🟢 Trust Rating: High

The BitBox02 is one of the few hardware wallets that treats your privacy as a feature and not an afterthought. Fully open-source firmware, a dual-chip design with a certified secure element, instant microSD backup, and a companion app that can route over Tor and connect to your own full node. It is built by Shift Crypto AG in Switzerland, a company that has publicly disclosed vulnerabilities in competitors' devices rather than hiding its own findings. The Bitcoin-only edition is the standout for anyone who holds nothing but BTC.

What is the BitBox02?

The BitBox02 is a hardware wallet made by Shift Crypto AG, headquartered in Switzerland. It keeps your private keys offline on a small USB device so that malware on your computer or phone cannot touch them. You confirm every transaction on the device itself, which is the whole point of cold storage.

It comes in two models and two editions. The classic BitBox02 connects over USB-C and works with desktop and Android. The newer BitBox02 Nova adds a scratch-resistant glass display, a higher-rated secure chip, and iPhone and iPad support through an encrypted Bluetooth link. Both models ship in a Multi edition (Bitcoin plus Litecoin, Ethereum and ERC20 tokens, Cardano, and more) and a Bitcoin-only edition that strips the firmware down to Bitcoin alone. Shift confirms both models stay on sale in parallel, so you are not forced to buy the Nova.

Critical Privacy Concerns

⚠️ Read This Before You Buy

  • The secure chip is a closed component. Like almost every hardware wallet, the BitBox02 pairs open-source firmware with a proprietary secure element you cannot audit line by line. You are trusting the chip vendor's silicon. This is standard for the category, but it is not "fully open" the way the marketing shorthand can imply.
  • Bluetooth is an added surface. The Nova's iPhone support runs over Bluetooth (Shift calls it Whisper, with end-to-end encryption). Convenient, but any wireless link is more attack surface than a plain USB cable. Privacy purists can skip it and use USB.
  • The Multi edition is a bigger target. Supporting 1500+ tokens, WalletConnect, and FIDO U2F means more firmware and more ways to get something wrong. If you only hold Bitcoin, the Bitcoin-only edition is the smaller, saner attack surface. Buy that one.
  • Buy direct. A hardware wallet bought from a random marketplace reseller can be tampered with in transit. Order from Shift or an official reseller, and verify the device on first boot.

Open Source Firmware and the Dual-Chip Design

The BitBox02 firmware is fully open-source, so independent researchers can read exactly what the device does with your keys. Under the hood it uses a dual-chip architecture: a general-purpose microcontroller running the open firmware, paired with a dedicated secure chip that guards the seed against physical extraction. On the Nova that secure chip is certified to EAL6+, a high assurance level for tamper resistance. The split matters. If the secure element is compromised, the firmware still protects you, and if the firmware has a bug, the secure element still guards the secret.

MicroSD Instant Backup

Here is the feature that quietly sets the BitBox02 apart. When you set up the device it writes an encrypted backup straight to a microSD card. No frantic scribbling of 24 words while a timer runs. Recovery is just as fast: slot the card back in and restore. You can still write down the recovery words if you want a paper copy, but the microSD path removes the single most common way people lose funds, which is a botched or lost seed phrase written under pressure.

BitBoxApp: Tor and Your Own Node

Most wallet apps quietly broadcast your addresses to the company's servers, which is a slow-motion privacy leak that ties your coins to your identity over time. The BitBoxApp lets you close that hole. You can route all traffic over Tor to hide your IP, and you can point the app at your own full node instead of trusting Shift's servers with your transaction history. It also has coin control, so you choose which coins to spend and limit what you reveal on the blockchain. These are the exact features privacy-minded Bitcoiners actually ask for, and they are built in rather than bolted on.

Technical Specifications

Security and Privacy Features

  • Open-source firmware: Auditable by anyone, backed by a public bug bounty program
  • Dual-chip design: Microcontroller plus a certified secure element (EAL6+ on the Nova)
  • Instant backup: Encrypted microSD backup and restore, optional written recovery words
  • Tor support: BitBoxApp can route all activity over Tor
  • Own node: Connect the desktop app to your own full node
  • Coin control: Pick which UTXOs to spend for tighter on-chain privacy
  • Connectivity: USB-C on both models; Nova adds encrypted Bluetooth for iPhone and iPad

Pricing Structure

Product Price Notes
BitBox02 Nova (Multi) ~€175 Glass display, EAL6+ chip, iPhone/iPad over Bluetooth, 1500+ tokens
BitBox02 Nova (Bitcoin-only) ~€175 Same hardware, Bitcoin-only firmware, smaller attack surface
BitBox02 (classic) Less than the Nova USB-C only, desktop and Android, still sold in parallel

Prices are from the official Shift Crypto shop and exclude shipping and VAT. Check the shop for the current classic-model price and your local currency.

BitBox02 vs. Alternatives

BitBox02 vs. Trezor

  • BitBox02: Dual-chip with a secure element, microSD instant backup, Tor and own-node support baked into the app.
  • Trezor: Also open-source and reproducible, and the two companies have a real history here (Shift responsibly disclosed a passphrase ransom attack to Trezor in 2020). Trezor's larger models add a touchscreen. See our Trezor review.

BitBox02 vs. Coldcard

  • BitBox02: Friendlier for newcomers, Multi edition available, cross-platform app with Tor.
  • Coldcard: Bitcoin-only by design, built around fully air-gapped microSD signing for people who never want the device near a network. More hardcore, less beginner-friendly. See our Coldcard review.

BitBox02 vs. Ledger

  • BitBox02: Open-source firmware, Swiss jurisdiction, no seed-extraction cloud service.
  • Ledger: Closed-source firmware and the controversial Ledger Recover key-extraction service that shook a lot of users' trust. See our Ledger review.

Comparing more Bitcoin-only options like the Foundation Passport? Our hardware wallet comparison guide lines them all up side by side.

When to Use the BitBox02

Good Fit

Privacy-focused Bitcoiners who want Tor and their own node without extra software

People who hate seed-phrase ceremonies, thanks to the microSD instant backup

Bitcoin maximalists, the Bitcoin-only edition is the cleanest, smallest-surface choice here

Anyone who values open-source firmware and a Swiss company with a clean disclosure record

Poor Fit

Fully air-gapped purists who never want a USB connection at all (look at Coldcard or a QR-based signer)

People chasing hundreds of exotic altcoins, the Multi list is broad but not endless

Anyone unwilling to trust a proprietary secure chip, which no mainstream hardware wallet avoids

The Bottom Line

Consider the BitBox02 if:
  • You want privacy features (Tor, own node, coin control) that most wallets treat as extras
  • You hold Bitcoin and want the smaller-surface Bitcoin-only edition
  • You value open-source firmware and Swiss jurisdiction
  • Instant microSD backup appeals more than writing down 24 words by hand
Avoid the BitBox02 if:
  • You require a fully air-gapped device with no USB link
  • You need support for a long tail of niche altcoins
  • The idea of any closed secure chip is a dealbreaker (then no mainstream wallet fits)

⚠️ Final Assessment

The BitBox02 earns its high trust rating by doing the boring things right: open firmware, a real secure element, instant backups, and a companion app that actually respects your privacy. The honest caveats are the closed secure chip (true of every rival) and the optional Bluetooth on the Nova (skip it if you want). For a Bitcoin holder who cares about privacy, the Bitcoin-only edition is one of the easiest recommendations in this category.

Get the BitBox02 →

Resources