Passwall is a password manager for individuals, families, and teams. Its core positioning is managing passwords, keys, and sensitive notes with a zero-knowledge architecture. The site clearly emphasizes that the master password never leaves the device, that the server only stores encrypted data, and that it offers Web Vault, browser extensions, mobile apps, desktop apps, and cloud sync.
In terms of protection features, Passwall covers password vaults, autofill, password generation, 2FA/TOTP, secure notes, secure sharing, password health, and breach monitoring. Its security model is disclosed in relatively strong detail: it uses AES-256-CBC with HMAC-SHA256, PBKDF2-SHA256 with at least 600,000 iterations by default, and Argon2id support in some clients. For team use cases, it provides collections, role-based permissions, audit logs, organization policies, SSO, SAML, OIDC, SCIM, and a REST API. The self-hosting option may also appeal to customers with higher control requirements.
Pricing is fairly transparent: Free is permanently free and includes unlimited passwords, secure notes, browser extensions, 2FA/TOTP, and up to 2 collections. Pro costs $19/year and includes unlimited collections, Passkeys, secure sharing, emergency access, security insights, and breach monitoring. Family supports up to 6 people and is shown on the site as $1.99 per user per month, or $23.90 billed annually. Business pricing is not disclosed. On compliance, the text mentions GDPR Compliant, adherence to OWASP and NIST standards, plus security audits, penetration testing, and a bug bounty program. However, we did not see completed SOC 2 or ISO 27001 certification; it only states SOC 2 Ready.
The main advantages are a highly usable free tier, low pricing for individual paid users, detailed disclosure of the security model and encryption process, and coverage for individuals, families, and team collaboration. The drawbacks are that some client pages are marked Coming soon, so real-world cross-platform maturity still needs verification; Business plan pricing, payment methods, formal compliance certificates, and access from mainland China are also not disclosed.
Passwall is suitable for individual users, families, startups, agencies, IT/DevOps teams, e-commerce businesses, and remote teams that need to share credentials. Its access status from China is unknown, and payment methods are not specified. If a company requires stable domestic network access, RMB payments, MLPS compliance, or localized support, it should also evaluate international products such as Bitwarden and 1Password, as well as domestic account and credential management alternatives.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on passwall.io official site.
passwall.io is an Türkiye Cybersecurity provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach passwall.io directly.