← Back to blog
·5 min read

How to Migrate from LastPass or Bitwarden to SandPass

Switching password managers sounds daunting, but SandPass makes it painless. The entire import process happens in your browser — your passwords never pass through our servers. Here's how to do it.

Before You Start

  • Install the SandPass extension from the Chrome Web Store or Firefox Add-ons
  • Create your SandPass account and set your master password
  • Have your old password manager open in another tab

From Bitwarden

  1. Open Bitwarden and go to Settings → Export Vault
  2. Choose CSV format (unencrypted — we need to read the data to re-encrypt it)
  3. Enter your master password and download the file
  4. In SandPass, go to Settings → Import
  5. Select Bitwarden as the source and upload the CSV
  6. SandPass encrypts each entry with your new keys and syncs to the server
  7. Delete the CSV file immediately — it contains unencrypted passwords

From LastPass

  1. Log into LastPass and go to Advanced Options → Export
  2. You'll get a CSV file with all your credentials
  3. In SandPass, go to Settings → Import
  4. Select LastPass as the source and upload
  5. Delete the CSV file after import

From 1Password

  1. In 1Password, go to File → Export → All Items
  2. Choose CSV format
  3. Import into SandPass using the 1Password preset

From Chrome

  1. Go to chrome://password-manager/settings
  2. Click Download file under "Export passwords"
  3. Import into SandPass using the Chrome preset

From Any Other Manager

If your manager supports CSV export, use SandPass's Generic CSV option. SandPass will auto-detect columns for website, username, and password.

What Gets Imported

  • Website URLs, usernames, and passwords
  • Notes and custom fields (from Bitwarden)
  • Folder/category structure (mapped to SandPass folders)

Security During Import

The import process is designed with zero-knowledge principles:

  • The CSV is read entirely in your browser using JavaScript
  • Each entry is encrypted with AES-256-GCM on your device
  • Only encrypted data is sent to SandPass servers
  • The CSV file is never uploaded anywhere — only the encrypted vault items

After Import

  1. Verify your imported passwords work by logging into a few sites
  2. Enable 2FA on your SandPass account for extra security
  3. Delete or disable your old password manager account
  4. Make sure you've deleted any exported CSV files

The whole process takes about 2 minutes. Welcome to zero-knowledge security.