Skip to main content
Build a managed accounts platform where your company holds and operates crypto wallets on behalf of clients. Each client gets per-account transfer restrictions that control where funds can go — approved destinations, spending limits, and velocity controls. Clients can view the rules governing their account, request changes to their approved destinations, and audit all activity. Your service account handles order execution, including routing funds to an exchange for discretionary trading.

Overview

Your backend owns a Dfns service account — clients never interact with Dfns directly.
ComponentRole
Your auth systemClient login and identity (Auth0, Cognito, custom)
Your databaseMaps clients to wallet IDs, stores destination approval requests
Dfns service accountCreates wallets, executes orders, manages policies
Dfns policiesPer-client approved destinations via wallet tags
Dfns activity logsTransaction history and audit trail
ExchangeExternal trading venue (e.g., Gemini, Coinbase)

What you’ll need

Architecture

1. Client onboarding and account creation

When a client signs up on your platform:
  1. Your backend authenticates the client through your own auth system
  2. Your backend calls Dfns to create a wallet using the service account
  3. Your backend tags the wallet with a client-specific tag (e.g., client:<client-id>)
  4. Your database stores the mapping between the client and their Dfns wallet ID
Use a consistent tag naming convention like client:<client-id>. This lets you target policies to specific client wallets using policy filters.
The client sees a wallet address in their dashboard. They don’t know about Dfns, tags, or service accounts — just that they have a managed account at your company.

2. Per-client approved destinations

Approved destinations are implemented as Dfns TransactionRecipientWhitelist policies — one per client wallet, restricting transfers to a list of addresses the client has explicitly approved. For your clients, this is the core trust mechanism of the managed account relationship: even your company cannot send their funds to arbitrary addresses. Each policy targets a client’s wallet via their tag and contains:
  • Rule: TransactionRecipientWhitelist — the list of approved destinations
  • Action: Block entirely, or RequestApproval — if the destination is not approved, require review from your compliance team
  • Filter: walletTags: hasAll ["client:abc123"] — scopes the policy to that client’s wallets only
Transfers to approved destinations proceed without intervention. Transfers to unapproved addresses are either blocked or trigger review from your compliance team.
EVM address comparison in whitelist rules is case sensitive. Always use lowercase addresses. See the policy reference for details.
See creating policies for the dashboard workflow or managing policies via API for programmatic setup.

3. Destination approval flow

When a client requests to add a new approved destination: This flow uses two layers: Layer 1 — Your application: The client submits a request through your UI. Your backend stores it and calls the Dfns Update Policy endpoint via the service account to add the new address. Layer 2 — Dfns policy on policy changes: Create a Policies:Modify policy that requires a compliance officer to approve any destination policy update:
  • Activity: Policies:Modify — triggers on any policy update or deletion
  • Rule: AlwaysTrigger — every modification requires approval, no exceptions
  • Action: RequestApproval — a compliance officer must approve before the change takes effect
Every destination change — regardless of which client it’s for — requires human review from your team before taking effect.
You can scope this policy to specific destination policies using the policyId filter if you want different approval rules for different types of policy changes.

4. Client reporting and transparency

Clients should be able to verify that your company is operating within the agreed investment restrictions. Two Dfns data sources make this possible: Account restrictions — Use List Policies to retrieve the policies that apply to a client’s wallets. Filter by the client’s wallet tag or wallet ID to show only relevant policies.
What to showWhere it comes from
Approved destinationsTransactionRecipientWhitelist rule configuration
Spending limits (if any)TransactionAmountLimit rule configuration
Pending destination requestsYour database (application-level)
Activity and audit trail — Use Get Wallet History for on-chain transactions (deposits, withdrawals, amounts, status) and List Audit Logs for governance events (who initiated a transfer, policy approvals and rejections, destination changes). Together, this gives clients a complete picture: which destinations are approved, what limits apply, and a full log of every action taken on their account. See transaction monitoring for implementation patterns including webhook-based status tracking.

Putting it all together — discretionary trading

When a client authorizes you to execute trades on their behalf through an exchange, the full flow ties together every component above:
  1. Client grants trading authorization — they want you to route funds to an exchange for a specific investment strategy
  2. Approve the exchange as a destination — your service account submits the exchange deposit address to the client’s approved destinations (step 3). A compliance officer reviews and approves the addition
  3. Execute orders — your service account calls Transfer Asset to move funds from the client’s wallet to the exchange. The destination policy allows the transfer; any additional policies (spending limits, velocity controls) still apply
  4. Client has visibility — the client can see the exchange address in their approved destinations and track every transfer in their activity dashboard (step 4)
You can layer additional policies on top of the approved destinations to control trading activity:
PolicyPurpose
TransactionAmountLimitCap single transfer amounts to the exchange
TransactionAmountVelocityLimit total value transferred per day
TransactionCountVelocityLimit number of transfers per time window
Never grant approval permissions to service accounts. Keep automation and approval authority separate.

Implementation checklist

1

Set up Dfns service account

Create a service account with the permissions listed above. Store credentials securely in your backend.
2

Build client-to-wallet mapping

When clients sign up, create a Dfns wallet, tag it with client:<client-id>, and store the wallet ID in your database alongside the client record.
3

Create per-client destination policies

For each new client wallet, create a TransactionRecipientWhitelist policy filtered by their wallet tag. Start with an empty list or pre-approved destinations.
4

Create the policy modification policy

Create a Policies:Modify policy with AlwaysTrigger that requires a compliance officer to approve destination changes. This is a one-time setup.
5

Build the destination approval flow

In your UI, let clients submit new destinations. Your backend stores the request, calls Dfns Update Policy, and the approval flow handles the rest. Notify clients when their request is approved or rejected.
6

Build client reporting

Use the Dfns wallet history and audit log endpoints to show clients their transaction history, account restrictions, and policy events.
7

Implement order execution

When clients authorize discretionary trading, add the exchange deposit address to their approved destinations (with approval), then use the service account to execute orders on a schedule or trigger.

Bank custody

Full custodial platform example with code

Treasury policies

Policy configurations for spending controls

Automated payments

Service account payout workflows

Wallet management

Tags, roles, and organization patterns
Last modified on March 12, 2026