Etana Clients Lost 70%: The Real Failure Was the Absence ofInstitutional Asset Sovereignty
Industry Insights

Etana Clients Lost 70%: The Real Failure Was the Absence ofInstitutional Asset Sovereignty

By Safeheron Team
|
Etana Clients Lost 70% - The Real Failure Was the Absence of Institutional Asset Sovereignty

Written for risk, treasury, and compliance leaders at institutions holding digital assets.

A Failure at the Highest Standard of Compliance

On May 4, 2026, Payward, the parent company of Kraken, filed a second amended complaint suing its former custody partner Etana, alleging the misappropriation of $25 million in client assets.

Etana was not an unlicensed operation. It held a trust company charter issued by the Colorado Division of Banking and had been a regulated “qualified custodian” since 2021, meaning registered investment advisers could legally entrust client assets to it. Etana positioned itself for four years around the marketing line “regulated global digital asset custodian.” When the firm received its charter, its CEO said it brought “peace of mind to clients.”

The latest disclosure from the receiver: Etana has 6.83 million in cash against 26 million in liabilities. The nominal recovery ceiling for clients is roughly 26%. At least 70% of client assets, on paper, are gone.

The Real Cost: Not 70% of the Money, but 100% of the Control

For institutional clients caught in something like Etana, the three “lifelines” available are each painfully thin:

  • Receivership recovery is bounded by remaining assets. 6.83M against a 26M shortfall is a structural gap that cannot be closed.
  • Insurance payouts generally do not cover willful misappropriation. Fraud-type losses have ample contractual grounds to be denied.
  • Contractual recourse is nearly closed off. Etana’s standard client agreement disclaims liability for “losses caused by agents” and “losses absent negligence.”

The reason Kraken can sue is that it is pursuing fraud and civil theft, two claims that contractual disclaimers cannot foreclose. Most institutional clients pursuing breach-of-contract claims will find the liability was already contracted away.

The deeper problem is this: before the case broke open, Etana’s clients had no independent way to verify the state of their own assets. What was on chain, who it was attributed to, whether it had been moved — all of it was visible only through Etana’s own dashboard. The commingling actually began in 2024. Clients had no idea until April 2025, when Kraken attempted a large withdrawal.

This isn’t really a 70%+ loss. It is a 100% loss of control that was never in their hands to begin with.

Institutional Asset Sovereignty: What Etana Really Teaches the Industry

For a decade, the crypto industry has treated “licensed + audited + insured” as the gold standard for institutional custody. But across FTX (2022), Prime Trust (2023), and Etana (2026), the licensing weight ascends from state MTLs to trust companies to qualified custodians, and the failure pattern stays identical. These three layers are necessary but nowhere near sufficient.

After Etana, an institution that simply moves to another “more reputable-looking” licensed custodian is still betting on entity-level trust. The next one may be less likely to fail, but losing that bet still costs 70%+ of principal.

The real answer is not “find a more trustworthy custodian.” It is Institutional Asset Sovereignty: regardless of which custody arrangement an institution chooses, it retains independently verifiable control over its core assets.

Institutional Asset Sovereignty is not a custody model. It is a capability standard: whatever form the custody arrangement takes, the institution retains independently verifiable authority over its core assets — and should be able to answer concrete questions across four dimensions.

The Four Dimensions of Institutional Asset Sovereignty

Dimension 1: Key Control

The institution should hold its own key shares and be a required signer in every asset movement. Even if the custody partner’s internal staff fully collude, they cannot move assets without the client’s knowledge.

In the Etana case, the CEO is alleged to have exercised near-total control over operations. Tiered internal approvals do not hold when the top of governance colludes. An Institutional Asset Sovereignty key structure distributes signing authority across the client and an independent third party. If any one party is absent, assets cannot move.

Dimension 2: Unbypassable Rules

Constraint rules — whitelists, limits, approval tiers, time windows — should be enforced as cryptographic preconditions to signature generation, not as operational procedures the custodian promises to follow.

When Etana routed client funds into proprietary forex positions and defaulted notes, nothing stopped it, because the constraints sat only in contract language. An Institutional Asset Sovereignty policy engine encodes rules directly into the signing protocol. Transactions that violate the rules cannot technically be signed at all.

Dimension 3: Independently Verifiable Ownership

The institution should hold an independent on-chain wallet structure and verify asset ownership directly on chain, without depending on the custodian’s statements.

Client asset segregation does not exist natively on chain for crypto. A custodian can record client A and client B as separate beneficiaries in an internal ledger while pooling their assets in a single on-chain wallet. The Institutional Asset Sovereignty wallet structure ensures every client maps to a distinct on-chain address. Whether your assets are still there is something you verify directly on chain — not something you take on faith from a reconciliation statement.

Dimension 4: Asset Recovery When the Custodian Doesn’t

When the custody partner fails, the institution should be able to use its own key shares, its independent wallet structure, and pre-prepared recovery material to move its assets anywhere else, within hours to days — without depending on the custodian’s continued existence, and without queuing inside a receivership process.

This dimension is the most consequential, and the one that cuts deepest in the Etana case. If Etana’s institutional clients had been able to exercise independent control the moment the cease-and-desist order landed in September 2025, the 70%+ loss that followed would not have happened.

What Safeheron Is Building

Safeheron is APAC’s leading digital asset operations infrastructure provider, built around Institutional Asset Sovereignty. We serve 250+ institutional clients — including OTC desks, stablecoin payment providers, digital banks, and asset managers — across Hong Kong, Singapore, Japan, Korea, and other core APAC jurisdictions.

Our differentiation rests on two pillars:

MPC + TEE dual architecture. Safeheron combines MPC threshold signatures with TEE (Trusted Execution Environment), and we are among the few infrastructure providers in the industry that actually deliver this combination. MPC solves “the key is never in one party’s hands.” TEE solves “the policy cannot be tampered with.” Stacked together, Institutional Asset Sovereignty stops being a product narrative and becomes a fact written into the architecture.

Open-source foundations. Safeheron is the first, and currently the only, Institutional Asset Sovereignty infrastructure provider to open-source both its MPC protocol and its TEE framework. Any institution can audit the code itself. “We cannot move your funds” is not a promise — it is a conclusion the code makes inevitable.

We provide Institutional Asset Sovereignty infrastructure to 250+ institutions across APAC today, covering core reserve assets, client fund segregation, and tiered wallet systems.

What’s Next

Etana will not be the last case. After the next one, every institution will have to answer one question about itself: when the custodian fails, will my core assets survive independently?

If the answer is “no,” or if you are unsure, the question is worth taking seriously now.

Get in touch with the Safeheron team. We can run an Institutional Asset Sovereignty assessment based on your current custody setup: where your core reserve assets sit across the four dimensions today, and how to migrate to an Institutional Asset Sovereignty architecture without disrupting current operations.

Factual basis for this article: Payward Interactive et al. v. Etana Custody Limited et al. (U.S. District Court for the District of Colorado, Case No. 1:2025-cv-02829); Colorado Division of Banking cease-and-desist order (September 19, 2025) and involuntary liquidation order (November 7, 2025, Denver County District Court Case No. 2025CV034004); asset and liability data publicly disclosed by Etana receiver Randel Lewis at etanareceivership.com; CoinDesk and other public reporting.

Previous
SHARE THIS ARTICLE

Related Articles

We use cookies to optimize site functionality & application and give you the best possible experience.

For more information, please read our Cookie Policy. By choosing "Accept All", "Accept Preferences" or turning off the pop-up, you agree to the storage of cookies on your device to improve website navigation, analyze site traffic and provide customer service.

联系我们