Insurance and Bankruptcy Protection-Protecting Against the Worst

CRYPTO CUSTODY INSURANCE TYPES:

- Covered perils (theft, employee dishonesty)
- Coverage limits
- Deductibles
- Exclusions

- Professional services definition
- Claims-made vs. occurrence
- Retroactive date
- Exclusions

- First-party vs. third-party
- Business interruption
- Notification costs
- Exclusions for certain attacks

DIRECTORS & OFFICERS (D&O):
Coverage: Management liability
Relevance: If custodian management liable
Typical Limits: $10M-$50M+

EXCESS/UMBRELLA:
Coverage: Additional limits above primary
Structure: Sits above primary policies
Purpose: Increase total coverage

CRYPTO INSURANCE MARKET:

MARKET CHARACTERISTICS:

• Crypto insurance market ~$2B total capacity

• Small relative to custody AUM ($200B+)

• Premium pricing high

• Coverage often insufficient

• Lloyd's of London primary

• Few domestic US insurers

• Limited crypto expertise

• Evolving underwriting

• 1-5% of coverage amount typical

• Higher for hot storage

• Lower for cold storage

• Risk-based pricing

KEY INSURERS:

• Arch Insurance

• Canopius

• Chaucer

• TMK

• Aon partnerships

• Marsh programs

• Woodruff Sawyer

MARKET TRENDS:

• Tightened underwriting

• Higher premiums

• More exclusions

• Reduced capacity

• Gradual market recovery

• New capacity entering

• Still supply-constrained

• Institutional demand growing

INSURANCE COVERAGE ANALYSIS:

ADEQUACY ASSESSMENT:

• Maximum assets under custody

• Single account maximum

• Peak exposure scenarios

• Per-occurrence limits

• Aggregate limits

• Sub-limits (e.g., hot wallet)

Step 3: Calculate Coverage Ratio
Coverage Ratio = Total Limits / Maximum Exposure
Target: >100% for reasonable protection
Reality: Often <100% for large exposures

• Hot wallet sublimits
• Social engineering exclusions
• Nation-state attack exclusions
• Certain theft methods

EXAMPLE ANALYSIS:

• Crime: $100M aggregate
• Hot wallet sublimit: $20M
• E&O: $50M
• Cyber: $50M

Client Exposure: $75M

• Crime limit adequate for client
• But shared with all clients
• Hot wallet sublimit constraining
• E&O relevant for service failures
• Total apparent coverage misleading

Key Question: What's the aggregate exposure
relative to aggregate limits?

---

INSURANCE DD CHECKLIST:

DOCUMENTATION REQUEST:

• Named insured

• Coverage types

• Limits and deductibles

• Policy periods

• Insurers

• Coverage details

• Key exclusions

• Conditions

• Claims procedures

• Any claims filed?

• Any claims denied?

• Ongoing claims?

VERIFICATION STEPS:

• Contact insurer to confirm

• Verify limits

• Check policy status

• AM Best rating

• Lloyd's syndicate status

• Financial stability

• War/terrorism

• Nuclear/radioactive

• Intentional acts

• Certain cyber attacks

• Government seizure

• Are clients additional insureds?

• What notice requirements?

• What claims process?

KEY INSURANCE QUESTIONS:

COVERAGE QUESTIONS:

1. What are the aggregate limits?

2. What are the per-occurrence limits?

3. Are there sub-limits?

4. What's excluded?

5. Is hot storage covered differently?

STRUCTURE QUESTIONS:

1. How many clients share the limits?

2. What's total AUC relative to limits?

3. Are there deductibles affecting claims?

4. What triggers a claim?

5. What's the claims process?

RED FLAGS:

⚠️ Unwilling to share insurance details
⚠️ Limits far below AUC
⚠️ Broad exclusions for common risks
⚠️ Unknown or unrated insurers
⚠️ History of denied claims

---

BANKRUPTCY PROTECTION PRINCIPLES:

BASIC PRINCIPLE:
Properly segregated client assets should not be
property of the custodian's bankruptcy estate

1. Legal segregation (agreement terms)
2. Operational segregation (actual practice)
3. Clear ownership documentation
4. Identifiable assets on blockchain

TRUST COMPANY FRAMEWORK:

• Assets held in trust (fiduciary)

• Not property of trust company

• Beneficiaries have priority

• Should be "bankruptcy remote"

• Proper trust documentation

• Actual segregation

• No comingling

• Clear records

BANK CUSTODY FRAMEWORK:

• Customer assets not bank property

• Segregation required

• FDIC resolution for bank failure

• Orderly transfer process

• Regulatory examination

• Capital requirements

• Resolution framework

• Transfer mechanisms

CRYPTO BANKRUPTCY CHALLENGES:

ISSUE 1: ASSET IDENTIFICATION
Challenge: Which blockchain assets belong to whom?
Traditional: Book entries, clear records
Crypto: On-chain addresses, private key control

- Omnibus: All clients in one address
- Segregated: Each client separate address
- Hybrid: Client identification off-chain

ISSUE 2: KEY CONTROL = OWNERSHIP?
Challenge: Who controls keys in bankruptcy?
Traditional: Custodian records determine
Crypto: Private key possession matters

- Can custodian be compelled to transfer?
- What if keys lost?
- What if custodian disputes?

ISSUE 3: VALUATION
Challenge: How to value crypto assets?
Traditional: Market prices, clear
Crypto: Volatility, timing matters

- Value changes dramatically
- Which date determines claims?

ISSUE 4: COMMINGLING
Challenge: Did custodian use customer assets?
Traditional: Segregation requirements clear
Crypto: On-chain analysis required

- Customer assets used as collateral
- Alameda "borrowed" customer funds
- Shortfall impossible to unwind
- Years of litigation

CASE STUDY 1: FTX BANKRUPTCY

Failure Type: Exchange, not qualified custodian
Timeline: November 2022 filing
Customer Assets: $8B+ shortfall

CASE STUDY 2: PRIME TRUST

Failure Type: State trust company (Nevada)
Timeline: 2023 regulatory intervention
Status: Receivership

CASE STUDY 3: CELSIUS

Failure Type: Not qualified custodian
Timeline: July 2022 bankruptcy
Customer Assets: $4.7B in claims

---

RISK MITIGATION BEYOND INSURANCE:

STRATEGY 1: CUSTODIAN DIVERSIFICATION
Approach: Multiple custodians
Benefit: No single point of failure
Implementation: Policy limits per custodian
Example: Maximum 50% with any custodian

- Crime insurance naming crypto
- Difference-in-conditions coverage
- Excess coverage

Benefit: Not dependent on custodian's limits
Challenge: Limited market, expensive

- Clear segregation requirements
- Liability provisions
- Insurance maintenance requirements
- Termination rights

Benefit: Legal protections
Limitation: Depends on enforcement

- Regular attestations
- Proof of reserves
- Financial monitoring
- Incident tracking

Benefit: Early warning
Limitation: Not protection after fact

- ETF issuer handles custody
- SEC-registered products
- Additional oversight

- Not direct ownership
- ETF-specific risks

ADDRESSING INSURANCE GAPS:

- Understand hot/cold ratio
- Know sublimit amounts
- Account for in risk assessment
- Consider cold-focused custodians

- Understand client concentration
- Calculate your share of limits
- Multiple custodians
- Client's own coverage

- Understand exclusions clearly
- Assess excluded risk probability
- Factor into overall risk assessment
- Consider specialized coverage

- Understand claims process
- Notification requirements
- Documentation practices
- Relationship with custodian

- Accept residual risk
- Diversification
- Operational DD
- Self-insurance consideration

---

PROTECTION ASSESSMENT:

- Qualified custodian status
- Examination framework
- Resolution mechanisms
- Enforcement capability

- What happens if custodian fails?
- What regulatory protections exist?
- How are assets transferred?
- What's the track record?

- Segregation provisions
- Liability terms
- Insurance requirements
- Termination rights

- Are assets legally segregated?
- What liability does custodian accept?
- What insurance must be maintained?
- How quickly can you exit?

- Coverage types and limits
- Exclusions and conditions
- Claims history and process
- Insurer quality

- What losses are covered?
- What are the limits?
- What's excluded?
- How are claims processed?

- Security architecture
- Key management
- Business continuity
- Track record

- How secure are the assets?
- What's the incident history?
- What's the recovery capability?
- What's the operational track record?

- Custodian concentration
- Geographic distribution
- Model type diversity
- Recovery alternatives

- Is exposure diversified?
- What's the concentration risk?
- What happens if one fails?
- Are alternatives available?

PROTECTION SUMMARY:

CUSTODIAN: [Name]
ALLOCATION: [Amount]
DATE: [Assessment Date]

- Charter/License: ____________
- Regulator: ____________
- Examination: ____________
- Assessment: ☐ Strong ☐ Adequate ☐ Weak

- Crime Limit: $_________
- E&O Limit: $_________
- Cyber Limit: $_________
- Hot Wallet Sublimit: $_________
- Key Exclusions: ____________
- Assessment: ☐ Strong ☐ Adequate ☐ Weak

- Segregation Terms: ____________
- Legal Structure: ____________
- Resolution Framework: ____________
- Assessment: ☐ Strong ☐ Adequate ☐ Weak

- Cold Storage %: _____%
- Multi-sig/MPC: ____________
- Track Record: ____________
- Assessment: ☐ Strong ☐ Adequate ☐ Weak

OVERALL PROTECTION RATING:
☐ Well Protected
☐ Adequately Protected
☐ Partially Protected
☐ Significant Gaps

1. ____________
2. ____________
3. ____________

---

✅ Insurance markets for crypto exist but are limited - Coverage available but constrained

✅ Segregation matters for bankruptcy protection - Legal and operational segregation critical

✅ Custody failures have occurred - FTX, Prime Trust demonstrate real risks

✅ Recovery outcomes vary significantly - Depends on circumstances and luck

⚠️ How courts will treat crypto in major QC failure - Limited precedent

⚠️ Insurance claims experience long-term - Market still maturing

⚠️ Adequate insurance limits possible? - Capacity constrained

⚠️ Segregation enforceability in bankruptcy - Untested scenarios

📌 Assuming insurance covers all losses - Limits, exclusions, shared coverage

📌 Trusting segregation without verification - Must be actual, not just claimed

📌 Single custodian concentration - No insurance replaces diversification

📌 Ignoring contractual terms - Agreement terms determine protections

Insurance and bankruptcy protections for crypto custody exist but have significant limitations. The combination of limited insurance market capacity, untested bankruptcy frameworks, and novel asset characteristics means that no protection is complete. Risk mitigation requires multiple strategies: custodian quality, insurance, diversification, and acceptance of residual risk.

---

Assignment: Create a comprehensive protection assessment for a custody arrangement.

Format: Professional assessment, 5 pages maximum

Time Investment: 3-4 hours

---

1. What is the primary limitation of custodian insurance coverage?
Answer: C - Aggregate limits are shared among all clients, potentially insufficient for total AUC

2. What determines bankruptcy protection for custodied crypto assets?
Answer: B - Actual asset segregation, both legal and operational

3. What did the FTX bankruptcy demonstrate about custody protections?
Answer: A - Exchange custody without segregation provides no meaningful protection

4. What is the most effective risk mitigation beyond insurance?
Answer: D - Custodian diversification to eliminate single points of failure

5. Why are insurance limits often insufficient?
Answer: B - Limited insurance market capacity relative to total crypto AUC

---

End of Lesson 8

Total Words: ~4,500
Estimated Completion Time: 60 minutes reading + 3-4 hours for deliverable