Security
Multisig wallets for business bitcoin: what they are and when to use one
How multisig bitcoin wallets work, why Canadian businesses use them for shared custody, and what to consider before setting one up.
A single private key controls a standard bitcoin wallet. Whoever holds that key controls the funds, and if the key is lost or stolen, the bitcoin is gone. For a business holding any meaningful amount, that's a fragile arrangement. Multisig wallets fix the single point of failure by requiring more than one key to authorize a transaction.
What multisig actually means
"Multisig" is short for multi-signature. A multisig wallet is defined by two numbers: the number of keys that exist, and the minimum number needed to sign a transaction. The most common format is 2-of-3: three keys exist, and any two of them can authorize a spend.
Other configurations exist. A 3-of-5 setup is common for larger organizations that want redundancy without giving any single key too much power. A 1-of-2 is sometimes used for personal convenience (two phones sharing access to one wallet), though that doesn't improve security much. The math is flexible; what matters is matching the setup to your actual risk model.
Under the hood, multisig is enforced at the Bitcoin protocol level using a script type called P2SH (Pay to Script Hash) or, more recently, P2WSH (the SegWit equivalent). You don't need to understand the script to use multisig, but it's worth knowing the security guarantee is built into the network itself, not just a software policy.
Why it matters for Canadian businesses
If a staff member with sole access to a hot wallet is terminated, resigns, or is compromised by a phishing attack, the business has no recourse. Multisig changes that. No single person walking out the door can take the funds.
There are a few common scenarios where businesses reach for multisig:
- A partnership or corporation where two directors must co-sign any bitcoin spend, mirroring how joint bank accounts work
- A business with a treasury policy requiring sign-off from both the CFO and a designated operations contact
- A company that wants to hold bitcoin in cold storage but needs an operational backup if one device is lost or destroyed
- An organization that uses a third-party custodian for one key and retains the other two internally, so neither party has unilateral control
None of these are exotic use cases. They're the same governance structures businesses already apply to signing authority on bank accounts, just applied to bitcoin.
How a 2-of-3 setup works in practice
Take a small Canadian company with three principals. Each person generates a key on a separate hardware device (a Coldcard, a Trezor, or similar). The public keys are combined to create the multisig wallet address, which is what clients pay to. The private keys never leave the individual devices.
When the business needs to move bitcoin, whether to pay a supplier or consolidate funds, the transaction is constructed and then passed around for signatures. Two of the three principals sign it on their own devices, and only then does the transaction broadcast to the network.
Practically, this means you need a coordinator: software that assembles the partially signed transaction (called a PSBT, or Partially Signed Bitcoin Transaction) and manages the workflow. Sparrow Wallet is a desktop coordinator used by many technically inclined setups. Some hardware wallet manufacturers bundle coordinator software. There are also commercial multisig services that handle the UX in exchange for a fee, though they introduce a dependency on a company remaining operational.
Geographic separation of keys matters. If all three keys are in the same office and there's a fire or forced entry, the redundancy is theoretical. A common arrangement: one key held by each principal at home, one in a fireproof safe at the office. Another approach is keeping one key with a lawyer or notary, which also creates a documented access path for estate purposes.
Key management and backup
This is where multisig gets more complicated than a standard wallet, and it's worth thinking through before you set anything up.
Each key has a seed phrase (usually 12 or 24 words). Lose the seed, lose the key. In a 2-of-3 wallet, you can afford to lose one key and still recover funds using the other two. But lose two, and the wallet is permanently inaccessible.
Seed phrases need to be stored durably and privately. Paper works but degrades. Stamped metal plates are more resilient. Whatever medium you choose, the backup has to be somewhere other than the device itself.
You also need to back up the wallet descriptor: a file that encodes the multisig configuration (which public keys are involved, in what arrangement). Without this, you can have all three seeds and still struggle to reconstruct the wallet. Treat the descriptor as carefully as you treat the seeds. Most coordinator software can export it, and you should store copies in multiple places.
For a business, this is partly a documentation problem. Who knows where the keys are? What happens if a keyholder is unavailable? Write down the access procedure and store it somewhere the right people can find it, ideally reviewed by a lawyer as part of broader succession planning.
Tax and regulatory considerations in Canada
Holding bitcoin in a multisig wallet doesn't change your obligations under the Income Tax Act or CRA's guidance on cryptocurrency. Bitcoin received as payment is still business income, valued in CAD at the time of receipt. Moving bitcoin between wallets you control (including between a single-sig hot wallet and a multisig cold wallet) is not a taxable disposition, but you should document these transfers clearly.
FINTRAC's rules on money services businesses apply based on activity, not wallet type. If your business regularly exchanges or transfers bitcoin for clients, that can trigger MSB registration requirements regardless of how you store the funds. CRA and FINTRAC guidance changes, so confirm current requirements with a tax professional familiar with digital assets before making structural decisions.
One thing multisig doesn't do is anonymize or complicate reporting. The on-chain activity is still visible and traceable. Some businesses mistakenly assume that splitting control across keys obscures their holdings; it doesn't.
Choosing between DIY and a managed service
Self-custody multisig gives you full control and no counterparty risk, but it also puts the operational burden entirely on you. Setting it up correctly, testing it by doing a partial recovery before you fund it, training the keyholders, and maintaining the documentation, all of that takes real work.
Managed multisig services take on some of that coordination in exchange for a fee and some degree of trust in the provider. The provider typically holds one of three keys and assists with transaction signing, but cannot move funds unilaterally. This trades self-reliance for operational convenience.
Neither option is inherently right for every business. The broader question of how to store bitcoin your business receives involves trade-offs between accessibility and security that multisig is one piece of, not a complete answer to.
Before choosing a specific product or service, consider getting independent advice from someone without a financial interest in what you select. This article doesn't endorse any particular wallet, hardware device, or custody service.
Practical checklist before you set up multisig
| Step | What to do |
|---|---|
| Define the policy | Decide the M-of-N structure and who holds each key |
| Choose hardware | Buy hardware wallets from official sources only |
| Generate keys offline | Each keyholder initializes their device without an internet connection |
| Back up seeds | Store each seed phrase securely and separately from the device |
| Export the descriptor | Save the wallet descriptor to at least two separate locations |
| Test before funding | Do a small deposit and a partial recovery drill before putting real funds in |
| Document the procedure | Write access procedures for operational continuity and estate planning |
| Legal review | Have a lawyer review the signing authority structure if significant sums are involved |
FAQ
Is multisig legal in Canada?
Yes. Holding or using a multisig wallet is not regulated differently from any other form of bitcoin self-custody. Your tax and compliance obligations depend on how you use the bitcoin (receiving payment, trading, etc.), not on the wallet structure.
Does multisig protect against exchange hacks?
Multisig applies to wallets you control directly. If you leave bitcoin on an exchange, the exchange controls the keys and you have a claim against them, not bitcoin itself. Multisig is a self-custody solution, not an exchange feature (though some exchanges use multisig internally to manage their own holdings).
What happens if one keyholder dies or becomes incapacitated?
In a 2-of-3 setup, the remaining two keyholders can still sign transactions without the unavailable key. This is one reason businesses prefer this structure over a single-sig wallet. You should still document access procedures and involve a lawyer, since a keyholder's private keys may need to pass to an estate.
Can multisig slow down everyday payments?
It adds steps. Each spend requires multiple parties to sign, which takes coordination time. Most businesses keep a small operational float in a single-sig hot wallet for routine payments and use multisig only for larger or less frequent transfers from treasury. That's a common and reasonable split.
Does it cost more in transaction fees?
Multisig transactions are slightly larger in bytes than single-sig transactions, so they carry slightly higher network fees. The difference is usually small and unlikely to be a deciding factor for businesses comparing custody options.
Accept Bitcoin Canada is an independent educational resource. Nothing in this article is financial, tax, or legal advice. Bitcoin regulations, CRA guidance, and FINTRAC requirements can change; confirm current rules with qualified professionals before acting.