Before you buy crypto, connect a wallet, sign a transaction, or send funds, set up your basic safety system. Do not start with trading. Do not start with chasing tokens. Don’t get sucked into the hype. If you do ignore this, the inevitable question will be **“Why is everything I buy only going down?”** This was me buying the top in 2021 due to FOMO (fear of missing out). Start with safety implementations, not just with systems, but with your mental disposition. Most beginner crypto mistakes happen because people act before they have guardrails in place. This checklist gives you the minimum setup to reduce both avoidable and irreversible mistakes. Use it before you begin any crypto-related activity. **1. Create a Separate Crypto Email** Do not use your main personal email for every crypto account. Create a separate email only for crypto-related activities. Most people use the same password for everything. A compromise will cost you more than you could ever fathom. **Use it for:** Exchange accounts Wallet-related services Crypto education platforms Newsletters Community access **Do this:** 1. Create a new crypto-only email. 1. Use a username that does not reveal your full name. 1. Add a strong unique password. 1. Turn on two-factor authentication. 1. Do not use this email for shopping, social media, or personal accounts. Simple rule: ****One crypto email. One strong password. 2FA turned on.**** **2. Install a Password Manager** Do not reuse passwords. One leaked password can expose multiple accounts if you use the same logins everywhere. Use a password manager to create and store unique passwords. *A PW manger is being ignored, but its an automatic default shield against phishing sites.* **Do this:** 1. Choose a reputable password manager. *Eg Bitwarden, 1password, Proton Pass.* 1. Create one strong master password. 1. Save your crypto email password in it. 1. Generate unique passwords for every crypto account. 1. Never reuse your banking, email, or social media passwords for crypto. *Google Password Manager could be a single point of failure.* Simple rule: ***One account = one unique password.*** **3. Turn On Two-Factor Authentication** Before depositing money into any crypto exchange, turn on two-factor authentication. Follow this MFA rule if you can: ***Something you know, something you have, something you are.*** Avoid relying only on SMS if stronger options are available to prevent SIM Swaps. Use: Authenticator app Hardware security key Passkeys, if supported **Do this:** 1. Turn on 2FA for your crypto email and exchange account. 1. Save backup codes offline. 1. Do not store backup codes in your email inbox or take screenshots. 1. Do not send backup codes to yourself by text. Simple rule: ***No 2FA = no deposits.*** **4. Write Your Seed Phrase Rules Before Creating a Wallet** Your seed phrase is the master key to your wallet. If exposed or accessed, your wallets will be drained or installed elsewhere with new access credentials. Before you create a wallet, decide how you will protect and recovery it. Do this: 1. Write your seed phrase offline. 1. Do not take a screenshot of it. 1. Do not save it in Google Drive, iCloud, Dropbox, Notes, or email. 1. Do not paste it into any website or share with support. 1. Store it somewhere private and secure. *Never enter your seed phrase into:* Google Forms, Discord DMs, Telegram chats, X/Twitter DMs, “Wallet validation” websites, “Airdrop claim” websites, “Migration” websites, AI tools, Email drafts Simple rule: ***Anyone asking for my seed phrase is trying to take control of my wallet.*** **5. Bookmark Official Websites** Do not rely on search results every time you visit an exchange, wallet, bridge, or crypto tool. Fake websites can appear through ads, lookalike domains, fake posts, or scam links. If you cannot bookmark, always manually type. Avoid clicking clicks from emails that sound sketchy or prompting you to take a certain action. Do this: 1. Find the official website manually. 1. Check the spelling carefully. 1. Avoid sponsored search results. 1. Confirm the link from multiple official sources. 1. Bookmark the verified website. 1. Use your bookmark next time. Simple rule: ***Use bookmarks, not random links.*** **6. Set a No-DM Rule** Most beginner scams start in private messages. This is common when you join groups offering trading signals. People impersonate group leaders all the time. Scammers may pretend to be support, admins, founders, traders, recruiters, or helpful community members. Do this: 1. Ignore crypto support DMs. 1. Do not click links sent by strangers. 1. Do not connect your wallet from a DM link. 1. Do not share screenshots with sensitive details. 1. Do not move support issues into private chats. Simple rule: ***I do not solve crypto problems in DMs.*** **7. Create Separate Wallets for Separate Purposes** Do not use one wallet for everything. Separate wallets reduce damage if you make a mistake. The contagion is isolated. Set up three wallet categories: *Learning wallets : practice with small amounts. Activity/spending wallets: connecting to apps Storage wallet: long term hold * This is where most beginners need more than a checklist. Knowing that you should separate wallets is one thing. Knowing how to set them up, what each wallet should be used for, and which actions to avoid is where the real protection begins. [](https://cryptostoicmedia.com/#pricing) [Members](https://cryptostoicmedia.com/#pricing) get the full wallet safety workflow, including learning wallet, activity wallet, and storage wallet guidance. **Do this:** 1. Create a learning wallet first. 1. Only fund it with a tiny amount. 1. Do not use your storage wallet for experiments. 1. Do not connect your storage wallet to unfamiliar websites. 1. Keep long-term funds separate from daily activity. Simple rule: ***The wallet I experiment with is not the wallet I depend on.*** **8. Pause-Before-Signing** Do not click “confirm” or “sign” automatically. Before signing anything, seek to understand what the wallet is asking. Wallet prompts are not the same, it may all required you click a button, but the level of access granted varies. Ask this before every signature: *What website requested this? What wallet am I using? What asset is involved? What permission am I giving? Is this an unlimited approval? Do I understand why this is needed?* Simple rule: ***No clarity = no signature.*** **9. Send a Small Test Transaction First** Before sending a meaningful amount, send a small test transaction. This confirms that the address, network, and receiving account are correct. Even OGs send funds to wrong addresses, the more reason why you should not ignore this. Do this: 1. Copy the address carefully. 1. Confirm the network. 1. Confirm the asset. 1. Send a small test amount first. 1. Wait until it arrives. 1. Only then consider sending more. Simple rule: ***Do a small test transaction, confromarrival before completing.*** **10. Create Your Personal Crypto Safety Policy** Write your rules before emotion gets involved. Copy this starter policy and edit it for yourself. My Personal Crypto Safety Policy 1. I do not share my seed phrase. 2. I do not click crypto links from DMs. 3. I do not use one wallet for everything. 4. I do not connect my storage wallet to random websites. 5. I do not sign transactions I do not understand. 6. I use 2FA before depositing funds. 7. I use unique passwords for every account. 8. I verify official websites before connecting. 9. I send a small test transaction before sending more. 10. I pause when I feel rushed, confused, or pressured. Save this somewhere you can review before taking action. We all want to get to the level of making asymmetric bets on tokens. Getting there is a marathon, not a sprint. Ready to stop guessing your way through crypto? Do not act without having a process. The free guides help you start safely. The [membership](https://cryptostoicmedia.com/#pricing) helps you continue with guardrails. [](https://cryptostoicmedia.com/#pricing) No hype. No trading signals. No custody of your funds. Just practical crypto safety systems for all things crypto.