Asset HausAsset Haus
Back to Blog
Compliance & Structuring

Token Warrants, SAFTs, and Convertibles Explained

Asset Haus Team·2026-07-06·11 min read

What Are Token Warrants, SAFTs, and Convertibles?

They are the three instruments crypto startups use to give investors rights to future tokens or to a deferred conversion outcome. The SAFT (Simple Agreement for Future Tokens) sells the future tokens directly — money now, tokens at network launch. The token warrant attaches a token right to an equity round: the investor funds a SAFE or priced round, and the warrant adds the right, not the obligation, to buy a share of the future token supply. Convertible instruments — SAFEs and convertible notes — defer the pricing decision to a later round, and increasingly run on tokenized registers with their legal mechanics unchanged.

This article takes the issuer's view — what each contract promises, who owes the tokens, where structures break — as one chapter of our broader guide to tokenization instruments. How venture funds hold and wrap these positions at portfolio level is covered separately in the venture capital fund tokenization guide.

SAFT Mechanics: Selling Tokens That Do Not Exist Yet

A SAFT is a contract in which an investor pays now for the right to receive tokens when a network launches. The framework comes from the 2017 SAFT Project whitepaper developed by Protocol Labs with the law firm Cooley, built on a two-step theory: the SAFT itself is an investment contract — a security — sold to accredited investors under an exemption such as Reg D, while the eventually delivered token would be a functional, non-security asset.

The first half of that premise is not in dispute: a SAFT is a security in the United States regardless of what the future token claims to be — money invested in a common enterprise expecting profit from the issuer's efforts is the Howey test almost verbatim.

The mechanics that matter:

  • Delivery trigger. Tokens are owed at a defined event — network launch or token generation event (TGE) — usually with a long-stop date triggering a partial refund if no launch occurs.
  • Lockups and vesting flow through. Most SAFTs deliver tokens subject to post-TGE lockups and multi-year vesting — the real position is "a vesting schedule starting at TGE," and any wrapper or transfer must carry those restrictions with it.
  • Conversion math. Pricing is set per token or as a discount to the TGE price, sometimes with most-favored-nation protection against cheaper later tranches.

The second half of the premise — that the delivered token escapes securities analysis — took serious damage in enforcement. In SEC v. Telegram (S.D.N.Y. 2020), the court preliminarily enjoined Telegram from delivering Gram tokens to its SAFT purchasers, treating the $1.7B SAFT sale, the token delivery, and the anticipated public resale as one scheme amounting to an unregistered public offering; Telegram settled in June 2020, agreeing per the SEC's press release to return $1.22 billion to investors and pay an $18.5 million penalty. The case did not outlaw SAFTs, but it ended any comfort that a compliant private round automatically cleanses the later token distribution. US-facing SAFT practice has since run more conservative — strict accredited-investor discipline, Reg S offshore tranches, longer lockups, no representation that the token will not be a security. Whether a given structure works is a counsel question on its facts.

Token Warrants: Token Rights Attached to an Equity Round

A token warrant is issued alongside equity — most often stapled to a SAFE or a priced seed round — and gives the investor the right, but not the obligation, to purchase tokens if and when the company (or its token entity) ever generates them. It lets founders raise equity without promising a token, while protecting investors if value accrues to a token instead of the equity.

Three design decisions carry the weight:

How the allocation is expressed. Market practice, described in a16z crypto's guidance on token rights in term sheets, clusters around three methods: a pro-rata share of a defined company token reserve, a fixed percentage of total token supply, or the investor's equity ratio applied to total supply. That guidance flags hard-coded fixed percentages as the predatory version — they ignore future dilution — and favors tying token allocation to the investor's equity percentage at token creation. A fixed token count is rarer and riskier still, since supply plans change.

Exercise price. Typically nominal — cents per token or a de minimis total. It exists to make the instrument a genuine option rather than a delivery obligation, not to raise capital; the allocation percentage is where the real negotiation happens.

Who actually owes the tokens. The warrant is signed by the development company — a Delaware C-corp, say — but tokens are very often issued by a separate foundation or token SPV in another jurisdiction (BVI, Cayman, Switzerland) that never signed anything. Unaddressed, the investor holds an option against an entity with no tokens. Standard fixes: an assignment mechanism — the DevCo assigns the warrant to the token entity, which assumes delivery — plus covenants that the DevCo will cause any token-issuing affiliate to honor it. Investors should read for those clauses; founders should expect to be asked.

SAFE + Token Side Letter vs. Token Warrant

The token side letter is the warrant's close cousin — both attach to a SAFE or equity investment and use similar allocation formulas. The differences, as comparison guides from Legal Nodes lay out, are mechanical but consequential:

  • A side letter grants the right to receive tokens — no purchase, no exercise price — delivered by the company that signed it.
  • A warrant grants the right to purchase tokens at the pre-agreed nominal price, commonly assigned to the token entity, which sells the tokens to the investor at exercise.

Under US regulatory uncertainty, many counsel prefer the warrant precisely because the signing company is not the party performing token delivery. The side letter is simpler to paper and common where the token-entity question is not yet acute. Which fits a given cap table is a counsel call, not a default.

Tokenized Convertible Notes

The convertible note predates crypto and does not change because a blockchain is involved: debt — principal, interest, maturity — converting into equity at the next qualified financing at a discount (commonly 10–25%) and/or a valuation cap. A SAFE is the same deferral logic without the debt features.

A tokenized convertible note is the classic instrument with its register of record maintained on-chain: each note position is a token, permitted transfers update the register directly, and interest and conversion run against token holdings. The discount and cap mechanics are untouched — tokenization here is operational infrastructure, not financial engineering. It earns its keep with many noteholders, a clean registry of record, and controlled secondary transfers that take days instead of a re-papering cycle.

Comparison: SAFT vs. Token Warrant vs. Side Letter vs. Convertible

InstrumentWhat the investor getsWhen pricedUS security statusWho issues / owes deliveryTypical useKey risk
SAFTFuture tokens at TGEAt signing (fixed price or TGE discount)A security; delivered token may be too (Telegram)Signing companyToken-first pre-launch raisesDelivery blocked or token deemed a security
Token warrantOption on a share of token supply at nominal priceAllocation fixed now; token value at TGERides a securities offering; token analysis deferredDevCo signs; often assigned to foundation/token SPVEquity rounds where a token is possibleToken entity never assumes the obligation; supply-math conflicts
SAFE + token side letterRight to receive tokens, no purchaseAllocation formula fixed nowRides a securities offeringThe company that signed the SAFEEarly rounds with no token entity yetDelivery obligation sits on the DevCo
Tokenized convertible noteDebt converting to equity at discount/cap; on-chain registerAt the next qualified financingA security (a note)Borrowing companyBridge rounds, many-holder notesRepayment risk; tokenization adds ops, not liquidity

Transfer and Secondary Reality

The uncomfortable part for investors: these are typically the least transferable instruments in a portfolio. Nearly every SAFT, warrant, and side letter conditions transfer on issuer consent; with no standardized register, an assignment is a bespoke legal workflow — consent chase, novation, a spreadsheet update at the company.

That gap is what tokenizing the agreement itself addresses — wrapping the contractual right as a digital security whose transfer logic enforces the underlying restrictions, so eligible-investor transfers can actually clear. Two documented deployments show the pattern. In the LayerZero SAFT case, nine separate LayerZero-related deals totaling $3.8M in volume tokenized SAFTs, equity, and warrants under a unified wrapper — instrument segregation, KYC-verified transfers, and an OTC workflow enabling pre-TGE secondary transfers under a BVI/Cayman framework. In the Scroll SAFT case, a KYC-gated peer-to-peer transfer market for tokenized Scroll SAFTs processed $3.4M gross ($2.4M net settled) with full SAFT flow segregation. In both, Asset Haus deployed the infrastructure — issuance, registry, KYC gating, transfer controls — for the transacting parties; it was not the issuer, broker, or custodian of any instrument. The compliance architecture is the same discipline that governs pre-IPO secondary markets: verified eligibility, consent workflows encoded rather than removed, no pretense of a public market.

Issuer Checklist Before Signing Token Paper

Questions to resolve with counsel before the next SAFT, warrant, or side letter goes out:

  1. Run the supply math across everything outstanding. Total all SAFT commitments, warrant allocations, side-letter formulas, and team/ecosystem reserves against one canonical total supply. Mixed methods — one investor on a fixed percentage, another pro-rata of a reserve — can sum past what the supply plan allows, and the conflict surfaces at TGE.
  2. Decide the token entity question early. Which entity will issue the token, in which jurisdiction, and how does each outstanding instrument bind it — assignment, assumption, or covenant? A warrant against a company that will never hold tokens is a dispute deferred.
  3. Ask about tax timing on delivery. Token delivery under a SAFT or warrant exercise may be a taxable event, and valuation and timing are genuinely unsettled in several jurisdictions — get a tax adviser's sign-off before signing, not after TGE.
  4. Write the transfer provisions deliberately. Decide now what consent standard governs secondary transfers and whether the instrument can later live on a controlled register — retrofitting transferability is harder than designing it in.

Instrument design, entity mapping, and register architecture are what a structured legal setup engagement coordinates with qualified counsel. Asset Haus has structured 32 deals with $200M+ facilitated across 9+ jurisdictions on a 120-day launch model — as tokenization infrastructure, never as issuer, adviser, or counsel.

FAQ

What is a token warrant?

A contract issued alongside a SAFE or equity round giving the investor the right — not the obligation — to buy a defined share of a project's future token supply at a nominal exercise price if a token is ever generated. Allocation is usually a percentage of supply or a formula tied to equity ownership, not a fixed token count.

Is a SAFT a security?

In the United States, yes — the SAFT itself is an investment contract under the Howey test and must be sold under a securities exemption regardless of what the future token is claimed to be. Whether the delivered token is also a security is fact-specific, and SEC v. Telegram showed courts may treat the SAFT sale and token distribution as one scheme — a question for securities counsel.

SAFT vs. token warrant — which should a founder use?

A SAFT fits projects raising specifically against a planned token launch; a token warrant fits equity rounds where a token is possible but not promised. US-facing founders have leaned toward SAFE-plus-warrant structures since the Telegram enforcement, but the right instrument depends on jurisdiction, investor base, and token-entity plans — a decision for counsel, not a template.

What is a token side letter?

A supplement to a SAFE or equity round granting the right to receive tokens — no separate purchase, no exercise price — delivered by the company that signed it. It differs from a token warrant, which is a right to buy tokens and is commonly assigned to the separate token-issuing entity.

Can SAFTs or token warrants be sold before the token launches?

Usually only with issuer consent, and in practice rarely — the paper is bespoke and there is no standard transfer register. Where pre-TGE transfers happen at scale, the agreement has been wrapped as a tokenized instrument with KYC-gated, consent-enforcing transfer controls, as in the LayerZero and Scroll deployments. Any transfer remains a securities transaction between eligible investors.

Mapping SAFTs, warrants, and convertibles on your cap table? Start with a structured assessment.

safttoken-warrantsconvertiblesinstrumentsventure-capital

Next step

Map the legal perimeter before launch.

Use the counsel-ready memo to separate issuer, platform, regulated partner, custody, transfer, and public-copy responsibilities.