BTC.com uses various technologies to make your wallet secure yet simple to use.
Secure by design: BTC.com never has access to your private keys, we can’t access or even hold your Bitcoin / Bitcoin Cash. If our servers would ever get hacked, your funds would not be accessible to anyone except you.
2-out-of-3 multi-signature set up: This means that in order to make a payment from your wallet, you need 2 out of 3 private keys (signatures).
Your primary private key is encrypted in your wallet, and is the key you would normally use to send transactions. Your second private key was given to you unencrypted as a backup PDF, when you initially created the wallet. The third private key, which is unable to move funds, is used by BTC.com to co-sign your transactions. This setup provides an additional layer of theft protection that a non-multi signature setup can’t provide. If BTC.com’s security system detects a potential fraudulent attempt to access your account, the transaction co-signing gets disabled. This gives the hacker no ability to move funds out of a potentially compromised wallet. As the true owner, you are always able to recover your coins using your two private keys.
HD wallet technology: The BTC.com wallet is a Hierarchical Deterministic (HD) wallet. An HD wallet generates a new address for each transaction. Your wallet creates all addresses sequentially, using a master seed. Using a different address every time helps to hide how much Bitcoin / Bitcoin Cash you have in your wallet. As for convenience, your wallet can be recovered at once using your backup PDF.
Additional security: You can enable additional security settings such as PIN and two-factor authentication.
The following article will show you how to enable 2FA on your wallet.