Infrastructure

What Non-Custodial Copy Trading Actually Means

June 28, 2026AllenHark Team

What Non-Custodial Copy Trading Actually Means

If you've used a copy-trading bot on Solana, you've almost certainly done this: you sent funds to a wallet the bot controls, or you handed over a private key, and then you trusted that the service would let you withdraw later. That's custodial. It works right up until it doesn't — a rug, a hack, a frozen account, an operator who disappears.

Soltrace is non-custodial. That word gets thrown around loosely, so let's be precise about what it means here and why it changes the risk you take on.

Custodial vs. Non-Custodial, Plainly

In a custodial setup, the service holds your funds. To copy trades, the bot needs to spend your money, so you give it the ability to do exactly that — and the same ability that lets it trade also lets it withdraw. You're trusting a third party with the keys.

In a non-custodial setup, you keep control of your funds the entire time. The service is granted only the narrow permission it needs to do its job — execute trades — and is structurally prevented from taking your money out. The distinction isn't a promise in a terms-of-service page. With Soltrace it's enforced on-chain.

Your Own PDA Vault

When you use Soltrace, your funds go into a per-user vault — a program-derived address (PDA) that's unique to you, seeded from your own wallet. Your deposits sit there, not in any Soltrace-controlled wallet.

A PDA has no private key. Nobody — not you, not Soltrace — holds a secret that controls it. Instead, the on-chain vault program authorizes actions on the vault according to rules baked into its code. That means there's no key to phish, leak, or sell.

Owner-Only Withdrawal

The single most important rule in the program: only your signature can withdraw from your vault.

There is no keeper path to move your funds out. We tested this directly against our own red-team suite — when the keeper attempts a withdrawal, the program reverts. You can withdraw anytime; the only thing that can hold a withdrawal is an unsettled performance-fee debt, and once you settle it the funds are yours to pull.

The Keeper Can Trade, but Never Take Custody

So how does Soltrace copy trades if it can't touch your money? It holds trade authority only.

  • Trade execution is keeper-signed, but the swap outputs are pinned to your own vault's token account — they can't be redirected to a Soltrace address.
  • Every swap leg must target a program on a vetted DEX allow-list, or the transaction reverts.
  • Even if a keeper were fully compromised, the only thing it could pull toward itself is a hard-capped gas reimbursement — a tiny per-instruction amount — never your trading capital.

In other words, the worst case is bounded. A breach of Soltrace's servers can't drain your vault, because the on-chain program simply won't allow it.

Why This Matters vs. Custodial Telegram Bots

The custodial Telegram-bot model concentrates risk in exactly the wrong place:

  • A single point of failure. If the operator's hot wallet is drained, everyone's funds go with it.
  • Exit-scam exposure. When the service holds the money, "let me withdraw" depends entirely on the operator's goodwill.
  • Opaque accounting. You often can't independently verify balances, fees, or what was taken.

Soltrace inverts all three. Your funds are isolated in your own vault, withdrawal is yours alone, and the fee ledger is recorded on-chain — every position's basis, fees, proceeds, and realized PnL are verifiable on Solscan yourself.

Being Straight About the Trust Caveats

Non-custodial doesn't mean magic. Two honest caveats:

  • Soltrace is red-team tested and on-chain verifiable — not third-party audited. We run an extensive internal adversarial test suite; we don't claim an external audit we haven't had.
  • The vault program is single-key upgradeable, not immutable. It can be updated.

What the architecture guarantees regardless: your funds can only leave your vault with your signature. That property holds even if everything else about Soltrace were compromised.

The Bottom Line

Non-custodial copy trading means you get the convenience of mirroring great traders without the central risk of handing someone your money. With Soltrace, that's not a marketing line — it's enforced by the vault program (Copye7x4FRnEUGsmPSA9Rp2Ap4BvRuh6t3noQjfNND5n) on Solana mainnet.

Ready to try it? See how Soltrace copies wallets, check out the Soltrace product page, or browse plans.