Why I use a password manager and why you should considering using one

I'll be honest—I might be a bit paranoid about security, probably because of my area of work and study. I've been using a password manager for the last 14 years, long before it was common practice.

Back then, we didn't use nearly as many sites and apps that required logins, but the idea of using almost the same password (or variations of it) across multiple sites never felt right to me. My system was simple: one master password to unlock my password manager, and inside that app, I had unique usernames and passwords for every site I used.

The beauty of this system was containment. If a site got attacked and my credentials were stolen, the attackers only got my username and password for that specific site—they couldn't use that information to break into my other accounts. Sure, I was putting all my data in one place, but that company's entire job is protecting my data, and they should do it better than anyone else.

A lot has changed in recent years. We now have single sign-on options from major providers like Google, Meta, and Amazon. Multi-factor authentication (MFA) became standard, requiring your phone to provide temporary codes for login. Passkeys were introduced to make this process more seamless and secure.

Given all these modern security improvements, you might wonder why I still use a password manager. Here's why.

A Centralized Hub for All My Login Data

As security has evolved, so has my password manager. It now handles all the modern authentication methods I mentioned—single sign-on, MFA, and passkeys. Not every site has implemented these security measures though. Some sites still rely on just a username and password for login.

With my password manager's browser extension, I have instant access to whatever login method each site requires. I don't need to check other apps or devices—the information I need automatically appears in the login forms.

One thing I dislike about using well-known providers for login is that you lose track of which sites you actually use. Here's a perfect example: I recently received a scam email claiming I had a 6-year-old account with virtual currency that had grown significantly in value. The scammers had obtained my email from a data breach and created a fake account on their site. Because I use my password manager to track every account I create, I immediately knew this was fraudulent.

Secure File Storage

I also store sensitive files directly in my password manager instead of keeping them on paper, USB drives, or cloud providers like Dropbox or Google Drive. While the chances of major cloud providers being hacked are slim, I prefer keeping critical information in one specialized, secure location. If I need a file for VPN configuration, for example, it goes in my password manager rather than a general cloud storage service.

Secure Notes

The same principle applies to sensitive notes. I use other apps for regular note-taking, but critical information—software licenses, app keys I've purchased, the PIN for my local swimming pool—gets stored in my password manager. This separation keeps my most sensitive data protected.

Credit Card Information

When websites ask if I want to save my credit card information, I decline and let my password manager handle it instead. This adds an extra layer of protection. If the website gets compromised, attackers won't have direct access to my banking information. While the site might still process payment data during transactions, they don't store it permanently.

SSH Keys

My final use case is storing SSH keys—this is mainly relevant if you're a developer. I use SSH keys to push and pull code from my computer to repository providers and to access servers remotely. By managing these through my password manager, I add another security layer. If my computer gets stolen or lost, I don't have to create new keys and update them everywhere, because the keys aren't stored directly on the device.

The Bottom Line

Even with all the modern security improvements in recent years, a good password manager remains one of the most effective tools for protecting your digital life. It's not just about passwords anymore—it's about having a secure, centralized system for managing all aspects of your online identity.

In a world where data breaches are increasingly common, having that extra layer of protection is worth the small effort it takes to set up and maintain.