Proton Pass

Proton Pass is the password-manager product in the Proton AG portfolio — the same Geneva-headquartered Swiss company operated under the non-profit **Proton Foundation** (CHE-418.863.304) since the 2024 founder share donation by Andy Yen, Jason Stockman, and Dingchao Lu. The product launched in beta on 20 April 2023 and globally on 28 June 2023 under a freemium model and now serves the broader Proton group's 100M+ accounts. Feature set covers password storage, passkey support, integrated 2FA authenticator, secure password sharing, file attachments, **hide-my-email aliases** (a Proton-network-native privacy feature for breach isolation), dark-web breach monitoring, and dedicated business tier with admin controls, SSO, and compliance reporting. Compliance posture mirrors Proton VPN. End-to-end zero-knowledge encryption means Proton itself cannot decrypt customer vaults under any circumstance. The Android and iOS apps plus browser extensions for Firefox and Chromium-based browsers are **open-source on GitHub** (protonpass/ + ProtonMail/WebClients). **Cure53 conducted a full security audit in May–June 2023** of the mobile apps, browser extensions, and API — no critical issues were found and moderate findings were fixed before global launch. Account data is stored exclusively in Switzerland, Germany, or Norway alongside the rest of Proton's portfolio (same DCs and same engineering ops as Proton Mail and Proton Drive). Switzerland's EU adequacy decision (Art. 45 GDPR) makes cross-border transfers between CH and EU SCC-free. Pricing is freemium with one of the most generous free tiers in the category: **unlimited logins / notes / credit cards / devices, plus 10 hide-my-email aliases, passkeys, and weak/reused-password alerts** — comprehensive enough that many users never need to upgrade. **Pass Plus** is the entry paid tier (industry-reported ~€2/month, multi-currency CHF/EUR/USD); business plans with SSO and admin controls above. Best fit: privacy-maximalist consumers, families, and EU SMBs who want a password manager from the same structurally-protected ownership architecture that provides Proton Mail and Proton VPN — and any procurement-grade buyer who wants Cure53-audited zero-knowledge encryption with the lowest possible parent-jurisdiction risk (non-profit Swiss foundation).