Bitwarden Security and Compliance
Protecting Customer Data
Bitwarden serves customers globally, helping them protect, store and share their sensitive data. Protecting customer data remains paramount to our company mission and Bitwarden complies with industry standards, conducting regular audits shared transparently with users. Through an open source approach, Bitwarden software is viewed and scrutinized by an engaged community around the world.
Bitwarden is compliant with the California Consumer Privacy Act (CCPA).
Third-party Security Audits
Bitwarden conducts comprehensive third-party security audits on an annual basis. These audits are conducted by notable security firms like Cure53 and Insight Risk Consulting and include source code assessments and penetration testing across Bitwarden IPs, servers, and web applications.
Bitwarden Network Security Assessments
Security Information & Resources
The Bitwarden Security & Compliance Program
Bitwarden is committed to ongoing investments to help you better understand how Bitwarden products and your data are secured and protected. For more information, read:The Bitwarden Security Whitepaper
Zero Knowledge Encryption
Bitwarden takes a zero knowledge encryption approach to password management, meaning every piece of information in your Vault Is encrypted. For more information on this approach, please see:How End-to-End Encryption Paves the Way for Zero Knowledge
Visit the Security section of our help site for more information on Bitwarden security, or jump directly to one of the following: