You probably have 100 or 200 passwords sitting in Chrome right now. Some of them are strong. A lot of them aren’t. All of them are managed by a browser, not a real password manager, and that creates real security gaps. Moving your passwords to a dedicated password manager fixes those gaps, but the migration process itself introduces new risks if you don’t handle it carefully. This guide walks you through exporting from Chrome, importing to your new password manager, and cleaning up afterward without exposing your accounts in the process.
Exporting Your Passwords from Chrome Password Manager
Exporting your passwords from Chrome is the first step in moving to a dedicated password manager. The whole thing takes a few minutes, but it creates a security risk you need to handle carefully. Chrome exports passwords as a CSV file, which stores your login info in plaintext without encryption.
Here’s how to export your Chrome passwords on desktop:
- Open Chrome and click the three vertical dots in the top right corner.
- Select “Settings” from the dropdown.
- Click “Autofill” in the left sidebar.
- Select “Password Manager” from the Autofill options.
- Look for “More” next to “Saved Passwords” and click it.
- Select “Export passwords” from the menu.
- Enter your device password when prompted.
- Choose where to save it (desktop works well for easy access), name the file “Chrome Passwords.csv,” and click Save.
The CSV file you just created is the weakest point in your entire migration. CSV stands for “comma separated values,” a format designed for storing data in plain text. Every password in this file sits completely unencrypted, readable by anyone who opens it. This format exists only for temporary transfer, never for storage. If someone gets this file, they can access every account you’ve saved in Chrome.
Store your exported CSV file only on your local device. Don’t put it in cloud storage like Google Drive, Dropbox, or OneDrive. Don’t email it to yourself. Keep it somewhere on your desktop you can easily find and delete. The moment you import this file into your new password manager, delete it. Then empty your trash to prevent recovery. This file should exist on your computer for minutes or hours at most, not days. The longer it sits unprotected, the bigger your security risk.
Importing Chrome Passwords into Popular Password Managers
Once you’ve exported your Chrome passwords, you need to import them into your chosen password manager. Most major password managers support Chrome CSV imports, though the process varies by platform. The import usually takes just a few minutes no matter how many passwords you’re transferring.
Importing to Bitwarden
Open Bitwarden in your web browser and log into your vault. Click “Tools” in the top navigation, then select “Import Data” from the dropdown. In the import format dropdown, select “Chrome (csv)” as your file type. Click “Choose File,” find your Chrome Passwords.csv file on your desktop, and select it. Click “Import Data” to start the transfer. Bitwarden will show you a confirmation message with how many items imported successfully.
Importing to 1Password
Launch the 1Password desktop app and unlock your vault with your master password. Click “File” in the menu bar, then hover over “Import” to see format options. Select “Chrome” from the list of available import sources. Click “Choose File” and find your Chrome Passwords.csv file. Select the vault where you want these passwords stored (usually your Personal vault), then click “Import” to finish. 1Password will show a summary of imported items.
Importing to LastPass
Log into LastPass through your browser extension or web vault. Click “Advanced Options” in the left sidebar, then scroll down and select “Import.” On the import page, look for the Chrome specific import option under “Other.” Click the “Chrome” option, which opens a file upload interface. Click “Choose File” and select your Chrome Passwords.csv file from your desktop. Click “Upload” to start the import. LastPass will process the file and show you a confirmation with the number of passwords imported.
Importing to Dashlane
CSV imports to Dashlane currently work only through a web browser on your computer or through the Android app. iOS and Safari apps don’t support this feature yet. Log into Dashlane through your web browser at app.dashlane.com. Click your profile icon in the top right corner, select “Settings,” then click “Import Passwords.” Choose “Chrome” as your source, click “Select File,” and choose your Chrome Passwords.csv file. Click “Import” to transfer your passwords. Android users can follow a similar process through the Dashlane mobile app under Settings > Import Passwords.
Before you delete anything from Chrome, verify that your passwords imported successfully. Compare the password count in your Chrome Password Manager with the count in your new password manager. They should match. Test autofill on three to five of your most used websites to confirm the browser extension works correctly. Check that your new password manager’s mobile app syncs properly if you use one. Verify that all your critical accounts (email, banking, work apps) are accessible through the new system. Consider keeping your Chrome passwords active for one to two weeks as a backup while you test your new password manager in real world use. If everything works smoothly during this testing period, you’re ready to delete your Chrome passwords.
Migrating Chrome Passwords on Mobile Devices
Chrome’s mobile browsers don’t offer a direct password export option. You can’t create a CSV file from your phone or tablet. The mobile migration process requires a desktop computer as an intermediary step. This affects both Android and iOS users, though the workarounds differ slightly between platforms.
Android users have the most straightforward migration path after completing the desktop export. Install your chosen password manager’s Android app from the Google Play Store. If you’ve already imported passwords on desktop, most password managers automatically sync those credentials to your mobile app through their cloud service. Open the Android app, log in with your account credentials, and wait for the initial sync to complete. This can take a few minutes if you have hundreds of passwords. The app will notify you when syncing finishes. Some password managers, like Dashlane, also support direct CSV import through their Android apps if you transfer the file to your Android device first, though this method is less secure than syncing from desktop.
iOS users must rely entirely on cloud sync after desktop migration since mobile CSV import isn’t available on Apple devices. Download your password manager’s iOS app from the App Store. Log in with your account credentials, and the app will automatically pull down passwords from your desktop import. The first sync typically takes longer than later ones, especially with large password collections. If passwords don’t appear right away, check your internet connection and try manually triggering a sync in the app’s settings. Safari users should note that enabling password manager autofill on iOS requires granting specific permissions in iOS Settings > Passwords > AutoFill Passwords. Select your new password manager from the list to enable autofill in Safari and other apps.
Cleaning Up and Deleting Chrome Passwords After Migration
Once you’ve confirmed that your new password manager works correctly, removing your passwords from Chrome gets rid of the security risks of duplicate storage and prevents conflicts between Chrome’s built in autofill and your new password manager’s browser extension.
Follow these steps to delete all saved Chrome passwords:
- Open Chrome and click the three vertical dots in the top right corner to access Settings.
- Select “Privacy and security” from the left sidebar.
- Click “Clear browsing data” to open the deletion interface.
- Click the “Advanced” tab at the top of the dialog box. The Basic tab doesn’t include password options.
- In the “Time range” dropdown at the top, select “All time” to make sure you delete every saved password.
- Check only the “Passwords and other sign in data” checkbox. Uncheck all other options unless you specifically want to delete that data too.
- Click “Clear data” to permanently delete all saved passwords from Chrome.
After deleting your passwords, disable Chrome’s autofill prompts to prevent Chrome from trying to save new passwords. Go to Settings > Autofill > Password Manager, then toggle off “Offer to save passwords.” This prevents the “Save password?” prompt from appearing when you log into websites. If you leave this enabled, Chrome will compete with your new password manager’s autofill feature, creating confusion about which system is capturing and filling passwords.
Disabling Chrome’s password manager makes sure your new password manager’s browser extension functions as the sole autofill system. Without this step, you might see dual prompts asking both Chrome and your password manager to save credentials. Test this by logging into two or three websites you use regularly. You should see only your password manager’s save prompt, not Chrome’s. If Chrome’s prompt still appears, double check that you’ve disabled the “Offer to save passwords” setting. Your new password manager’s autofill should now work smoothly without interference from Chrome’s built in system.
Post-Migration Password Optimization
After migration, you have a chance to improve your password organization and security, though both are optional depending on your needs and available time.
Imported passwords arrive in your new password manager completely unsorted, appearing in whatever order they existed in Chrome. If you’ve accumulated hundreds or thousands of passwords over the years, organization makes finding specific credentials much faster. Most password managers offer search functionality regardless of organization, but categorization significantly improves searchability when you’re looking for that one retail site you used years ago or trying to audit security by account type. Creating a folder structure also makes security audits more efficient. You can review all financial accounts together or identify which work related passwords need updating.
Consider organizing passwords into these common categories: Financial (banks, credit cards, investment accounts), Shopping (retail sites, marketplaces, subscription boxes), Social (social media, dating apps, forums), Work (company tools, email, project management), Gaming (game accounts, streaming platforms), Media (streaming services, music platforms, news subscriptions), Travel (airlines, hotels, rental cars), Personal (email, personal tools, health portals), Utility (internet provider, phone company, power company), Android or Mobile (app specific accounts), and Online Services (cloud storage, domain registrars, hosting). Creating these folders upfront saves time compared to organizing passwords one by one as you encounter them. Fair warning though. If you’re moving a large collection, organization can take multiple hours, and some password manager interfaces become less responsive when handling bulk operations. This is entirely optional. If your password collection is small or you rarely search for older accounts, organization might not be worth the time.
Your new password manager’s security audit immediately reveals accumulated weaknesses from years of Chrome storage. After import, expect to see security scores around 74% if you’ve never actively managed password hygiene. Security audits flag three types of problematic passwords:
Weak passwords include short passwords, common words, predictable patterns like “password123,” or passwords that lack complexity like “summer2023.”
Reused passwords appear when you’ve used the same password across multiple sites, so a breach on one site compromises multiple accounts.
Compromised passwords show up in known data breach databases that password managers scan against, meaning your credentials are circulating among hackers even if you haven’t received a breach notification.
The security audit process identifies which accounts need attention, prioritizing the worst offenders. Start with compromised passwords first. Those need immediate replacement. Then tackle reused passwords on important accounts like email, banking, and work tools. Finally, address weak passwords, focusing on high value accounts before low priority ones like that forum you visited once in 2015. Most password managers generate strong random passwords automatically, so replacing weak passwords takes just a few clicks per site. Expect to spend time updating passwords rather than creating them. Approximately 20 weak passwords typically need changing in a well used Chrome password collection. That’s 20 websites to visit, log into, navigate to password change screens, and save updated credentials.
Deleting old accounts you no longer use significantly boosts security scores with minimal effort. That gaming site that shut down three years ago? Delete it. The retail store that went bankrupt? Gone. The free trial subscription you forgot to cancel? Remove it. After purging defunct accounts, security scores typically jump to around 82%. With all weak passwords replaced and reused passwords eliminated, expect final security scores around 98%. Interestingly, 100% appears unachievable in most password managers. The maximum sits at 98% due to small deductions for practical security settings like mobile access (1%) and offline access (1%). These aren’t actual security weaknesses, just scoring quirks in how password managers calculate risk.
Setting Up Master Passwords and Two-Factor Authentication
Your master password is the single credential protecting your entire password vault. Unlike your old Chrome password manager, which relied on your device login, dedicated password managers use master passwords as the only key to decrypt your password database. If someone learns this password, they access everything. If you forget this password in a zero knowledge system, even the password manager company can’t recover your account.
Create a master password that balances strength with memorability. Aim for at least 16 characters that don’t appear in any data breach database. Don’t reuse passwords from other accounts. This master password must be completely unique. Password managers often suggest using passphrases, random words strung together like “correct horse battery staple mountain purple.” Passphrases are easier to remember than random character strings while providing similar security. Or create a sentence that means something to you personally but would seem random to others: “My3rdDogWasBornIn2018AndLovedPizza!” Mix uppercase, lowercase, numbers, and symbols, but prioritize length over complexity. A 20 character password beats a 10 character password with symbols.
Two factor authentication adds a second verification step when logging into your password manager, preventing access even if someone steals your master password. Most password managers support authenticator apps (like Google Authenticator, Authy, or the built in authenticator in some password managers), SMS text codes, or hardware security keys. Authenticator apps offer the best balance of security and convenience. They generate time based codes even without internet access. Set up 2FA immediately after creating your master password. Go to your password manager’s security settings, select “Two Factor Authentication” or “2FA,” choose authenticator app, and scan the QR code with your authenticator app. Save the backup codes in a secure physical location in case you lose access to your authenticator device.
Biometric login (fingerprint or face recognition) provides convenience without replacing your master password’s security. Your password manager stores your master password locally after you log in with it the first time, then uses biometrics to unlock that stored credential. This means biometrics work only on devices you’ve already logged into with your master password. Enable biometrics in your password manager’s mobile app and desktop application if supported. The master password remains your ultimate fallback. Write your master password on paper and store it somewhere secure. A locked filing cabinet, safe, or safety deposit box. Yes, physical paper. If your house burns down or you suffer complete device loss, that paper is your only recovery method in zero knowledge systems.
Troubleshooting Common Chrome Password Migration Problems
Migration issues occur occasionally, but most problems have straightforward solutions that don’t require technical expertise.
| Problem | Solution |
|---|---|
| CSV file won’t import | Re-export from Chrome making sure you select “Chrome Passwords.csv” as filename. Some password managers reject files with modified names. Verify the file isn’t corrupted by opening it in a text editor. You should see readable email addresses and passwords. |
| Missing passwords after import | Check that you selected “All time” in Chrome’s export timeframe. Some users accidentally export only recent passwords. Count passwords in Chrome Password Manager before exporting to verify the expected total. |
| Duplicate passwords appearing | Multiple imports of the same CSV file create duplicates. Most password managers include duplicate detection tools in Settings. Use “Find Duplicates” or similar feature to merge or delete duplicate entries. |
| Autofill not working | Confirm you’ve installed the browser extension for your password manager and logged into it. Check that Chrome’s built in password manager is disabled in Settings > Autofill > Password Manager. Restart your browser after making these changes. |
| Mobile sync failing | Verify you’re logged into the same account on mobile and desktop. Check internet connection and try manually syncing in the mobile app’s settings. Some password managers require waiting 5 to 10 minutes for initial sync after desktop import. |
| Special characters causing errors | Passwords containing quotation marks, commas, or certain symbols sometimes break CSV formatting. Manually re-enter these passwords in your password manager, or edit the CSV file in a text editor to escape special characters with backslashes before importing. |
CSV file encoding issues cause import failures when characters don’t match the expected format. Most password managers expect UTF-8 encoding, the universal text format that handles special characters correctly. If your import fails with an encoding error, open the CSV file in a text editor like Notepad (Windows) or TextEdit (Mac). Save the file using “UTF-8” encoding instead of ANSI or other formats. Some text editors default to older encoding formats that modern password managers reject.
If your CSV file appears corrupted (showing scrambled characters, missing data, or refusing to open properly), delete it and re-export from Chrome. Sometimes Chrome’s export process encounters temporary glitches that corrupt the file. A fresh export usually solves the problem. Large password collections with 500 or more entries take longer to import and may temporarily slow your password manager’s interface while it processes everything. Give the import five to ten minutes to complete rather than assuming it failed. If problems persist after trying these solutions, contact your password manager’s support team with specific error messages. Most offer chat support that can resolve import issues within minutes.
Enabling Browser Extensions and Autofill Features
Browser extensions enable password manager autofill and automatic password capture when you create new accounts or change existing passwords. Without the extension installed, your password manager exists only as a standalone app or website, unable to interact with the login forms you encounter while browsing.
Install the Chrome extension by visiting the Chrome Web Store and searching for your password manager’s name. Click “Add to Chrome,” then “Add Extension” in the popup confirmation. The extension icon appears in your browser’s toolbar, usually in the top right corner next to the address bar. Click the icon and log in with your password manager account credentials. Some extensions require this separate login even if you’re already logged into the desktop application. Firefox users follow a similar process through the Firefox Add ons store, searching for the extension and clicking “Add to Firefox.”
Edge users can install most Chrome extensions directly since Edge uses the same underlying technology. Visit the Chrome Web Store in Edge, and you’ll see a banner saying “Allow extensions from other stores.” Click “Allow,” then install the extension normally. Safari handles extensions differently. Password managers must be installed through the Mac App Store as full applications, which include Safari extension components. Download your password manager from the Mac App Store, and Safari automatically detects the extension during installation.
After installation, configure these four extension settings:
Enable autofill in extension settings by clicking the extension icon, selecting Settings or Preferences, and toggling on automatic password filling.
Disable competing browser password managers in Chrome Settings > Autofill > Password Manager by turning off “Offer to save passwords.”
Set up automatic password capture for new logins so the extension detects when you create accounts or change passwords, prompting you to save the new credentials.
Configure autofill keyboard shortcuts if available. Some extensions let you trigger autofill with key combinations like Ctrl+Shift+L instead of clicking the extension icon.
Test the extension by visiting a website where you have saved credentials. Click into the username field. You should see your password manager’s autofill suggestion appear either inline or as a popup. Click the suggestion to automatically fill both username and password fields. If autofill doesn’t work, verify the extension is enabled in your browser’s extension management page and that you’re logged into the extension. Some password managers require logging into the browser extension separately from the desktop app, even though both use the same account credentials.
Managing Shared Passwords and Family Access After Migration
Chrome’s password manager lacks secure sharing features. You can’t send a password to someone else without typing it in plaintext through email, text, or messenger, all of which create security risks and permanent records of sensitive credentials.
Dedicated password managers enable encrypted sharing that keeps passwords secure during transfer. Create a shared item by selecting a password in your vault and clicking “Share” or “Send.” Enter the recipient’s email address. They must have an account with the same password manager. The password transfers through encrypted channels, appearing in their vault without ever being exposed in plaintext. They see the username and password as normal saved credentials, usable through autofill like any other entry. This method works for individual passwords, secure notes, credit cards, and other vault items you want others to access.
Family plans offer multiple individual vaults under a single subscription, ideal for households sharing a password manager. Each family member gets a private vault that others can’t access, plus a shared family vault for streaming service passwords, Wi-Fi credentials, or other household accounts everyone needs. Premium features like emergency access and secure sharing work between family members by default. Plans typically cover 5 to 6 people, with each person maintaining complete privacy over their personal passwords while benefiting from collective access to shared accounts. Family plans usually cost slightly more than individual subscriptions but less than paying for multiple individual accounts.
Emergency access features allow trusted contacts to request access to your vault if you become incapacitated or unavailable. Set up emergency contacts in your password manager’s security settings by entering their email address and choosing a waiting period, typically 24 hours to 30 days. If they request emergency access, you receive a notification and can approve or deny the request. If you don’t respond within the waiting period, they automatically gain read only access to your vault. This prevents lockouts when someone needs critical account access after accidents or medical emergencies. Business or team sharing works similarly for work related password migration, with admin controls over who accesses which passwords. Shared items can have different permission levels. Some contacts might get view only access while others can edit or share passwords further down the chain.
Handling Credit Cards and Payment Information During Migration
Chrome stores payment methods in a completely separate section from passwords, which means your credit cards don’t export with your password CSV file and require manual transfer to your new password manager.
Credit card information lives in Chrome Settings > Autofill > Payment Methods, not in the Password Manager section. Chrome doesn’t offer a credit card export function, so moving this information means manually entering each card into your new password manager. Open your password manager and go to the section for payment methods, credit cards, or identity information. The exact naming varies by password manager. Click “Add Credit Card” or the equivalent button. Enter your card number, expiration date, CVV security code, cardholder name, and billing address. Most password managers automatically detect the card type (Visa, Mastercard, Amex) from the number. Save the entry, and repeat for each card you have saved in Chrome.
Secure storage for payment information uses the same encryption protecting your passwords. Your credit card details are encrypted at rest and in transit, accessible only through your master password and any two factor authentication you’ve enabled. Payment form autofill works similarly to password autofill. When you reach a checkout page, your password manager’s browser extension detects payment fields and offers to fill your saved card information. Click the autofill suggestion, and the extension populates card number, expiration, CVV, name, and billing address in one click. This works across different websites, unlike Chrome’s payment autofill which sometimes struggles with non-standard form layouts.
Beyond credit cards, password managers store additional identity data that Chrome handles poorly or doesn’t support at all. Save multiple addresses for shipping and billing purposes (home, work, vacation properties), with the password manager choosing the appropriate address based on form context. Secure notes provide encrypted storage for information that doesn’t fit standard formats: passport numbers, insurance policy details, software license keys, or sensitive documents you want accessible but protected. Some password managers offer email alias generation that creates temporary forwarding addresses for sign ups, protecting your real email from spam and data breaches. Enter your main email once, and the password manager generates unique aliases like “shop247@yourprovider.com” that forward to your real inbox. If one alias starts receiving spam, delete it without affecting your real email address.
Final Words
Migrating from Chrome password manager takes about an hour from start to finish, but the security and feature upgrades are worth it.
You’ve exported your passwords, imported them into a dedicated manager, verified everything works, and cleaned up Chrome’s saved data. Now you’ve got real 2FA support, encrypted sharing, breach monitoring, and actual security tools Chrome never offered.
Delete that CSV file if you haven’t already, test your new autofill on a few sites, and you’re done. Your passwords are safer, more organized, and finally working for you instead of sitting unprotected in a browser.
FAQ
How do you migrate saved passwords from Chrome?
You migrate saved passwords from Chrome by exporting them as a CSV file from Chrome’s Password Manager, then importing that CSV file into your new password manager. Open Chrome, go to Settings, select Autofill and passwords, click Password Manager, tap the three dots menu, choose Export passwords, and save the CSV file to your desktop.
Can you export passwords from Google Password Manager?
You can export passwords from Google Password Manager by accessing Chrome’s settings and using the export function. Navigate to Settings, Autofill and passwords, Password Manager, click the three dots next to Saved Passwords, select Export passwords, enter your device password when prompted, and save the exported CSV file.
How do you migrate passwords from Chrome to Safari?
You migrate passwords from Chrome to Safari by first exporting your Chrome passwords as a CSV file, then importing that file into Safari on your Mac. On Mac, open Safari, go to Settings, select Passwords, click the three dots menu, choose Import Passwords, and select your Chrome CSV file.
Do saved passwords transfer to a new computer automatically?
Saved passwords don’t transfer to a new computer automatically unless you’re signed into Chrome with sync enabled. For complete migration to a different password manager, you need to manually export your passwords from Chrome and import them into your new password manager on the new device.
Where does Chrome save the exported password file?
Chrome saves the exported password file to the location you choose during export, typically your desktop or downloads folder. The file is named “Chrome Passwords.csv” and contains all your saved passwords in plain text format, so you should store it securely and delete it after import.
What format does Chrome use for password exports?
Chrome uses CSV (comma-separated values) format for password exports. This plain text file format stores your usernames and passwords in an unencrypted table structure that most password managers can read, but it offers no security protection while stored on your device.
Can you import Chrome passwords on mobile devices?
You cannot directly import Chrome passwords on mobile devices because mobile Chrome browsers don’t support CSV file export. You need to export passwords from Chrome on desktop, import them into your password manager’s desktop or web version, then sync to the mobile app.
How do you delete passwords from Chrome after migration?
You delete passwords from Chrome after migration by going to Settings, Privacy and security, Clear browsing data, selecting the Advanced tab, choosing “All time” as the timeframe, checking only the Passwords option, and clicking Clear data. This removes all stored passwords from Chrome.
Should you disable Chrome’s password manager after migration?
You should disable Chrome’s password manager after migration to prevent conflicts with your new password manager’s autofill. Go to Chrome Settings, select Autofill and passwords, and turn off “Offer to save passwords” to ensure your new password manager’s browser extension works properly.
How long does password migration from Chrome take?
Password migration from Chrome takes approximately 10-15 minutes for the export and import process, though organizing and securing your passwords afterward can take several hours. The actual file export and import steps each take just a few minutes to complete.
What happens to duplicate passwords after importing from Chrome?
Duplicate passwords appear as separate entries after importing from Chrome if you had the same login saved multiple times. Most password managers flag duplicates during security audits, allowing you to review and delete unnecessary copies to clean up your password vault.
Can you import Chrome passwords into multiple password managers?
You can import Chrome passwords into multiple password managers by using the same exported CSV file for each import. However, you should delete the CSV file after completing all imports, and choose one primary password manager to avoid maintaining duplicate password databases.