NordPass
Password manager from the NordVPN team using XChaCha20 encryption, with a clean interface but limited free tier.
Feature Checklist
Strengths
- +XChaCha20 encryption is modern and arguably more future-proof than AES-256
- +Clean, minimalist interface that is easy to learn
- +Competitive pricing on multi-year plans
- +Data breach scanner monitors your email addresses for compromises
- +Supports passkey storage and authentication
Weaknesses
- -Free plan restricted to one active device session at a time
- -Relatively new product with a shorter track record than established competitors
- -Not open source — relies on trust in Nord Security
- -Feature set is less comprehensive than 1Password or Bitwarden
- -Long-term pricing requires committing to a 2-year billing cycle
Overview
NordPass is the password management offering from Nord Security, the company behind the well-known NordVPN service. Launched in 2019, it is a relatively young entrant to the password manager market, but it benefits from the infrastructure and security expertise of its parent organisation. Based in Panama — a jurisdiction with no mandatory data retention laws — NordPass positions itself as a privacy-first credential manager with a clean, modern interface and competitive pricing on longer billing cycles.
Security
NordPass distinguishes itself by using XChaCha20 encryption rather than the industry-standard AES-256. XChaCha20 is a modern stream cipher that is considered at least as secure as AES-256 and potentially more resistant to certain classes of side-channel attacks. It is also faster in software implementations, which can improve performance on lower-powered devices. NordPass uses Argon2id for key derivation — widely regarded as the best available password hashing algorithm — and follows a zero-knowledge architecture. The service has been independently audited by Cure53, with the results confirming no critical vulnerabilities. Multi-factor authentication is supported via authenticator apps, security keys, and biometric methods.
Features
NordPass covers the core password management essentials: a password generator, autofill, secure notes, credit card storage, and personal identity information. The Premium plan adds secure password sharing, emergency access, a data breach scanner, and passkey support. The data breach scanner monitors your email addresses against known breach databases and alerts you if your credentials appear. Passkey support is a forward-looking addition that positions NordPass well for the passwordless future. However, the overall feature set is narrower than what 1Password or Bitwarden offer — there is no built-in TOTP authenticator, and the sharing options are less granular than competitors.
Verdict
NordPass is a competent, well-designed password manager that benefits from modern encryption choices and a clean user experience. The XChaCha20 encryption and Argon2id key derivation represent best-in-class cryptographic decisions. However, the product is still maturing — the feature set is thinner than established competitors, the free plan's single-device limitation is frustrating, and the attractive headline pricing requires a two-year commitment. NordPass is a reasonable choice for existing Nord Security customers or those who prioritise modern cryptography, but most users will find better overall value with Bitwarden or a more feature-complete experience with 1Password.
External link. May be an affiliate link — see our methodology.
Pair With a VPN
Strong passwords are step one. A VPN encrypts your traffic and hides your IP address.
