Secure yourself from the impact of the Heartbleed bug with these helpful tips.

Maximum security for your data.

Our security model in a nutshell:

AES-256
Encryption
Your
encryption
key is not
recorded
Local-only
or synced -
YOU choose
Two-factor
authentication
AES-256 encryption (the world's leading standard), with 10,000+ rounds of PBKDF2 salt. Open source, yet remains uncracked. Widely-accepted as the strongest encryption there is. See a sample encrypted file here.
The key that encrypts your data is derived from your Master Password. There is by default NO RECORD of them anywhere in the universe – not on your device, never on our servers and never transmitted on the web.
You can choose to have your private, encrypted data never leave your device. Or, seamlessly sync your data (AES-256 encrypted, of course,) via our servers to multiple devices.
You can add two-factor authentication with Google Authenticator to bring yet another layer of security to access your data. Read more about Google Authenticator.
AES-256
Encryption
Your
encryption
key is not
recorded
Local-only
or synced -
YOU choose
Two-factor
authentication
AES-256 encryption (the world's leading standard), with 10,000+ rounds of PBKDF2 salt. Open source, yet remains uncracked. Widely-accepted as the strongest encryption there is. See a sample encrypted file here.
The key that encrypts your data is derived from your Master Password. There is by default NO RECORD of them anywhere in the universe – not on your device, never on our servers and never transmitted on the web.
You can choose to have your private, encrypted data never leave your device. Or, seamlessly sync your data (AES-256 encrypted, of course,) via our servers to multiple devices.
You can add two-factor authentication with Google Authenticator to bring yet another layer of security to access your data. Read more about Google Authenticator.

What this means for your data:

1
Your data is encrypted with the strongest algorithm there is, and we've chosen an incredibly stringent way to implement it as well - a hacker's nightmare
2
Because we don't record your Master Password or any hash/derivative of it on our servers (i.e. we literally "throw away the key"), your data can be decrypted ONLY BY YOU - not even Dashlane has access to your data
3
If you're worried about your "data in the cloud", you can choose to keep your encrypted data purely local - i.e. only on your device
4
To layer up even further, you can use two-factor authentication with Google Authenticator, which adds another independent lock and key to get to your data

FAQ:

horizontal rule