How it works
Nunchuk is a multisig coordinator, not a custodian. You install a desktop or mobile app and build a wallet by combining keys from hardware signers like Coldcard, Trezor, Ledger, Foundation Passport, Jade, Keystone, SeedSigner or BitBox. Signing is air-gapped via QR codes or SD card, and the app itself never touches a seed.
In the DIY mode every key is yours and Nunchuk holds nothing. In the Assisted plans the company holds one key of N as a recovery shoulder, which can be co-signed but never spent alone. The inheritance service relies on on-chain timelocks, so heirs can sweep funds with the spec sheet even if the company has disappeared.
KYC & privacy
There is no KYC, ever. The basic wallet downloads like any other app and asks for nothing — no name, no email, no phone. Email is collected only for assisted and inheritance plans, where users opt in to recovery features. There is no custody, no AML screen, and no on-chain freeze the company can perform, because they do not hold a quorum of keys. You can pair the app with your own Bitcoin full node to break the privacy bridge to public block indexers.
The 2022 Honk Honk Hodl seizure saw Canadian police chase down roughly 0.28 BTC held by Nunchuk users through legal process aimed at individuals, not at the wallet's code. No exploit, no backdoor, no key handed over — but a useful reminder that operational security still happens at the chair in front of the screen.
Strengths and limits
The architecture is the product. Multisig with user-held keys, air-gapped signing, decoy wallets, coin control, emergency lockdown and a real inheritance protocol that does not require the company to be alive — this is the most complete non-KYC inheritance stack shipping in production today. The Android client is source-available under GPLv3 and the libnunchuk core has been public for years.
The limits are honest. iOS source has not yet been released, no public third-party security audit is on file, and the BTC-only stance means no Lightning, no Liquid and no other chains. Assisted plans require an email at signup and route through a US-incorporated entity, which is fine for inheritance customers but worth flagging for anyone trying to stay completely off-correspondence.
Verdict
For the user who wants multisig without academic homework, Nunchuk is the rare wallet that earns its open-source badge with a story to tell. It is the closest thing to a default for self-managed multisig, family treasuries and inheritance planning that does not depend on a foundation outliving you. Grade: A- (8.9/10). Trust: TRUSTED.
For the user who wants multisig without academic homework, Nunchuk is the rare wallet that earns its open-source badge with a story to tell. It is the closest thing to a default for self-managed multisig, family treasuries and inheritance planning that does not depend on a foundation outliving you. Grade: A- (8.9/10). Trust: TRUSTED.
