you go to a new wallet or Bitcoin account, you will need to mask its balance.
Unlock your Proton Wallet mobile app with biometrics
For enhanced security and convenience, we recommend enabling biometric authentication on your Proton Wallet mobile app. This allows you to quickly and securely access your Proton Wallet using your fingerprint or facial recognition. It adds a layer of protection safeguards your assets by preventing unauthorized access if your phone is unlocked.
1. On your mobile device, from the left side panel you can expand User settings and select Security.
2. A new window will appear. Tap on Unlock with and select Biometrics.
Your mobile app will be secured with biometrics, allowing you to quickly and easily unlock with your fingerprint or face ID.
Proton Sentinel
Proton Sentinel is our advanced security feature that protects your account from takeover attempts, even if your password is compromised. It combines AI and human experts to detect and block suspicious activity, providing an extra layer of protection for your sensitive information.
As an added layer of protection, Proton Sentinel is only available to Proton Wallet paid plans.
How to enable Proton Sentinel in Proton Wallet (web only)
1. From your Wallet homepage, go to the left menu bar and click Security.
2. In the new window, go to the Proton Sentinel section and turn on the toggle to Enable Proton Sentinel.
Proton Sentinel will be instantly active, adding an extra layer of security to your account.