Password managers after death: how to plan ahead
.png&w=3840&q=75)
Your password manager is the most important account you own. It holds the keys to everything else: your bank, your email, your investment accounts, the cloud backup with every family photo you've taken for the past decade. And right now, if you died tomorrow, there's a decent chance nobody in your family could get into it.
This is one of the more practical corners of estate planning that most guides skip over. The legal documents get attention. So does the question of who gets the house. But the password manager? Everyone assumes someone will figure it out.
Usually, they don't.
Why "someone will figure it out" rarely works
Password managers are built around a simple idea: only you should ever know your master password. Most services use zero-knowledge encryption, which means the company doesn't store your password and can't hand it over, even with a death certificate and a court order. That's exactly what makes them secure. It's also what makes them a problem when you die.
Your spouse might know your dog's name and your childhood street. Your adult child might have watched you unlock your phone a hundred times. But the master password to a zero-knowledge vault is often a long, generated passphrase that nobody has memorized. And if it isn't written down somewhere accessible, the vault is sealed permanently.
This happens more than you'd think. Search any personal finance or tech support forum and you'll find threads from people who spent months trying to get into a deceased spouse's password manager. The company response is always the same: we can't help. Zero-knowledge means zero-knowledge, even after death. Everything the person had carefully organized becomes permanently inaccessible.
The fix takes about fifteen minutes. Most people just never do it.
What the major password managers actually offer
Different apps handle this differently, and some have built better solutions than others.
1Password takes an indirect approach. When you create your account, it generates an Emergency Kit — a PDF with your Secret Key and a blank field where you're supposed to write your master password. The idea is that you fill it in, print it, and store it somewhere safe. If you never do that, there's no backup path. On the Families plan, family members can recover each other's accounts, which is worth knowing about if you already share a subscription.
Bitwarden is the one that actually built this feature properly. You pick a trusted contact, set a waiting period (anywhere from one to thirty days), and if they ever submit an access request, a countdown starts. If you don't cancel it in that window, they get in — either view-only or full access, depending on what you configured. It's the cleanest version of this I've seen.
LastPass and Dashlane both offer similar emergency access on paid plans: you designate a contact, they request access, there's a waiting period, and then they're in. LastPass has had well-documented security problems in recent years, but the emergency access feature itself still works the same way.
One thing to check regardless of which app you use: emergency access is often a paid feature. If you're on a free tier, log in and look for it under account settings or security options. The CISA's guidance on account security recommends using a dedicated password manager, and the legacy planning dimension is part of that equation.
The offline backup option
For people who'd rather not depend on software features, there's a lower-tech approach that works reliably: write your master password on paper and store it somewhere your trusted person can find.
This sounds almost too simple. But think about how you handle your important documents. A fireproof safe. A safe deposit box. A sealed envelope in a filing cabinet with your will. Your master password deserves the same physical storage as your other critical credentials.
What to write down:
- The name of the password manager app
- Your login email address
- Your master password
- For 1Password specifically: your Secret Key (this is in your Emergency Kit PDF)
- Any two-factor authentication backup codes (these are usually generated when you set up 2FA, and they matter a lot)
Store this document with your estate papers or tell your executor where to find it. Do not store it digitally, at least not as a plain text file on a device that needs the password to unlock. That's the same problem you started with.
If you use a safe deposit box, be aware that boxes are sometimes sealed after a death until an executor is appointed, which can cause delays. A fireproof home safe or a sealed envelope stored with an attorney may give your family faster access.
The two-factor authentication problem
Even with a master password in hand, there's a second wall your family may hit: two-factor authentication. Many password managers require a code from an authenticator app or a text message to a phone number as part of the login process.
If the phone is locked or deactivated, those codes stop coming.
The solution is backup codes. Most two-factor setups generate a set of one-time backup codes when you first enable 2FA. These let you log in if you can't access your usual second factor. They're typically a list of ten or twenty codes, and you're supposed to store them somewhere safe.
Most people save them in, say, their password manager. Which creates a circular problem.
Print your 2FA backup codes and store them with your master password. Same document, same location. Your family should never need to reconstruct this from scratch.
What to avoid
Wills become public documents after probate. Anyone who looks at the record can see what's in them, which makes a will a bad place for sensitive credentials. The right location is a sealed physical document or a system designed for secure handoff, not a legal filing that will eventually be readable by strangers.
Storing your master password as a note on your phone creates a different kind of trap. If the phone is locked and your family doesn't have the PIN, or if the phone is deactivated and can't receive verification codes, the note is unreachable.
The assumption that a spouse already knows is also risky. Couples who share finances often still have separate password managers. And even if you've told someone your password out loud, a long randomly generated passphrase is genuinely hard to remember accurately. Under grief, it's harder.
Making it part of your broader digital plan
A password manager is just one piece of the picture. Digital legacy planning covers the full scope: which accounts need attention, what your family will actually need to access, and how to organize everything into something usable. It's worth reading alongside this.
The related question of what happens to specific platforms is covered in what happens to your online accounts when you die. Even with full access to your password manager, each platform has its own process for account transfers and memorialization.
And if you want to go deeper on document storage, how to safely store legacy documents with end-to-end encryption walks through options that balance security with accessibility.
Don't make your digital life a locked room that your family has to spend months trying to break into. A piece of paper in a fireproof safe, with the right information on it, is enough to prevent most of the worst-case scenarios.
Getting started
If you do one thing after reading this: open your password manager's settings and look for emergency access. For Bitwarden, it's under Settings > Emergency Access. For 1Password, it means locating your Emergency Kit PDF and writing your master password on it. Then put it somewhere physical.
Add your two-factor backup codes to the same place. Then tell someone not the password itself, but where the document lives. Your spouse, your executor, a trusted adult child. Someone should know to look in the fireproof safe, or the filing cabinet, or wherever you've decided to keep it.
When I Die Files is built for exactly this kind of planning. You can store access instructions, final wishes, and personal letters in one place, so the people who need them aren't piecing it together from scattered notes.