By Priya Nair, AI & Security Editor · Last verified
1Password
Core 80/20Password manager trusted by 100,000+ businesses for secure credential and secret storage.
Last verified
Affiliate link — see how we evaluate.
"1Password reached a $6.8 billion valuation in its 2022 Series C funding round led by ICONIQ Capital."
What is 1Password?
1Password is a password manager founded in 2005 by Dave Teare, Roustem Karimov, Natalia Karimov, and Sara Teare in Toronto, Canada. It reached a $6.8 billion valuation in a 2022 Series C round led by ICONIQ Capital — the largest funding round in password manager history. As of 2025, 1Password serves over 100,000 business customers and 15 million individual users, making it one of the two leading commercial password managers alongside Dashlane.
The product stores passwords, passkeys, credit cards, secure notes, documents, and SSH keys in an AES-256 encrypted vault with a zero-knowledge architecture: your data is encrypted on your device before syncing to 1Password’s servers, so 1Password cannot read your vault even if requested. Secrets Automation — 1Password’s developer-oriented feature — extends credential management into CI/CD pipelines and infrastructure secrets, which no other consumer password manager matches.
1Password has no free tier, which is its primary competitive disadvantage against Bitwarden, which offers a capable free plan. It sits at the center of the 80/20 of password managers we cover for teams that can pay for premium UX and developer tooling. Integrations with Slack, Okta, GitHub, and Azure AD cover the enterprise security stack.
How does 1Password work?
1Password organizes credential management around four components: the encrypted vault, shared vaults for teams, Watchtower monitoring, and Secrets Automation. The combination makes it the most complete credential management tool in its price range.
Encrypted vault and core features
The 1Password vault stores items — logins, secure notes, payment cards, identities, software licenses, SSH keys, and API credentials — in encrypted categories. The browser extension autofills credentials on matching sites, generates strong passwords and passphrases on demand, and creates passkeys for sites that support them. The vault syncs across unlimited devices on all paid plans.
The account setup uses a two-key model: your master password and a Secret Key. The Secret Key is generated during account creation and never transmitted to 1Password’s servers. Recovering access requires both. This two-factor approach means a compromised master password alone cannot unlock your vault without the Secret Key — a security architecture that no major competitor fully replicates.
Travel Mode
Travel Mode lets users mark individual vaults as “safe for travel.” When Travel Mode is active, only safe-for-travel vaults appear on the device. Non-travel vaults become invisible — they don’t appear in searches, aren’t accessible, and leave no evidence they exist. Turning Travel Mode on removes sensitive vaults; turning it off restores them. This feature is designed for border crossings where devices may be subject to search. No other mainstream password manager offers an equivalent.
Watchtower and security monitoring
Watchtower continuously monitors your stored credentials against known data breaches (via Have I Been Pwned), flags reused passwords, identifies weak passwords, and alerts on accounts missing two-factor authentication. The monitoring runs automatically and surfaces alerts in the Watchtower dashboard. For security-conscious individuals and IT administrators auditing team credential hygiene, Watchtower replaces manual security audits.
Secrets Automation for developers
Secrets Automation connects 1Password to development and deployment pipelines. API keys, environment variables, and infrastructure credentials stored in 1Password vaults can be injected into GitHub Actions workflows, AWS deployments, Terraform configurations, and Docker environments without hardcoding credentials in configuration files.
This capability makes 1Password a partial replacement for dedicated secrets managers like HashiCorp Vault for engineering teams under 100 people. Teams maintaining both a consumer password manager and a separate secrets tool often consolidate to 1Password Business when they discover Secrets Automation covers their infrastructure credential needs.
How does 1Password compare to Bitwarden, Dashlane, and LastPass?
1Password leads on UX, Travel Mode, and Secrets Automation. Bitwarden leads on open-source transparency, free-tier capability, and cost at every paid tier. Dashlane leads on VPN bundling and real-time dark web monitoring. LastPass is no longer a recommended option following its 2022 breach.
| Attribute | 1Password | Bitwarden | Dashlane | LastPass |
|---|---|---|---|---|
| Best for | Teams + developers | Cost-sensitive users + open-source | VPN + monitoring bundle | Avoid (post-breach) |
| Free tier | No | Yes — full-featured | Yes — 50 passwords | Yes — 1 device only |
| Open-source | No | Yes (GPL) | No | No |
| Self-hosted option | No | Yes | No | No |
| Travel Mode | Yes — unique | No | No | No |
| Developer secrets (CI/CD) | Yes (Secrets Automation) | No | No | No |
| 2FA support | Yes | Yes | Yes | Yes |
| Data breach history | None (vault data) | None | None | Yes — 2022 (vaults exposed) |
| Individual price | $2.99/month | $10/year ($0.83/month) | $4.99/month | $3/month |
| Team price (per user) | $7.99/user/month | $3/user/month | $8/user/month | $6/user/month |
| 80/20 verdict | Pick for teams + devs | Pick for cost + open-source | Pick for VPN bundling | Avoid |
“The LastPass breach of 2022 changed enterprise password manager procurement conversations — IT leaders now ask for breach history and zero-knowledge architecture verification before shortlisting any tool,” said Priya Nair, AI & Security Editor at tools8020 and a former ML engineer with hands-on security tooling experience.
Who uses 1Password in 2026?
1Password’s primary users are professionals and businesses who treat password management as a security function rather than a convenience feature. Technology companies, financial services firms, legal practices, and healthcare organizations represent the largest business customer segments.
Engineering teams are a growing use case driven by Secrets Automation. A 20-person startup engineering team managing AWS credentials, GitHub tokens, Stripe API keys, and third-party service secrets across a Terraform deployment can consolidate all of that into 1Password Business rather than running a separate secrets manager alongside a consumer password tool.
Families with multiple members use 1Password Families ($4.99/month for five users) for shared accounts — streaming services, travel booking sites, home utility portals. The family plan’s shared vault allows adults to manage credentials for children’s accounts while maintaining separate private vaults.
When should you skip 1Password?
1Password is the wrong choice in three scenarios. Evaluate these before committing to a subscription.
- Cost is a primary constraint. Bitwarden offers a free tier with unlimited passwords on unlimited devices — 90% of 1Password’s individual functionality at no cost. The $10/year Bitwarden Premium tier adds TOTP generation, Vault Health reports, and encrypted file attachments for less than 1Password’s monthly fee.
- Your organization requires open-source auditability. Bitwarden’s code is publicly available for independent security audit. 1Password’s server-side code is closed-source. For security teams with a policy requiring open-source cryptographic implementations, this is a disqualifying constraint.
- You need self-hosted vault storage. Bitwarden supports self-hosting the entire server stack on your own infrastructure. 1Password’s zero-knowledge cloud storage is the only option. For organizations with strict data residency requirements prohibiting third-party cloud storage, Bitwarden’s self-hosted deployment is the correct path.
How much does 1Password cost?
1Password has no free tier. Individual plans start at $2.99/month billed annually. Business plans start at $7.99/user/month. All plans include unlimited devices and unlimited vault items.
| Plan | Price (annual billing) | Key inclusions |
|---|---|---|
| Individual | $2.99/month | Unlimited passwords, 1GB document storage, Watchtower, Travel Mode |
| Families | $4.99/month (5 users) | All Individual features, shared vaults, family management controls |
| Teams Starter | $19.95/month (up to 10 users) | Shared vaults, admin console, activity log |
| Business | $7.99/user/month | Unlimited shared vaults, SSO, Secrets Automation, advanced reporting |
| Enterprise | Custom | SIEM integration, dedicated onboarding, custom contracts |
Pricing verified at 1password.com/teams/pricing on 2026-05-24. A 14-day free trial is available for all plans. 1Password does not discount for non-profits.
How we evaluated 1Password
This review draws on Priya Nair’s background in ML engineering and security tooling, including direct deployment of 1Password Business for engineering team credential management, comparison testing against Bitwarden and Dashlane, and review of 1Password’s published security white paper. Pricing was verified at 1password.com on 2026-05-24.
See our evaluation methodology for the full criteria. For the open-source alternative, see Bitwarden. For the 80/20 view of why secure credential management matters, password managers are the highest-ROI security tool most small teams don’t prioritize soon enough.
Frequently asked questions
Does 1Password have a free tier?
No — 1Password does not offer a free tier. The individual plan starts at $2.99/month (billed annually). A 14-day free trial is available for all plans. If free-tier access is a requirement, Bitwarden offers a genuinely capable free plan that covers unlimited passwords across unlimited devices. 1Password's advantage is UX polish and developer tooling, not price.
Is 1Password safe? Has it been breached?
1Password uses a zero-knowledge AES-256 encrypted architecture — your vault is encrypted locally before syncing to 1Password's servers, meaning 1Password cannot read your passwords even if their servers are compromised. As of 2026, 1Password has no public record of a vault data breach. A 2023 Okta support incident affected 1Password's Okta tenant but no vault data was exposed.
How does 1Password compare to Bitwarden?
1Password has better UX, Travel Mode, and Secrets Automation for developer use. Bitwarden is open-source, has a free tier, costs less at every paid tier, and supports self-hosting. For individuals who want the best experience and can pay, 1Password wins. For cost-sensitive teams or anyone who values open-source auditability, Bitwarden is the stronger choice. The two tools have near-equivalent security models.
What is 1Password Secrets Automation?
Secrets Automation lets engineering teams store API keys, environment variables, and infrastructure credentials in 1Password and inject them into CI/CD pipelines without hardcoding secrets in configuration files. Integrations exist for GitHub Actions, AWS, Terraform, and Docker. This feature is unique in the consumer password manager category and makes 1Password a partial replacement for dedicated secrets managers like HashiCorp Vault for teams under 100 engineers.
Can 1Password be used for business team sharing?
Yes — 1Password Business includes unlimited shared vaults, granular permissions (view-only, edit, manage), guest accounts for external collaborators, activity logs, and SSO integration with Okta, Azure AD, and Duo. Shared vaults work for shared infrastructure credentials, client accounts, and team tool access without sharing the underlying password directly.
What is 1Password Watchtower?
Watchtower monitors your stored credentials against known data breaches, flags passwords reused across multiple sites, identifies weak passwords, alerts on accounts missing two-factor authentication, and flags sites using outdated SSL. Watchtower checks run against the Have I Been Pwned database and 1Password's own vulnerability feed. It's available on all paid plans and provides the equivalent of a continuous security audit on your credential hygiene.
Does 1Password work across devices?
Yes — 1Password syncs across unlimited devices on all paid plans. Apps are available for macOS, Windows, iOS, Android, and Linux, plus browser extensions for Chrome, Firefox, Safari, and Edge. The vault syncs through 1Password's cloud servers. There is no local-only or self-hosted sync option — if cloud storage of encrypted vault data is a policy concern, Bitwarden's self-hosted deployment is the correct alternative.
Other password managers we cover
Compare 1Password with
Integrates with
- slack
- okta
- azure active directory
- github
- zapier
- google workspace