Frequently Asked Questions

Select Topic


Does Bitwarden provide API access?

Yes, Bitwarden has a Public API (Restful API) that provides organizations a suite of tools for managing members, collections, groups, event logs, and policies. Bitwarden also has a Vault Management REST API for programmatic access to Vault secrets.


Is there a way for someone to access my vault items in case of emergency?

There is! Users with a premium subscription can proactively setup trusted emergency contacts who can access your vault in case of emergency. For more information, see Emergency Access.

What do I do if I forgot my master password?

As a zero-knowledge encryption solution, Bitwarden and its systems have no knowledge of, way to retrieve, or way to reset your master password. If you have already lost your master password, there is unfortunately no way for the team to recover the account. For help understanding what to do next, or what to do proactively to protect yourself from such a scenario, refer to the article on your master password.

How do I change my email address?

Changing your account email address will not change the address that received 2FA codes if you are using two-step login via email.

  1. Open the web vault, select the profile icon and choose Account Settings from the dropdown.

  2. On the My Account page, find the Change Email section.

  3. Enter your current Master Password to prove you have the authority to take this action, and specify the New Email you'd like to change to.

  4. Select the Continue button.

Bitwarden will email a verification code to the specified email address. Check your inbox for the code and enter it into the Code text input displayed in your web vault to finalize the change.

If you have a paid subscription, also contact us to let us know about the change so that we change your billing information.

Be sure to logout of all Bitwarden apps you use, and log back in with the new credentials. Sessions using a "stale" email address will eventually be logged out.

How do I change my master password hint?

To change your master password hint:

  1. Open the web vault, select the profile icon and choose Account Settings from the dropdown.

  2. From the account settings menu, select the Security page and the Master Password tab.

  3. Enter a hint in the Master Password Hint box and select the Save button.


Can Bitwarden auto-fill TOTP codes?

If you use Bitwarden authenticator, Bitwarden will automatically copy a login's TOTP code to the clipboard when the login is auto-filled by any of the methods outlined in the Auto-fill Logins in Browser Extensions Help Center article.

What auto-fill options are available?

Bitwarden can securely auto-fill your login information into websites using the browser extension and mobile apps (Android and iOS) using associated URIs. To auto-fill on desktop, use the keyboard shortcut, right-click context menu, or enable 'Autofill on page load' in the browser extension settings menu. For items without a corresponding URI, navigate to the vault item and tap the auto-fill button.


How can I access my billing information?

Viewing Billing information is different depending on whether you’re viewing it for an Individual or Organization subscription. For step-by-step instructions, check out the Update Your Billing Information help article to walk you through both processes.

Bitwarden, Inc.

The Bitwarden Team

For information on the structure of the Bitwarden team, compliance with international standards, and historical uptime, visit the compliance page, SOC 3 report and Bitwarden Status page.

How many customers does Bitwarden serve?

Bitwarden currently serves tens of thousands of businesses and millions of end users globally.


Bitwarden was founded in August 2016.


1 North Calle Cesar Chavez, Santa Barbara, CA 93103

Product Description

Bitwarden is an open source password management service that provides scalable storage, management and sharing of website credentials and other secure data.


Bitwarden Blue

Bitwarden Blue is the brand’s recognizable and ownable color that unifies communications and gives the brand a strong identity.

HEX #175DDC | RGB 23 93 220 | CMYK 86% 84% 0% 0%

Light Grey

The secondary Light Grey color should be used to support Bitwarden Blue as much as possible. This gives Bitwarden Blue room to breathe and leads to a more purposeful usage of colors.

HEX #F3F6F9 | RGB 243 246 249 | CMYK 3% 2% 2% 0%

Deep Blue

Deep Blue is to be used as a between color from Bitwarden Blue and Indigo Blue. It should only be used in gradients and illustration elements.

HEX #1A41AC | RGB 26 65 172 | CMYK 95% 82% 0% 0%

Indigo Blue

The darker Indigo Blue is used for text colors, dark backgrounds, and assets that need more contrast.

HEX #020F66 | RGB 2 15 102 | CMYK 100% 97% 23% 27%

Highlight Teal Blue

Highlight Teal Blue works as a highlight color to draw viewers’ attention to certain information or illustrations.

HEX #2CDDE9 | RGB 44 221 233 | CMYK 0% 71% 18% 0%

Tertiary colors

Tertiary colors are only to be used sparingly and when used should be thought out deliberately.

Amber Orange: HEX #FFBF00 | RGB 255 191 0 | CMYK 0% 27% 100% 0%

Melon Red: HEX #FF4E63 | RGB 255 78 99 | CMYK 0% 84% 50% 0%

Medium Purple: HEX #976FD9 | RGB 151 111 217 | CMYK 50% 62% 0% 0%


Does Bitwarden follow a standardized approach to Project and Change Management?

Does Bitwarden have a dedicated QA team?

Is Bitwarden GDPR and HIPAA compliant?

Yes. Bitwarden conducts regular third-party security audits and is compliant with major privacy and security regulations such as GDPR, CCPA, HIPAA, and SOC 2. Visit the Bitwarden Security and Compliance page for more information.

Is Bitwarden ISO 27001 compliant?

The Bitwarden Security and Compliance Program is based on the ISO 27001 Information Security Management System (ISMS). More information in the Bitwarden Security White paper.

Bitwarden also completes a wide range of compliance certifications including SOC 2, GDPR, CCPA, HIPAA as well as penetration testing, code testing, and other third party audits. More information on the Bitwarden Security and Compliance page. Bitwarden Inc. has not yet completed ISO 27001 certification directly.


Does Bitwarden work with any subprocessors?

Bitwarden uses zero knowledge encryption to ensure neither Bitwarden nor subprocessors have access to customer vault data. See Bitwarden Subprocessors and administrative data for more information.

Can I delete my data?

Deleting a Bitwarden account or Organization permanently deletes the account or Organization and all data that is associated with it. Bitwarden does not "soft delete" any data. For administrative data, see

Can I migrate my existing data to Bitwarden?

Yes, you can export your existing data and import it into your Bitwarden Organization. For a full list of supported import formats, refer to this FAQ item.

What types of data does Bitwarden store?

Bitwarden stores encrypted Administrative Data and Vault Data. Vault data is encrypted locally on your device before being sent to Bitwarden servers and only you have the keys required to decrypt your vault. Neither Bitwarden, nor subprocessors have access to your vault data. For detailed information, view the full Privacy Policy.

Can I backup my Bitwarden Data?

Directory Services

Does Bitwarden integrate with Directory Services?

Directory Connector (downloadable application available for all business plans) will query the source directory and provision and deprovision users, groups, and associations. SCIM (available in the web vault for Enterprise Plans) will automatically push updates to Bitwarden, to provision or revoke users.


View desktop installation guides

Bitwarden offers a variety of different installation options for the desktop application. You can find them all listed below.

Some options are not capable of automatic updates and are labeled as such. You should always keep Bitwarden applications up to date.

Windows(10 and 11 - x86 and x64)

Standard Installer

Portable App for Flash Drives
Bitwarden-Portable.exe NO AUTO-UPDATES

Windows Store

Chocolatey Package Manager

choco install bitwarden

macOS(Mojave 10.14 and later)

Standard Installer

Mac App Store

Homebrew Package Manager

brew install bitwarden

Linux(x64 only)

Standard Installer

Ubuntu, Debian, Linux Mint, etc.

Fedora, CentOS, RHEL, openSUSE, etc.

Snap Package Manager

sudo snap install bitwarden


In Transit

Your data is never sent to the Bitwarden Cloud without first being encrypted on your local device. Bitwarden uses TLS/SSL to secure communications between Bitwarden clients and user devices to the Bitwarden Cloud. Bitwarden’s TLS implementation uses 4096-bit X.509 certificates for server authentication and key exchange and a strong cipher suite for bulk encryption. Our servers are configured to reject weak ciphers and protocols. Bitwarden also implements HTTP Security headers such as HTTP Strict Transport Security (HSTS), which will force all connections to use TLS. For more information, see the Bitwarden Security Whitepaper.

What encryption is used for password protected vault exports?

When creating a password protected vault export, the encryption key is generated through PBKDF2 and stretched using HKDF. KDF iterations are currently hard-coded to 100,000, which is the same default for a Bitwarden account and Bitwarden Sends.

What encryption is used?

Bitwarden uses AES-CBC 256-bit encryption for your Vault data, and PBKDF2 SHA-256 to derive your encryption key. For more information, see the Bitwarden Security Whitepaper.

At Rest

Bitwarden always encrypts and/or hashes your data on your local device before it is sent to the cloud servers for syncing. The Bitwarden servers are only used for storing and synchronizing encrypted Vault data. It is not possible to get your unencrypted data from the Bitwarden cloud servers. Specifically, Bitwarden uses AES 256-bit encryption as well as PBKDF-SHA256 to secure your data. For more information, see the Bitwarden Security Whitepaper


Where are Bitwarden severs located?

Bitwarden processes and stores all data securely in the Microsoft Azure cloud using services that are managed by the team at Microsoft in the US. Since Bitwarden only uses service offerings provided by Azure, there is no server infrastructure to manage and maintain. All uptime, scalability, and security updates, patching, and guarantees are backed by Microsoft and their cloud infrastructure. For more information, see Microsoft Azure Compliance Offerings.

Incident Response

Incident Response & Uptime

Real time system updates and historical uptime are available on the Bitwarden Status page.

Managed Service Providers

I am an MSP. Does Bitwarden have a partner program?

Yes, Bitwarden also offers a Provider Portal to help MSPs manage their clients more easily. Learn more on the MSP page and contact sales to get started.

Password Strength

What's the best way to manage my passwords?

The safest way to manage your passwords is through a secure password manager, like Bitwarden. Learn more.

How do I create a strong password?

How do you calculate password strength?

We use a tool called zxcvbn. Learn more

Is it safe to type my real password here?

Yes. Your password is never transmitted to our servers and is processed locally in your device's web browser.


How do the Teams and Enterprise plans differ?

The Enterprise Plan includes Login with SSO, Enterprise Policies, and the option to self-host. Both plans include Premium features for all enrolled users, and sophisticated password management including Member Roles, Groups, Shared Collections, and options to integrate with directory services. To compare features supported in the Bitwarden Business plans, check out our Help Article on Bitwarden Plans.

Can I add to the Bitwarden Families plan for more than 6 family users?

The Bitwarden Families plan supports up to up to a maximum of 6 users. You can launch a second Families Organization and you can be part of both.

For Organization sizes beyond 6 people you might want to consider a Teams Organization.

Every member can also launch a free 2-person organization and share permanently with a second user.


Where is Bitwarden available?

Bitwarden is available on all modern devices and platforms, including desktop (Windows, MacOS and Linux), browser extension (Google Chrome, Mozilla Firefox, Safari, Microsoft Edge, Brave, Safari, Vivaldi, Tor Browser and Opera), mobile (iOS and Android), Command Line Interface (CLI), and by using the web vault.

Can I set Bitwarden to automatically start when my computer starts?

You can set the Bitwarden desktop app to automatically open on startup.

  1. Select the Start (Windows Logo) button, select All apps, and scroll to find the Bitwarden shortcut.

  2. Right-click the Bitwarden desktop app, select More, and then select Open file location.

  3. With the file location open, press the Windows logo key + R, type shell:startup, then select OK. This opens the startup folder.

  4. Copy and paste the shortcut to the Bitwarden desktop app from the file location to the startup folder.


What are Enterprise Policies and how can they benefit my business?

Policies (available on Enterprise plans) enable Organizations to set a secure system-wide foundation for all users, for example Require single sign-on authentication, setting a maximum Vault Timeout or configuring minimum complexity requirements for the Password Generator. Enterprise Policies can be set by Organization Administrators or Owners. Check out the list of Enterprise Policies to learn more.


Vault Health Reports

Vault health reports (available on all paid plans) can be used to evaluate the security of your Bitwarden individual or organization vault and include exposed, resused, weak, unsecure websites, inactive two-step login and data breach reports.

Event Logs

Event logs are timestamped records of events that occur within your Teams or Enterprise organization. Events logs are exportable, accessible from the /events endpoint of the Bitwarden Public API, and are retained indefinitely. Event logs record over 50 different types of events and captures a Timestamp for the event, client app information including application type and IP (accessed by hovering over the globe icon), the User connected to the event, and an Event description.

Can data be exported for use with external systems?

Yes, when exporting data from Bitwarden into other systems, a combination of data from the event log exports, API and CLI may be used to gather data.


Does Bitwarden support Single Sign-on? (SSO)

Yes, login with SSO allows Enterprise organizations to leverage their existing Identity Provider to authenticate users with Bitwarden using the SAML 2.0 or Open ID Connect (OIDC) protocols.

Can I test Login with SSO in my existing Enterprise account?

Yes, or you can set up a free Enterprise Trial to test. Contact the Bitwarden sales team for more info.

Secrets Manager

Can I use Bitwarden Secrets Manager and Bitwarden Password Manager together?

Yes! Secrets Manager and Password Manager can be used in conjunction to provide even stronger security to your business.

Can I mix and match Bitwarden Secrets Manager and Bitwarden Password Manager plans?

An organization will have the same plan across any product they are subscribed to. For example, if a customer is subscribed to a Bitwarden Password Manager Enterprise plan and decides to purchase Bitwarden Secrets Manager, they will also be subscribed to the Enterprise plan.

To subscribe to a different Secrets Manager plan than what you are currently subscribed to with Password Manager, simply create a new organization or account and sign up for Secrets Manager following these steps.

How do I purchase Bitwarden Secrets Manager independent of Bitwarden Password Manager?

Please contact sales if you are interested in a Secrets Manager only plan.

What is the difference between Bitwarden Secrets Manager and Bitwarden Password Manager?

Bitwarden Secrets Manager is built for developer teams to centrally store, manage, and deploy privileged secrets. Secrets Manager is tailored for infrastructure secrets and is supported only by the web app and the CLI clients. If you are looking to help your employees manage their personal credentials, check out Bitwarden Password Manager.

What is a project?

A project is a collection of secrets that can be grouped together based on how you want to structure access by your engineering, DevOps, and cybersecurity teams.

Will I receive advanced notification before being charged?

Yes, once GA has been determined, customers will be given notice via the Bitwarden community forum, email, and other social media platforms. Information on pricing and opt-in paths will be included in the GA announcement.  

What happens after beta? How will I be notified of GA?

You will receive updates from Bitwarden throughout the beta program. Post-beta and general availability (GA) updates will be shared later in Q2.

Once beta ends, Bitwarden will offer paid plans for certain tiers of usage and features, and customers will need to subscribe for continued access to those tiers. Bitwarden will provide advance notice of the future pricing model, as well as clear paths for customers to subscribe to a paid plan of their choice. News and updates will be sent to the email address you provided when you sign up. Your name and email address will not be shared with any third parties.

How will the Bitwarden team contact me during beta?

News about the beta will be communicated across the Bitwarden community forums, social media, and email. As a beta participant, you will receive communication via the email address you provided when you sign up. Your name and email address will not be shared with any third parties.

How do I contact Bitwarden if I have support questions during beta?

You may submit questions via

How do I submit feedback?

Share feedback through the Bitwarden Community forum, GitHub, or email

Who can participate in the beta program?


Can I self-host Bitwarden Secrets Manager?

Self-hosting capability will soon be available for Bitwarden Secrets Manager. Self hosting is not available during beta.

Do I need to have a paid Bitwarden Password Manager subscription to participate in the beta program?

No, you do not need to be a paying customer. You can sign up for a free plan and set up a free 2-person organization to launch Bitwarden Secrets Manager beta.

What is a service account?

Service accounts represent non-human machine users, like applications or deployment pipelines, that require programmatic access to a discrete set of secrets.

What is a secret?

Secrets refer to digital authentication credentials for sensitive parts of the IT and developer ecosystem. Secrets are sensitive key-value pairs that need to be securely stored and should never be exposed in plain-text code or transmitted over unencrypted channels.

Examples of secrets are:

  • SSH keys

  • Database passwords

  • SSL or TLS certificates

  • Private encryption keys

  • API keys

  • One-time password devices

What will be the future Bitwarden Secrets Manager pricing?

Bitwarden will announce pricing during beta, which will be based on a per user, per service account model. More details to come.


Why choose Bitwarden for my business's password security?

  • Bitwarden is open source, which means the source code, features, and infrastructure security are vetted and improved by a global community.

  • Bitwarden is regularly audited by reputable third-party security firms as well as independent security researchers.

  • Bitwarden seals your sensitive information with end-to-end AES-256 bit encryption, salted hashing, and PBKDF2 SHA-256.

  • Bitwarden maintains zero knowledge encryption because only you retain the keys to your vault, including the websites you visit, as well as the names of your individual items and folders.

  • Join our community on Reddit or our Community Forums to hear from real users about why they trust Bitwarden.

How does Bitwarden protect against online/offline attacks?

Bitwarden protects against online attacks through the master password, 2FA, API rate limiting, and vault timeout options.

Offline attacks are protected by a user's master password, multiple layers of encryption on vaults at rest—including column level encryption on sensitive fields through keys held on an HSM, and transparent data encryption for the entire database at rest.



What steps are in place to protect the Bitwarden codebase?

As an open source product, Bitwarden code can be reviewed by anyone at any time. To maintain the integrity of the codebase, Bitwarden relies on the following protocols for code contributions:

  • Bitwarden maintains extensive compliance certifications with international standards.

  • Regular security training sessions conducted for all Bitwarden employees—including simulated attacks.

  • Code branches include protections to prevent unapproved changes being deployed without being reviewed.

  • Code and proposed changes are subject to automated scans and require in-depth review by other team members.

  • Dependency analysis monitors for potential vulnerabilities.

  • Partnership with security researchers at HackerOne to monitor for exploits.

  • Regular third party audits conducted.

  • Bitwarden uses Cryptography libraries maintained by industry experts.

Additional resources:

Special Offers

Can I extend my Bitwarden trial?

For qualified Business plan users, extensions are available. Please contact the sales team for assistance.

Are there special offers for non-profits or educational institutions?

Yes. Bitwarden offers a discount to all educational and non-profit organizations. Contact the sales team to request a custom quote today.


What type of support does Bitwarden offer?

Teams & Enterprise plans include 24/7 priority support. All employees, regardless of member role, may contact the support team directly at For more information on available resources for account owners and administrators, see the Rolling Out Bitwarden to Your Organization guide.

Is teams or adminstrator training available?

Contact the sales team to ask about training opportunities.

User Management

Can I customize user permissions?

Users in Bitwarden organizations can be granted a variety of member roles and access controls in order to manage their permissions and access. You can set member roles and access controls when you invite users to your organization, or at any time from the Manage → Members screen in your organization. For more information see the Help Center article.

Do licences/seats scale?

Bitwarden Teams and Enterprise organizations will automatically scale up user seats as you invite new users. You can set a seat limit on scaling to prevent your seat count from exceeding a specified number, or manually add seats as desired. Regardless of how you choose to add seats, you will need to manually remove seats you're no longer using. For more information, see the User Management Help Center article.

Vault Management

Why is a vault item missing from my mobile app, desktop app, or browser extension?

Typically, this is because am app's vault data has fallen behind a web vault or other app's. Performing a vault sync should bring everything up to date. For more information, see

What's the safest way to make a backup of my vault data?

You can use encrypted exports to make secure long-term backups of your vault data that are encrypted with your account encryption key.

Alternatively, you can use a program such as PeaZip to create an encrypted archive of the file after exporting a plaintext file from Bitwarden.

You can learn more about PeaZip here:

Disclaimer: PeaZip is a third-party program and is not supported by Bitwarden. These links were shared with you as an alternative for use at your own risk.




Answer has an image

© 2023 Bitwarden, Inc.TermsPrivacySitemap
This site is available in English.
Go to EnglishStay Here