Home/ Exit Google/ Away from Google Passwords
🚪 Exit Google

Away from
Google Passwords.

Chrome saves passwords — and Google can theoretically access them. This guide shows three ways out: to KeePassXC, Proton Pass and 1Password. Step by step, no technical background required.

📅 April 2026 🔗 All claims sourced ⏱ approx. 8 min read
⚠️ Important Note

Do not let an AI generate your new passwords. Chatbots like ChatGPT, Claude or Gemini cannot produce genuine randomness — their passwords look secure but in reality have only ~27 bits of entropy instead of the required ~98 bits (Irregular Security, February 2026). The managers presented here come with their own secure generators — use those instead.

Contents
  1. Preparation — Exporting passwords from Chrome
  2. Option A: KeePassXC + KeePass2Android (PC & Android)
  3. Option B: Proton Pass (all devices, Swiss privacy law)
  4. Option C: 1Password (Apple devices)
  5. More than passwords — securely storing cards and documents
  6. What to do afterwards

Preparation — Exporting passwords from Chrome

Before switching, you export all your passwords from Chrome in one go. This is done via the built-in Google Password Manager — regardless of which new manager you choose afterwards. The exported file contains all your passwords in plain text. Handle it with appropriate care.

📤
Exporting passwords from Chrome
One-time step — applies to all three options below
1
Open Chrome and navigate to passwords
Open Chrome and type the following into the address bar:
chrome://password-manager/passwords
Alternatively: click on your profile picture in the top right → Passwords.
2
Start the export
Click the gear icon (Settings) in the top right → "Export passwords". Chrome will ask for your Windows/Mac password to confirm.
3
Save the CSV file securely
The file Google Passwords.csv contains all your passwords in plain text. Save it to your Desktop or directly in your Downloads folder — you'll need it shortly and will delete it immediately afterwards.
This file is unencrypted. Do not send it by email, do not store it in the cloud, do not leave it lying around.
⚠ After importing: delete the CSV immediately

The exported CSV file contains all your passwords in plain text — unencrypted. As soon as you have imported it into your new manager, delete the file immediately and empty the Recycle Bin. On Windows: Delete key + empty Recycle Bin. On Mac: Command + Delete + empty Trash.

Option A: KeePassXC + KeePass2Android

KeePassXC is the most privacy-friendly option from the BSI test 2025 — no cloud, no servers, no registration required. It does take slightly more effort to set up. Recommended for anyone who wants maximum control.

🔒
Setting up KeePassXC (PC / Mac)
Local, open source, free — keepassxc.org
1
Download and install KeePassXC
Download KeePassXC from keepassxc.org — available for Windows, macOS and Linux. No registration required.
2
Create a new database
Open KeePassXC → "Create new database". Choose a name (e.g. "My Passwords"). Then set a master password — this is the only one you need to remember. At least 20 characters; a passphrase works best.
Do not store the master password anywhere digitally. Write it down and keep it somewhere safe — for example with other important documents.
3
Import Chrome passwords
Menu → Database → Import → CSV format. Select the Google file you exported earlier. KeePassXC reads all entries automatically — with website, username and password.
4
Install the browser extension
For automatic form-filling in the browser: install the KeePassXC-Browser extension for Firefox or Chrome. Enable it in KeePassXC under Settings → Browser Integration.
5
Back up your database file
Back up the KDBX file (your password database) to a USB stick or external hard drive. If your device is lost or fails, you will otherwise have no way to access your passwords. Backups are essential with local managers.
📱
Setting up KeePass2Android (Android)
Free on Play Store · Opens the same KDBX file
1
Install the app
Install KeePass2Android from the Play Store. For GrapheneOS users: also available via the Aurora Store or F-Droid (KeePassDX as an alternative on F-Droid).
2
Transfer the KDBX file to your phone
Copy the KDBX file from your PC to your phone via USB cable — or via a self-hosted cloud service such as Nextcloud. Not via Google Drive — that would defeat the purpose of the exercise.
The KDBX file itself is encrypted — anyone who intercepts it cannot get in without the master password.
3
Open the database
In KeePass2Android, tap "Open file", select the KDBX file and enter the master password. Done — all entries from your PC are immediately available.
4
Enable fingerprint or face unlock
In KeePass2Android, go to Settings → Biometric unlock and enable it. The database will then open via fingerprint or face recognition — the master password only needs to be entered on first open or after a restart.
The master password remains necessary — biometrics are simply a convenient shortcut, not a replacement.
5
Enable keyboard integration
KeePass2Android includes its own keyboard that can enter passwords directly into app fields. Enable it under Settings → Keyboard → KeePass2Android Keyboard. Alternatively: copy via the notification panel.

Option B: Proton Pass

Proton Pass comes from the makers of Proton Mail — Swiss data protection law, open source, end-to-end encrypted. The free version is sufficient for most users. Automatic synchronisation across all devices is included.

🛡️
Setting up Proton Pass
Cloud · Switzerland · Open Source · proton.me/pass
1
Create a free Proton account
Create a free account at proton.me/pass. If you already use Proton Mail, you can log in directly — no new account needed.
2
Install the browser extension
Install Proton Pass as a browser extension — available for Firefox, Chrome, Brave, Edge and others. Directly from the respective extension stores or via proton.me/pass/download.
3
Import Google passwords
In the Proton Pass extension or at pass.proton.me: Settings → Import → Google Chrome. Select the CSV file you exported earlier. All passwords will be imported automatically.
4
Install the app on your phone
Install Proton Pass for Android or iOS and log in with your Proton account. All passwords are immediately available — automatically synchronised.
For GrapheneOS: Proton Pass is also available via the Aurora Store or directly as an APK from proton.me/pass.
5
Enable autofill on your phone
Android: Settings → Passwords & accounts → Autofill → select Proton Pass. iOS: Settings → Passwords → Password Options → Proton Pass. From now on, Proton Pass will automatically suggest the correct credentials at every login.
6
Enable fingerprint or face unlock
In the Proton Pass app, go to Settings → Security → Biometric lock and enable it. The vault will then open via fingerprint or face recognition — no password required every time.
Biometrics are a convenient shortcut — the master password remains the actual key and will still be requested after restarts or suspicious access attempts.

Option C: 1Password (Apple devices)

1Password is particularly well optimised for Apple users — seamless integration with iOS, macOS and Safari. As the only manager in the BSI test without a free tier: 14-day free trial, then from $3.99 per month, billed annually (as of April 2026).

🍎
Setting up 1Password
Cloud · Canada · from $3.99/mo (annual) · 1password.com
1
Create an account and download the app
Create an account at 1password.com — 14-day free trial, no credit card required. Download the app for iPhone/iPad or Mac.
2
Store your Emergency Kit safely
When creating your account, 1Password generates an Emergency Kit — a PDF containing your Secret Key (a 34-character code). Print this PDF or store it somewhere secure. Without this key, there is no access on new devices.
The Emergency Kit is comparable to the master password. Do not store it in the cloud — keep a printed copy in a safe place.
3
Import Google passwords
In the 1Password desktop app: File → Import → Google Chrome. Select the exported CSV file. All entries will be imported with website, username and password.
4
Enable the Safari extension
On Mac: Safari → Settings → Extensions → enable 1Password. On iPhone/iPad: Settings → Passwords → Password Options → select 1Password. From now on, 1Password will automatically fill in login fields.
5
Enable Face ID / Touch ID
In the 1Password app, go to Settings → Security → Face ID (or Touch ID) and enable it. The vault will then open via face or fingerprint — no master password required at every login.

More than passwords — securely storing cards and documents

Password managers can store far more than just passwords. Debit cards, credit cards, ID card details, IBANs, insurance numbers — all of this can be stored in encrypted form in the same vault. The advantage: everything in one place, all protected by the same strong security.

💳 What password managers can store besides passwords

Credit card number, expiry date, CVV, name on the card — stored encrypted and automatically filled in during online purchases. Debit card PINs, IBANs, BICs and account details can also be saved as secure entries.

Other typical entries: passport and ID card numbers, health insurance and insurance policy numbers, tax IDs, Wi-Fi passwords, software licences, security question answers.

How it works in the three managers
🔒
KeePassXC
Create a new entry → in the "Advanced" tab, add custom fields: e.g. "Card number", "CVV", "Expiry date". All fields can be marked as protected (hidden). No dedicated credit card entry type, but fully flexible.
🛡️
Proton Pass
In the vault tap "+" → select "Credit card". Fields for card number, cardholder, expiry date and CVV are provided. End-to-end encrypted. Autofill for online purchases on the Plus plan.
🍎
1Password
New item → "Credit Card". All relevant fields are pre-defined. Autofill in online shops via Safari and Chrome works very reliably — one of 1Password's strengths.

Security note: CVV and PIN are particularly sensitive data. In an encrypted password manager they are safer than on a piece of paper in your wallet — but only if the master password is strong and the vault is not left unlocked on an unsecured device.

What to do afterwards

✓ Checklist after switching

Delete the CSV file: Delete the exported Google file immediately and empty the Recycle Bin — it contains all your passwords in plain text.

Delete Chrome passwords: In Chrome at chrome://password-manager/passwords, delete all saved passwords. Otherwise Chrome will continue to have access.

Disconnect your Google account: Logging out of Chrome or switching browsers prevents new passwords from automatically being saved to Google again.

Replace weak passwords: Most managers show which passwords are weak or reused. Replace the worst ten first — the manager will generate secure new passwords for you.

Create a backup: For KeePassXC: back up the KDBX file to a USB stick. For Proton Pass and 1Password: create an export once and store it in an encrypted location.

📌 Editorial assessment — thx4data.de

Switching away from Google Passwords is one of the most effective steps you can take for your digital privacy — and it takes less than an hour. The three options described here cover all use cases.

For privacy-conscious Android users, the combination of KeePassXC + KeePass2Android (or KeePassDX) is the most transparent solution: no provider who could potentially have access, no cloud account. If you prefer convenience and value Swiss data protection law: Proton Pass. Apple users willing to pay: 1Password.

Storing credit cards and debit cards in a password manager is not a security risk — quite the contrary: stored encrypted in a vault, they are safer than on a piece of paper, in an unencrypted notes app or as a photo in your camera roll. The prerequisite is a strong master password.

Sources:
Irregular Security – AI-generated passwords: ~27 bits of entropy (February 2026) · KeePassXC – Official website · Proton Pass – Official website · 1Password – Official website & pricing · BSI – Password Manager Test H1 2025 (press release December 2025)