Resources
← Back to all resources
Policy

Password Manager Policy Template

Mandate password manager usage across your company for stronger security with less effort.

Purpose

This policy mandates the use of a company-approved password manager for all employees, contractors, and third parties who access company systems.

Requirements

  • Tool selection: Use the company-approved password manager (1Password, Bitwarden, or similar).
  • Master password: Minimum 16 characters, never shared, not stored digitally.
  • MFA on vault: Multi-factor authentication required on the password manager vault itself.
  • No other storage: Passwords must not be stored in browsers, spreadsheets, sticky notes, or email.
  • Sharing: Use the password manager's secure sharing feature for shared accounts.

Implementation

All new employees receive password manager setup during onboarding. Existing employees must migrate to the approved tool within 30 days of this policy's effective date.

Put this into practice with workro desk.

Create your workspaceMore free resources