Zero-knowledge password manager
Master Password Recovery Policy
Understanding our zero-knowledge security model
β οΈ Critical Information
Passary CANNOT recover your master password or decrypt your vault if you lose access.
This is not a limitation, but proof that our zero-knowledge architecture is genuine. If we could recover your password, it would mean we have access to your encrypted dataβwhich we don't.
Our Recovery Policy
What We CAN Do
- Provide technical support for using Passary
- Help you import a vault backup if you have one
- Answer questions about security and encryption
- Assist with browser storage issues
What We CANNOT Do
- Reset your master password - We don't have a "forgot password" feature
- Decrypt your vault - Without your master password, the vault is mathematically unbreakable
- Recover your data - If you lose both your master password and vault backup, your data is permanently lost
- Provide password hints - We don't store any information about your master password
Why This Policy Exists
Our inability to recover your password is a feature, not a bug. Here's why:
π True Zero-Knowledge
Your vault is encrypted with a key derived from your master password using Argon2id. This key exists only in your browser's memory when you unlock your vault. We never see it, store it, or transmit it.
π‘οΈ Maximum Security
If password recovery were possible, it would require us to store information about your password on our servers. This creates a potential security vulnerability that could be exploited by hackers, governments, or malicious actors.
π― Your Privacy Guaranteed
Even if Passary's servers were compromised, your encrypted vault would remain secure. Even if legally compelled, we couldn't provide access to your vault because we genuinely cannot decrypt it.
Preventing Data Loss
Since we can't help you recover a lost password, it's essential to follow these best practices and understand your responsibilities as outlined in our Terms of Service:
1. Choose a Memorable (But Strong) Master Password
Your master password should be:
- Long: At least 12-16 characters (passphrases work well)
- Memorable: Something you can remember without writing down
- Unique: Never reuse it from another service
- Complex enough: Mix of words, numbers, symbols if possible
π‘ Tip: Consider a passphrase like "BlueSky-Mountain42-Coffee!" instead of random characters like "xK9#mP2@vL7q"
2. Create Regular Backups
Export your encrypted vault file regularly:
- After adding important passwords
- At least once a week if actively using Passary
- Before clearing browser data or switching devices
- Before major system updates or browser reinstalls
3. Store Backups Securely
Keep your vault backup in multiple secure locations:
- External USB drive: Kept in a safe physical location
- Encrypted cloud storage: Google Drive, Dropbox (your vault is already encrypted)
- Secondary device: Another computer or external hard drive
- NOT: Email, unencrypted cloud, shared folders
4. Test Your Backups
Periodically verify that you can successfully import your backup vault file. This ensures your backups are valid and you remember your master password.
What If I Forget My Password?
The Unfortunate Reality
If you forget your master password and don't have a backup, your vault data is permanently lost. There is no recovery process, no backdoor, and no way to bypass the encryption.
Your Options
- 1.Try Common Variations: If you think you remember most of your password, try variations (different capitalization, symbols, etc.)
- 2.Check for Backups: Look for exported vault files on other devices, cloud storage, or backup drives
- 3.Start Fresh: If recovery is impossible, you'll need to create a new vault and manually update passwords on your accounts
Comparison with Other Password Managers
| Feature | Passary | Others |
|---|---|---|
| Password Recovery | β Not Possible | β Email reset, recovery keys |
| Data Access by Provider | β Impossible | β Technically possible |
| Government Requests | β Cannot comply | β Must/may comply |
| User Responsibility | β οΈ High | Lower |
Passary prioritizes security and privacy over convenience. If you prefer the ability to recover your password via email or account recovery, a cloud-based password manager might be more suitable for your needs.