OneTime Pass is a free online service provided by Globe2 Ltd, positioned as a way to help users securely send sensitive information such as login details or passwords. It is not a full password manager, nor an enterprise key management platform. Instead, it is a lightweight “one-time link sharing” tool: users enter the content, generate a link, and the recipient can view it once through that link.
Based on the available text, its main protection model is temporary exposure control during the transmission of sensitive data. Password fields are encrypted, and the official description states that anyone without the key cannot view them; even Globe2 staff or someone with direct database access cannot directly see the password information. The link is the only way to view the password, and it is shown only once. Once the link is clicked and viewed, the encrypted password in the database is permanently deleted. Users can also set a deletion time, including 7 days, 3 days, 2 days, 1 day, 6 hours, 1 hour, 30 minutes, and 5 minutes. The default is 7 days, after which the data is deleted whether or not it has been viewed. The viewing page also requires Recaptcha, which helps reduce automated abuse.
The service is hosted online, and the description clearly states that it is free to use. No enterprise edition, self-hosted deployment, SLA, payment methods, or commercial support are disclosed. Management and alerting features appear basic, mainly limited to one-time-view deletion and expiry-based deletion. There is no mention of user accounts, permission management, audit logs, notifications or alerts, team workspaces, or similar features. On the integration side, there is also no disclosed API, SSO, Webhook, or integration with password managers.
Its advantages are a low barrier to use and a clear mechanism, making it suitable for temporarily sending passwords and avoiding long-term retention in plaintext via email or chat tools. One-time viewing and automatic expiry provide real value in reducing the risk of credential residue. The drawbacks are limited security transparency: there is no explanation of the encryption algorithm, key management, logging policy, or compliance certifications. At the same time, if the link itself is forwarded or leaked, an unintended party may still be able to view it first. For enterprise scenarios requiring auditing, centralized control, and compliance records, its capabilities are clearly insufficient.
It is suitable for individuals, small teams, and temporary one-time login information sharing between service providers and customers. For finance, healthcare, government, state-owned organizations, or large enterprises, password sharing or key management solutions with compliance certifications, auditing, and access controls should be prioritized. The original text does not provide information about access from China. Actual domain connectivity, Recaptcha availability, and payment-related information cannot be confirmed, so it should be treated as “unknown.” If Recaptcha access is unstable, alternatives such as Bitwarden Send, 1Password sharing, One-Time Secret, or self-hostable options may be worth considering.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on onetimepass.uk official site.
onetimepass.uk is an United Kingdom Cybersecurity provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach onetimepass.uk directly.