Why You Need a Password Manager
Most people reuse the same few passwords across dozens of accounts. It's understandable — remembering unique, complex passwords for every site is impossible without help. But reusing passwords means a single data breach can expose many accounts at once. A password manager solves this problem entirely.
What Is a Password Manager?
A password manager is an app that securely stores all your passwords in an encrypted vault. You only need to remember one strong master password. The manager handles the rest — generating, storing, and autofilling unique passwords for every site and app you use.
Choosing a Password Manager
There are several reputable options available. Here's a quick comparison of popular choices:
| Manager | Free Tier | Platform | Notable Feature |
|---|---|---|---|
| Bitwarden | Yes (generous) | All platforms | Open source |
| 1Password | No (trial only) | All platforms | Travel Mode |
| Dashlane | Limited | All platforms | Dark web monitoring |
| KeePassXC | Yes (fully free) | Desktop | Fully offline/local |
For most users, Bitwarden is an excellent starting point — it's free, open source, and works across all devices.
Step 1: Create Your Account
Visit your chosen password manager's website and sign up. You'll be asked to create a master password. This is the only password you'll need to remember, so make it count:
- Use at least 16 characters
- Combine unrelated words (a passphrase like "violet-lamp-mountain-7" works well)
- Do NOT use personal information (birthdays, names, pets)
- Write it down and store it somewhere physically secure — not on your computer
Step 2: Install the Browser Extension
Most password managers offer browser extensions for Chrome, Firefox, Edge, and Safari. Install the extension for your primary browser. This enables autofill whenever you visit a login page.
Step 3: Install the Mobile App
Download the app on your phone. Enable biometric unlock (fingerprint or Face ID) so you don't have to type your master password on mobile every time.
Step 4: Import Existing Passwords
If your browser has saved passwords, export them and import into your manager:
- In Chrome: Settings > Autofill > Password Manager > Export
- In Firefox: Settings > Privacy & Security > Saved Logins > Export
- Import the CSV file into your password manager's import tool
- Delete the CSV file from your computer once imported
Step 5: Replace Weak Passwords Gradually
Don't try to update every password at once — it's overwhelming. Instead, update passwords as you log into sites naturally. Let the manager generate a new, random password each time. Prioritise high-value accounts first: email, banking, and social media.
Step 6: Enable Emergency Access (Optional)
Some managers let you designate a trusted person who can access your vault in an emergency. This is worth setting up, especially if you use your password manager for critical family or financial accounts.
You're Done — Now Maintain It
Once set up, a password manager largely runs itself. Use the built-in security audit tool (most managers have one) to identify reused or weak passwords over time. With a manager in place, strong, unique passwords become the path of least resistance.