This page explains hidden wallets and passphrase accounts for the Ledger Nano X hidden wallet feature: what they do, when they make sense, and where they create real risk. I’ve tested passphrase workflows and used them for vault-style storage for several months. What I’ve found is that passphrases add meaningful security options — when used carefully — but they also introduce permanent single points of failure.
Cryptocurrency security is a trade-off between convenience, recoverability, and secrecy. This guide aims to make those trade-offs explicit.
A hidden wallet — often called a passphrase account — is an additional account derived from your seed phrase plus an extra secret (the passphrase). Technically the passphrase acts like a 25th word for a BIP-39 seed phrase (hence “25th word hidden wallet”). The result: the same seed phrase can unlock many different accounts depending on the passphrase you supply.
In practice that means you can have a visible account (no passphrase) and one or more hidden accounts that only appear when you enter the correct passphrase.
Because the passphrase is not stored by the hardware wallet or the recovery phrase, losing it equals permanent loss. That’s the critical trade-off.
If you want a deeper look at seed phrase choices and backups, see our seed phrase management and passphrase: 25th word pages.
In my testing, passphrases were handy for staging small sums for daily use while keeping a separate “vault” hidden. But this adds steps to routine transactions and more places to make mistakes.
And remember: a passphrase is only as safe as the methods you use to store it.
This is a conceptual how-to. Exact menu names vary by firmware and companion app.
But do not skip step 5. Test restores on a spare wallet or software that supports BIP-39 passphrases before moving large amounts.
Restoring a hidden wallet requires two things: the original seed phrase and the exact passphrase (the 25th word). Without both, recovery fails. If the hardware wallet is lost or breaks you can restore to any compatible hardware wallet or software wallet that supports BIP-39 passphrases — provided you have the passphrase.
Backup options: metal backup plates for the seed phrase and a separate metal plate or secured method for the passphrase. Consider Shamir (SLIP-39) or secret-sharing only for the seed phrase if you need distributed recovery. For inheritance planning and geo-distribution see inheritance-planning and geo-distribution-storage.
Always practice a full restore to a second device. I recommend a dry-run before moving significant funds.
| Feature | Hidden wallet (passphrase) | Multisig | Standard single-sig (seed only) |
|---|---|---|---|
| Recoverability if a secret is lost | Low (passphrase lost = funds lost) | Higher if keys distributed correctly | Moderate (seed lost = funds lost) |
| Plausible deniability | High | Low | None |
| Operational complexity | Low–Medium | High | Low |
| Compatibility with services | Variable | Better with standard wallets | Best |
| Best for | Individuals wanting deniable vaults | Organizations or high-value vaults | General users |
For readers considering both options, see our multisig setup guide to compare workflows.
Hidden wallets add friction. Each new session may require entering a passphrase. If you use Bluetooth or a mobile companion, the convenience comes with a slightly larger attack surface. Read about connection risks in connectivity-bluetooth-usb.
In my testing I noticed that using a passphrase makes quick transfers more cumbersome, but that small friction encourages safer habits (double-check addresses, confirm derivation). That trade-off can be intentional.
For buying safety and avoiding tampered units, see where-to-buy-safely and our supply-chain tamper notes.
Q: Can I recover my crypto if the device breaks?
A: Yes — if you have both the seed phrase and the correct passphrase. Restore to another hardware wallet or compatible software that supports BIP-39 passphrases. See recover-if-broken.
Q: What happens if I forget my passphrase?
A: If forgotten, funds in that hidden wallet are effectively unrecoverable. That’s why independent backup of the passphrase (not with the seed phrase) is essential.
Q: Is Bluetooth safe for a hardware wallet?
A: Bluetooth increases attack surface compared with USB-only use. It can be safe when firmware and companion apps are up to date, but I prefer USB for high-value operations. See connectivity-bluetooth-usb.
Q: Can I use passphrases with multisig?
A: Combining passphrases with multisig is complex and often not supported by standard multisig workflows. If you need both, plan carefully and test fully. See multisig-setup-compatibility.
Hidden wallets (passphrase accounts) are a powerful tool when you want compartmentalization or plausible deniability. They are not a magic bullet. I believe they belong in the toolbox of security-conscious users who are comfortable with irreversible backups and extra operational steps.
Want to learn how to enable a passphrase safely, run a restore test, or compare multisig instead? Read the step-by-step nano-x setup, the passphrase: 25th word guide, or our multisig setup walkthrough next.
Stay cautious. Test often. And back up everything properly.