Summary: For privacy-conscious users, Bitwarden and KeePass The clear recommendations. Bitwarden offers the best compromise between user-friendliness, security, and transparency, while KeePass ensures maximum data control. LastPass and Dashlane should be avoided – details below.
The PRIVA SCORE evaluates the data protection features of the 10 most popular password managers. The maximum score is 312 points. The focus is on features such as end-to-end encryption, zero-knowledge architecture, security audits, open source, security incident reports, GDPR compliance, two-factor authentication, and local storage options – the data protection features relevant to this app category.
As always, the PRIVA SCORE evaluates how well apps/services Data protection features In this category, all providers offer end-to-end encryption.
The providers
Bitwarden and KeePass achieved the highest PRIVA SCORE with 312 and 276 points respectively. They offer end-to-end encryption, true zero-knowledge architecture, and maximum transparency through open source. Bitwarden Regular audits and a lack of security incidents underline the high level of data protection and also KeepAssist guarantees data protection through complete local data storage.
NordPass, 1Password, Keeper, Enpass, Sticky Password and RoboForm perform mediocrely with scores between 268 (NordPass) and 202 (Sticky Password, Roboform) points. They offer good to acceptable encryption standards and two-factor authentication, but do not consistently fulfill all important data protection features. Exclusively cloud-based storage or a lack of audit transparency, for example, lead to point deductions.
Get the lowest PRIVA SCORE Dashlane (193 points) and LastPass (166 points). Important audit evidence is missing, and the zero-knowledge architecture is partially poorly implemented. LastPass also stands out due to several serious security incidents in which password vaults were compromised.
Explanation of data protection features
End-to-end encryptionPasswords are encrypted on the device before being transmitted online. The key never leaves the user's device, so the provider has no insight into the contents.
Zero-knowledge architectureThis feature guarantees that the provider has no technical means of accessing the user's encrypted content. This means that password manager providers do not know the access password, nor can they read the stored passwords. This also prevents attackers from stealing passwords.
Independent security auditsReputable password managers regularly have their code base audited by external experts. Providers that don't publish at least excerpts from these audit reports should be treated with caution.
Open-Source: Open source code allows independent security researchers to verify the security level and minimize hidden risks.
No serious security incidents: Password managers with a proven history of data leaks or hacks are downgraded.
GDPR compliance: The provider complies with European data protection requirements, which is particularly important with regard to storage location and data transfer.
Two-factor authentication (2FA): Additional security layer protects against unauthorized access, even if the master password is stolen.
Local storage option: The ability to store passwords exclusively on your own device increases data protection compared to cloud solutions.
EN 
DE_DE