Skip to main content
Dashlane Blog

What If Dashlane Gets Hacked?

  |  Dashlane

It's the number one question we're asked. We get it—you want to know how storing all your passwords and personal information in one place is safe.

Here's how it works. Your Dashlane account can only be unlocked with your Master Password and only one person knows it: you. We don't save your Master Password in any form.

Everything you store in Dashlane is encrypted (converted to a scrambled code) using your Master Password as the key. Without it, your data remains safely indecipherable. This means that even in the unlikely event that Dashlane is hacked, everything in your account will remain securely encrypted.

You remember your Master Password. We'll take care of the rest. That's all you really need to know. But if you're interested in learning more, read on. To understand what makes Dashlane different, it comes down to centralized versus decentralized ways of storing identity information.


Let's think of Dashlane as your personal data and passwords bank. Your digital assets are protected by security cameras, bodyguards, and an impressive alarm system in the form of Amazon Web Services' 24-7-365 protection and detection services on top of our own. But since no security is completely unbreakable, on the other side of that security system, Dashlane is designed to keep each of our user's accounts separate, as in decentralized. So, in the highly unlikely event that someone broke into Dashlane's server and an account was compromised, all others would remain safe.

Put differently, imagine all your personal info and passwords are locked inside a safe which is locked inside a larger vault. Even if someone manages to open the vault, your safe is protected by your unique Master Password. We don't save your Master Password or any derivative of it, and it is never transmitted over the internet. And because every Dashlane user's data is encrypted separately using that unique password known only to them, if someone managed to get into our server, it would take an actual eternity to access all our users' accounts.


In contrast, Login with Facebook and other single sign-on solutions are examples of centralized systems, in which the user hands over management of account access to one source that has control and ownership. Facebook was and remains a single point of failure for its billions of users—one vulnerability could mean access to millions of users' associated third-party accounts (Airbnb, Spotify, Uber etc).

Only accessible to you

Unlike these potential one-to-many hacks, Dashlane's decentralized design stops a breach at the point of entry. Only you—only on your own registered device—can decrypt your data.

Given this, it's crucial that your Master Password be complex and unique, never shared with anyone else, or used on any other site. And by the way, those are great rules to follow for all your passwords. If your account passwords are complex, unique, and only known to you, should one of your accounts suffer a breach, no other accounts would be affected. Of course, these unique, complex passwords are hard to remember across hundreds of accounts. The average person is dealing with over 150!

Essentially, Dashlane's job is to remove this burden while taking your risk as close to zero as possible—all while autofilling across the web—making the internet safe and easy to use every day, everywhere, on all your devices.

Try Dashlane now and see for yourself.

Sign up to receive news and updates about Dashlane