TL;DR
A PDA is a special Solana address derived from a program ID and seeds that has no private key — only the owning program can sign for it, making it perfect for protocol-controlled accounts.
Normal Solana addresses are derived from private keys. PDAs are derived from a program’s address plus arbitrary “seeds” (like a user’s wallet address or a token mint). The resulting address intentionally has no private key — it’s mathematically guaranteed to not be on the Ed25519 curve. This means only the program that derived the PDA can authorize transactions for it. No human or external key can access PDA-held funds.
PDAs enable trustless protocol design. When you deposit SOL into a DeFi protocol, it goes to a PDA that only the protocol’s program can control. No team member, hacker, or external party can move those funds without the program’s logic allowing it. Liquidity pools, escrow accounts, and protocol treasuries all use PDAs. This is how DeFi achieves “code is law” — the funds are governed by program logic, not by humans with keys.
When you swap on Raydium, your SOL goes to a PDA-controlled pool account. When you list an NFT on Magic Eden, it’s held in a PDA-controlled escrow. When Pump.fun collects bonding curve deposits, they go to a PDA. Developers use PDAs extensively because they enable deterministic, program-controlled state management. For users, PDAs are invisible but fundamental to the security of every DeFi interaction.