Help Center

How do I create an account?

1. Go to the registration page
2. Enter your email address
3. Choose a strong master password (at least 12 characters recommended)
4. Verify your email by clicking the link we send you
5. Important: Save your Secret Key securely - you'll need it to log in on new devices

What is the Secret Key and why is it important?

Your Secret Key is a 128-bit random key generated during registration. It looks like this:

It serves two critical purposes:

• Extra security: Even if someone guesses your password, they can't access your vault without the Secret Key
• Server breach protection: If our servers are compromised, attackers still can't decrypt your data

How do I save my Secret Key safely?

We recommend multiple backup methods:

• Download the Emergency Kit - A PDF you can print and store in a safe place
• Write it down - Store in a secure location (safe, safety deposit box)
• Remember this device - Check "Remember this device" to save the key locally (you'll only need your password)

How do I create my first vault?

1. Log in to your account
2. Click the "+ New Vault" button
3. Give your vault a name (e.g., "Personal", "Work")
4. Click inside the vault to add your first password

What is zero-knowledge encryption?

Zero-knowledge means your data is encrypted on your device before it's sent to our servers. We never see:

• Your master password
• Your Secret Key
• Your vault names
• Your stored passwords, usernames, or notes

What encryption does PasswordOwl use?

What happens if PasswordOwl gets hacked?

Even in the worst-case scenario where our servers are completely compromised, attackers would only obtain:

• Your email address
• Encrypted data that looks like random gibberish
• Cryptographic records that cannot reveal your password

Without your master password AND Secret Key, your data is computationally impossible to decrypt.

Tips for a strong master password

• Use at least 12 characters (16+ is better)
• Mix uppercase, lowercase, numbers, and symbols
• Consider a passphrase: correct-horse-battery-staple
• Never reuse your master password anywhere else
• Don't use personal information (birthdays, pet names, etc.)

How do I log in on a new device?

On a new device, you'll need:

1. Your email address
2. Your master password
3. Your Secret Key

After logging in, you can check "Remember this device" so you won't need to enter the Secret Key again on that device.

Can I use PasswordOwl on multiple devices?

Yes! Your encrypted vault syncs automatically. Just log in on any device with your email, password, and Secret Key. All changes sync in real-time.

How do I generate a secure password?

When adding a new item to your vault:

1. Click on the password field
2. Click the "Generate" button
3. Adjust length and character options if needed
4. The generated password is automatically filled in

"Decryption failed" error

This error means your Secret Key doesn't match. Common causes:

• Typo in the Secret Key - double-check each character
• Missing or extra dashes
• Confusing similar characters (0 vs O, 1 vs I)

The Secret Key format is: A3-XXXXXX-XXXXXX-XXXXXX-XXXXXX-XXXXXX-XXXXXX

I forgot my master password

If you've completely lost your master password and cannot remember it, you'll need to create a new account. Your old encrypted data cannot be recovered.

I lost my Secret Key

If you're still logged in on another device:

1. Go to Settings
2. Look for "View Secret Key" or export your Emergency Kit

If you're logged out everywhere and don't have a backup, you'll need the Secret Key to log in. Without it, your data cannot be decrypted.

Email verification link expired

Verification links expire after 1 hour. If yours has expired, return to the registration page and click "Resend verification email" to get a new link.

I'm not receiving verification emails

• Check your spam/junk folder
• Make sure you entered the correct email address
• Add noreply@passwordowl.com to your contacts
• Wait a few minutes - emails can sometimes be delayed
• Try requesting a new verification email

How do I install the Chrome extension?

1. Visit the Chrome Web Store
2. Click "Add to Chrome"
3. Confirm by clicking "Add extension"
4. Click the extension icon and sign in with your PasswordOwl account

How does autofill work?

The autofill feature detects login forms automatically:

1. Visit any website with a login form
2. Click on the username or password field
3. A dropdown appears with matching credentials for that site
4. Click on the credential you want to use
5. Both username and password are filled automatically

Does the extension save new passwords automatically?

Yes! When you log in to a website or create a new account, the extension will detect the form submission and prompt you to save the credentials. You can choose to save them to any of your vaults.

The extension doesn't offer autofill on some websites

If autofill doesn't appear on a specific website, try these steps:

• Make sure you're signed in to the extension (click the icon to check)
• Refresh the page after signing in
• Check that you have credentials saved for this specific domain
• Some sites use custom login forms that may not be detected - you can use the extension popup to copy and paste credentials manually

Is the extension secure?

Yes! The extension uses the same zero-knowledge encryption as the web app. Your vault key is stored securely in the browser and all decryption happens locally on your device. We never have access to your passwords.

What is Google Drive storage?

Instead of storing your encrypted vault on our servers, you can choose to store it in your own Google Drive account. PasswordOwl uses the appDataFolder, a hidden folder that only PasswordOwl can access. Your encrypted data lives in your Google account, giving you full ownership.

How does it work?

1. Go to Settings > Storage in your vault
2. Click "Connect Google Drive" and authorize PasswordOwl
3. Choose to migrate your existing data or start fresh
4. Your vault is now stored on your Google Drive

You can switch back to our servers at any time from the same settings page.

Is it still zero-knowledge?

Yes. Your data is encrypted with AES-256-GCM before it leaves your browser, regardless of where it's stored. Google Drive only receives encrypted data that neither Google nor PasswordOwl can read. The same zero-knowledge guarantees apply.

How do I switch between our servers and Google Drive?

You can switch at any time:

1. Go to Settings > Storage
2. Select your preferred storage provider
3. Choose to migrate your data to the new provider
4. Your vault continues to work seamlessly