Best Password Manager Companies

  • Tech to Us
    5.0(1,636)
  • RoboForm
    3.0(193)
  • Keeper
    3.0(21)

Best Password Manager Companies

If you log in to multiple online accounts every day, including financial, email and social media accounts, use our guide to research the best password manager company for you. Password managers generate and securely store passwords so consumers don’t have to remember them, but different ones offer varied services and levels of protection. We explain how consumers should use these features to meet their security needs.

Why trust ConsumerAffairs?
  • Our recommendations are based on what reviewers say.
  • 4,607,383 reviews on ConsumerAffairs are verified.
  • We require contact information to ensure our reviewers are real.
  • We use intelligent software that helps us maintain the integrity of reviews.
  • Our moderators read all reviews to verify quality and helpfulness.

Compare Reviews for Top Password Manager Companies

Sort
  • Best Rated
  • Most Reviewed
  • Highest Rated

Password Manager Buyers guide

Jump into our guides and start learning

Top Picks

See who reviewers like

Tech to Us logo
RoboForm logo
Keeper logo
See our top picks

What features matter most in a password manager?

Password encryption

Saving your passwords in a password manager program isn’t safe if anyone who breaks into the software can immediately access them. Password encryption adds a layer of security by making it harder for thieves to access stolen passwords.

  • Multiple encryption layers: Most password managers require consumers to unlock them with a password, but that’s not good enough; if thieves get the master password, they can view the passwords. Passwords should have at least two or three layers of encryption to make it hard to retrieve them after unlocking the password manager.
  • Restricted access: Some password managers allow users to restrict the geographical locations that can access the software so that thieves in other countries can’t get a consumer’s passwords.
  • Two-factor authentication: Password managers may require users to put in a flash drive as a “key” before unlocking passwords.

Secure resource usage

If passwords are saved using insecure resources, thieves can retrieve them by breaking into the user’s computer itself. Using secure resources eliminates this problem.

  • Secure memory: The password manager writes password information only to secure memory components so that if a hacker accesses the user’s hard drive, he or she can’t easily find passwords.
  • Cryptographic signing: The software requires internal processes to verify their authenticity using cryptographic signing. This prevents hackers from hijacking these processes for malicious purposes, including password theft.
  • Secure mobile integration: Password managers have safeguards in place to verify the authenticity of commands sent from mobile devices. These processes ensure that only authorized devices are used to access the password manager and that the user authorized such access.

Self-containment

Rather than using third-party applications, the password manager stores passwords and attempts logins itself. This is more secure because the password manager itself has control over all such processes.

  • Local storage: Passwords are stored in encrypted form on the user’s computer rather than in the cloud or on a third-party application’s server.
  • Local encryption: The password manager is responsible for all levels of password encryption.
  • Local site certification: The password manager searches for and verifies site certificates before entering the user’s login credentials rather than relying on a third-party credentialing service.

User friendliness

If a password manager service isn’t easy for consumers to use, it defeats the purpose of using it. User-friendly services make it easy for even the least computer literate users to store and retrieve passwords.

  • Intuitive controls: The service has large buttons and clearly-named menu commands to make it obvious what to click or where to go to save, retrieve and input passwords.
  • Provides password creation hints: Users may not know how to create secure passwords. The most user-friendly password managers provide tips and hints to help accomplish this task.
  • Offers password recovery: Password managers must have their own password protection to keep personal info safe, but what if a user forgets the password? Some password managers have user-friendly options for recovering lost passwords without compromising security.

Verifiable design

Password managers need to be secure so that consumers can be comfortable using them. A verifiable design goes a long way towards increasing comfort level because users can check out the programming and find out how the software works.

  • Open source code: The programming code used to design and run the software should be available online for anyone who wants to see it.
  • Design and execution code matches: The same programming used to design the software should be used to run specific functions.
  • Peer review access: Source code should be peer-reviewed prior to the password manager’s release. Users should have access to the peer reviews so that they can learn about any potential weaknesses and how they were resolved prior to release.

Master password security

The password manager’s master password is like the key to a house’s front door; anyone who has it can open the software. Effective security requires that password managers take precautions to stop master passwords from falling into the wrong hands.

  • Password requirements: Some password managers require users to include numbers, letters and sometimes symbols such as # or %. In addition, sometimes passwords are required to be a certain length, and passwords that spell words may be banned. Requiring users to follow these rules ensures that master passwords are more secure than they otherwise might be.
  • Password expiration: Requiring users to change their passwords periodically helps increase security because even if thieves get the old password, they still won’t be able to get into the system. Some password managers also don’t allow users to recycle passwords; the new password must be substantially different from any password used over the past several months.
  • Full password recovery is disabled: If a user loses his or her password, the best password managers don’t provide it. Most software first displays a hint the user has set up when he or she reports a lost password. If the user cannot retrieve the password and requests a reset, he or she receives an email to a link with a temporary password that will only work for 24 hours. This reduces the risk that a thief will request a “lost” password.

What are different types of password managers?

Integrated password managers

Some password managers are integrated into other software. For example, web browsers may ask users if they want to save a password when they log in to a website.

Standalone password managers

Some password managers are separate pieces of software that must be installed on a user’s computer.

Web-based password managers

The user signs into a website in order to access and use his or her passwords.

Hardware-embedded password managers

The user’s computer contains a microchip or other piece of hardware that can save passwords and authenticate the identity of the person trying to retrieve the password.

Who uses password managers?

CEOs, managers and other executives

Upper-level employees at large companies may have dozens of passwords they must keep track of to log in to the secure systems they use to do their jobs. For these people, a password manager is an indispensable productivity tool.

People who can’t remember passwords

Some consumers have a hard time remembering passwords and may be tempted to use the same password for every online account or use insecure passwords like “password.” These people need a password manager to help promote the security of their accounts.

Small business owners

Small business owners have a ton of things to remember and may need to log in to various online accounts. Using a password manager gives them one less thing to worry about.

Password manager FAQ

Are password managers safe?

Yes, reputable password managers use strong encryption to protect your information from malware or hackers. Nothing is 100% safe, but research has shown that using a password manager is safer than not using one. Users can easily implement varied, more complicated passwords, which makes their accounts safer.

Can a password manager be hacked?

Technically, yes. Security is rarely a yes or no question. There is no 100% secure site, but password managers maintain strict security measures to protect their clients’ information. Most password managers only save your master password locally, which protects them from server breaches.

Are there any free password managers?

Yes, there are many free password managers, including:

Are password managers any good?

Yes, password managers are more secure than using the same password everywhere or trying to remember many different passwords. Password managers:

  • Conveniently store your existing passwords
  • Create complex new passwords when needed
  • Can use biometric data, like facial recognition or your fingerprint scans, to protect your information
Should passwords be encrypted or hashed?

Ideally, passwords should be both encrypted and hashed. Each of these security functions works differently to protect your password, and using them together makes your password more secure than using either alone.

What are do’s and don’ts of password security?

Do:

  • Use a password manager
  • Use uppercase and lowercase characters
  • Use a different password for every website
  • Use 10 or more characters
  • Change your passwords regularly

Don’t:

  • Use any part of your name in your passwords
  • Pick common choices like “password”
  • Share your password with anyone
  • Use adjacent keyboard combinations like “12345” or “qwertyuiop”
  • Use pet names, family names, birthdays, addresses or area codes in your passwords
  • Use your favorite sports or sports teams in your passwords
How do I manage my passwords?

The best option is to use a password management program that creates and stores secure passwords for you. You only have to remember one master password to keep everything safe.

  1. Select a password manager.
  2. Download the program or browser extension and set up a new account and master password.
  3. Enter in your existing passwords or wait for your password manager to save them as you access your usual sites.
  4. If possible, have your password manager run a security check on your accounts.
  5. Change your passwords regularly. Your password manager remembers these new passwords, which makes it easy to update them frequently.

Not sure how to choose?

Get buying tips about Password Manager delivered to your inbox.

    By entering your email, you agree to sign up for consumer news, tips and giveaways from ConsumerAffairs. Unsubscribe at any time.

    Thanks for subscribing.

    You have successfully subscribed to our newsletter! Enjoy reading our tips and recommendations.

    Author reviews for password manager companies

    LastPass

    LastPass is a standalone password manager that integrates with any web browser so that users can log in even if they use a different browser at home than at work. It is one of the best-known password managers available and has received critical acclaim.

    Read 92 Reviews
    RoboForm

    RoboForm is a simple web-based password manager that allows users to login from any Internet-enabled device and access their passwords. It has long been considered a leader in the industry.

    • Easy to use: Users who do not have a sophisticated understanding of how to use software will appreciate the fact that they can easily log in, save passwords and retrieve saved passwords.
    • Auto-save features: RoboForm can be set to automatically save any personal information, such as names, addresses and birthdays, in addition to passwords.
    • Can be used anywhere: Since it is web-based, RoboForm can be accessed anywhere a user needs it; all consumers need is an Internet connection.
    • Multifactor authentication option: RoboForm's Multifactor Authentication option gives users the ability to ensure only "registered" devices can access an account. Three types of 'factors' include a hardware or software token, a password or security question, or a fingerprint or retina scan. If the feature is enabled, at least two factors must be present to access the RoboForm Everywhere account.
    • Security: Web-based access can be convenient, but can also make it easier for hackers and other unauthorized people to access the password manager. The online/cloud storage is only an option for RoboForm users, and you can choose to store your information only on a computer for added security.
    Read 193 Reviews
    Dashlane

    Dashlane is a standalone password manager that can be run on a computer or smartphone. It saves all sorts of sensitive information, not just passwords.

    Read more about Dashlane
    Thycotic

    Thycotic offers a suite of IT security and password management services, including Secret Server for managing and storing passwords and Password Reset Server for managing password changes.

    Read 8 Reviews
    BeyondTrust

    BeyondTrust is a password and access management tool for system administrators. This tool allows administrators to manage network users’ logins and set various levels of privileges for each user.

    • Easy to install: Administrators can save time by installing this software, which installs quickly and easily without requiring advanced IT expertise.
    • Offers an additional layer of security: Since this software allows users to set privilege levels and store all user login credentials, it helps protect system security.
    • Requires administrator login: Requiring administrator access is somewhat of a two-factor authentication process, as users must have administrator usernames as well as the master password to log in.
    • Ideal for businesses: This software is meant to help manage multiple accounts on a network, so home users who just want to store their own passwords won’t benefit.
    • Pricing: Small business owners with few employees won’t find this software a cost-effective means of controlling employee computer use.
    True Key

    True Key is a password manager from Intel Security that lets you use your fingerprint or your face as your password. The free version is limited to 15 passwords, and the premium version, which lets you store an unlimited number of passwords, costs about $20 a year.

    • Password options: With True Key, you can use your face or your fingerprint as your password. Instead of typing in a long password, just look at your phone or place your finger on your screen.
    • Compatibility: True Key works on Macs and PCs as well as iOS and Android devices. It’s also compatible with the following internet browsers: Chrome, Firefox, Internet Explorer, Microsoft Edge and Safari.
    • Multi-factor authentication: True Key supports multi-factor authentication to make your info more secure. Add an email, a confirmation on a second device or a master password as your second factor.
    • Import passwords: It’s easy to switch to True Key from another password manager. Log into your True Key account, and then follow the prompts to import your passwords from another program.
    • Safe Notes: If you need to keep track of private information, you can use True Key’s Safe Notes feature. You can type in a note for yourself, and keep it password protected.
    OneLogin

    OneLogin is a cloud-based password management and security software that is used primarily by businesses.

    • Easy to use: Both administrators and other users find it easy to use OneLogin’s interface to manage application logins.
    • One-click log in: Once the software is set up and passwords are stored, users can sign into applications with one click.
    • Comprehensive security tools: OneLogin offers identity authentication tools and administrator monitoring tools to ensure security.
    • Subscription based tool: Users must pay a monthly fee to access the tools, which may not be ideal for users seeking a free password manager.
    • Added security features: Home users may not need the comprehensive security offered by OneLogin.
    Sticky Password

    Sticky Password is a standalone application that can be integrated with web browsers and mobile devices for ease of use.

    Read more about Sticky Password
    Keeper

    Keeper is a standalone application that offers web access and a multitude of security features to help keep passwords stored safely.

    Read 21 Reviews
    CloudEntr

    CloudEntr is a password management service for businesses that stores and manages passwords for cloud applications.

    • One-click access to cloud applications: Users just have to sign into CloudEntr to access all the applications they need, which contributes to business productivity.
    • Allows employees to access apps without knowing the passwords: Business users can improve security by granting employees temporary access to cloud applications through CloudEntr, employees won’t be able to access these apps outside of the workplace.
    • Administrator control: Administrators can monitor and control employee access to computer applications using CloudEntr.
    • Stores cloud application passwords only: Casual users may not benefit, as the service doesn’t store local passwords.
    • Meant for business use: Users who don’t need to monitor network computers may not need most of this program’s features.
    Password Genie

    Password Genie is a software app made by SecurityCoverage that helps people manage their online passwords and other types of private data. Unlike many password managers, this app stores a wide range of personal information in the cloud. By storing the information, users can create more complex, randomized passwords without concern of losing access to their accounts.

    • Multiple computers: Each Password Genie account will work on up to five devices, making it useful for individual users and small businesses that work from laptops, mobile devices and desktop computers.
    • Unlimited accounts: Password Genie can remember an unlimited number of usernames and passwords to meet the needs of practically any user.
    • Online storage: Password Genie stores passwords online so members can use them securely on multiple devices.
    • Encryption protection: Password Genie uses 256-bit AES encryption for information stored online and 128-bit encryption when transferring data.
    • Form fill: In addition to remembering usernames and passwords, Password Genie can auto-complete website forms that ask for common information such as name, address and credit card numbers.

    Compare Reviews for Top Password Manager Companies

    Want your company to be on this guide?

    Yes, continue
    Comparing

    ×