> ## Documentation Index
> Fetch the complete documentation index at: https://docs.turnkey.com/llms.txt
> Use this file to discover all available pages before exploring further.

# About Turnkey

> Turnkey is wallet infrastructure for developers — secure key management, transaction signing, and programmable access controls built on hardware-backed secure enclaves.

Turnkey provides the infrastructure to create and manage wallets, sign transactions, and secure cryptographic keys at scale. Every signing operation happens inside hardware-backed secure enclaves — private keys are never exposed to Turnkey, your application, or your team.

## How Turnkey works

Instead of managing private keys directly, Turnkey abstracts key management into a layered system. Your application is a parent organization, and sub-organizations are available to fully isolate wallets, users, and policies per end user or tenant.

Every action — signing, creating wallets, updating permissions — is evaluated by a policy engine running inside a hardware-backed secure enclave before anything executes.

Keys never leave the enclave. Turnkey returns signed payloads and supports transaction broadcasting directly to the network.

Turnkey operates based on a [shared responsibility model](/security/shared-responsibility-model). Turnkey is responsible for the security of the platform itself, including enclave infrastructure, policy engine correctness, key confidentiality, and service availability. You are responsible for securing your integration: configuring your root quorum, scoping user permissions, authoring policies, and managing credentials. See the [full model](/security/shared-responsibility-model) for details.

<Frame>
  <img src="https://mintcdn.com/turnkey-0e7c1f5b/83HCB8zBjOP3rX5S/images/concepts/all_concepts.png?fit=max&auto=format&n=83HCB8zBjOP3rX5S&q=85&s=a5ac6ca06d33691a136228dd2c3721a7" alt="Turnkey architecture: organizations, sub-organizations, users, authenticators, policies, and wallets" width="877" height="690" data-path="images/concepts/all_concepts.png" />
</Frame>

## Core concepts

* **Organization** — Top-level entity representing your application. Contains users, wallets, and policies.
* **Sub-organization** — Fully isolated organization nested under the parent, typically representing an end user or business customer. Parent orgs have read-only access and cannot modify sub-org contents.
* **User** — A resource within an org or sub-org that submits activities via a valid credential. Users can have tags, which policies reference for role-based controls.
* **Root user / root quorum** — Root users can bypass the policy engine. A root quorum sets the approval threshold required to exercise root permissions.
* **Authenticator** — A credential used to stamp API requests: passkeys, API keys, email OTP, or OAuth.
* **Activity** — Any action submitted to Turnkey (sign transaction, create user, update policy). All activities are evaluated by the policy engine.
* **Policy** — A logical rule that evaluates to ALLOW, DENY, or REQUIRES\_CONSENSUS. Controls who can sign what, under what conditions.
* **Wallet** — An HD wallet (seed phrase) that generates multiple accounts across chains. Lives inside the enclave; only addresses and signatures are returned.

## Where to start

* **Explore by use case** — [Embedded Wallets](/solutions/embedded-wallets/overview), [Company Wallets](/solutions/company-wallets/overview), [Key Management](/solutions/key-management/overview)
* **Account setup** — [create your org and API key](/get-started/quickstart)
* **SDKs** — [client libraries](/sdks/introduction) for React, React Native, Swift, Kotlin, Flutter, and more
* **Security** — [how the enclave model works](/security/our-approach) and what Turnkey's security guarantees are
* **AI-ready docs** — [use Turnkey docs](/get-started/using-llms) with Cursor, ChatGPT, or your own LLM tooling
