How to Choose and Set Up a Password Manager

Slug: how-to-choose-and-set-up-a-password-managerPillar: Technology > Online SafetyKeyword: how to choose and set up a password managerExcerpt: A password manager is the single best thing you can do for your online security. Here's how to choose the right one and set it up in under 15 minutes.

Most people use the same password — or a small set of passwords — across multiple accounts. It's understandable: remembering dozens of unique, complex passwords is genuinely difficult. But it means that one data breach can compromise every account you own. A password manager solves this completely. It remembers every password for you, generates unique strong ones automatically, and autofills them when you log in. Here's how to get set up.

What a Password Manager Actually Does

A password manager stores all your passwords in an encrypted vault protected by a single "master password" — the only password you need to remember. When you visit a website, it autofills your credentials. When you create a new account, it generates a strong random password and saves it automatically. Most also sync across all your devices and alert you if any of your passwords appear in a known data breach.

Which Password Manager Should You Choose?

For most people, these are the top options in 2026:

Bitwarden is the best free option. Open-source, independently audited, and genuinely full-featured on the free tier. Unlimited passwords, device syncing, and secure sharing are all free. If you want a clean conscience about privacy and cost, start here.

1Password is the best paid option for families. Around £3/month per person or £5/month for a family plan. Excellent apps, a travel mode that hides sensitive vaults at border crossings, and a particularly well-designed interface.

NordPass is the easiest for beginners. Very clean interface, simple setup, good free tier. Made by the same company as NordVPN.

Apple Passwords / Google Password Manager are built-in options worth considering if you're entirely within one ecosystem. Less feature-rich but zero friction to get started.

How to Set Up Bitwarden (Step by Step)

This works for any major password manager; the steps are similar across all of them.

Step 1: Go to bitwarden.com and create a free account. Use your email address and create a strong master password — this should be a long passphrase (four or more random words) that you can remember. Write it down and store it somewhere physically secure. If you lose this password, Bitwarden cannot recover your vault.

Step 2: Install the browser extension for Chrome, Firefox, Safari, or Edge. This is what autofills your passwords on websites.

Step 3: Install the mobile app on your phone (iOS and Android). Enable autofill in your phone's settings (Settings → Passwords → AutoFill on iPhone; Accessibility → Autofill on Android).

Step 4: Import your existing passwords. If you've been using your browser to save passwords, export them (Chrome: Settings → Passwords → Export) and import them into Bitwarden. This takes about two minutes and populates your vault immediately.

Step 5: Over the next few weeks, as you log into sites, let the browser extension update weak or reused passwords with new strong ones it generates. Prioritise banking, email, and social media accounts first.

Setting Your Master Password

Your master password is the only thing standing between an attacker and all your other passwords, so make it strong. A passphrase like "correct-horse-battery-staple" (four random common words with hyphens) is both strong and memorable. Avoid names, birthdays, or anything someone who knows you might guess. Enable two-factor authentication (2FA) on your password manager account itself for an extra layer of security.

Common Concerns Answered

The most common worry is: "What if the password manager gets hacked?" Modern password managers use zero-knowledge encryption — your master password never leaves your device. The company stores only an encrypted blob that's useless without your key. Multiple independent security audits of services like Bitwarden have confirmed this. The risk of one breach compromising everything is far lower than the risk of reusing passwords across dozens of sites.

Another concern is cost. Bitwarden's free tier is genuinely comprehensive for personal use. Most paid tiers cost less than a coffee per month and cover an entire family. For more technology guides, see our Technology section.

Frequently Asked Questions

Is it safe to store all my passwords in one place?

Yes, when that place uses strong encryption and zero-knowledge architecture. Using a password manager is significantly safer than reusing passwords — the most common cause of account breaches.

What happens if I forget my master password?

Most password managers cannot recover your master password — that's by design for security. Set up an emergency access contact, print your emergency kit, and store your master password somewhere physically secure.

Can I use a password manager on multiple devices?

Yes. All major password managers sync across devices. Bitwarden's free tier includes unlimited device sync.

Should I use the password manager built into my browser?

Browser password managers (Chrome, Safari, Firefox) are better than nothing but have limitations: they don't always sync across different browsers, have fewer security features, and can't store other sensitive information. A dedicated password manager is more secure and versatile.

What about passkeys — are they replacing passwords?

Passkeys are a newer, more secure authentication standard supported by major platforms. Many password managers now store passkeys too. Bitwarden and 1Password both support passkeys as of 2026. Use them where available — they're phishing-resistant and more secure than passwords.