Google Chrome, just like all other modern web browsers, offers to save account information, usually a set of data consisting of an url, a username and password, locally in a database.
Chrome users may block this from happening, which can be useful if they use a third-party password manager or prefer to use a browser independent solution that runs as a local program only.
Chrome may sync passwords with the cloud if users are signed in to a Google account in the browser, something which Google calls "Smart Lock for Passwords".
Issues may arise when users want to delete previously saved passwords, or when the Google account is compromised as third-parties may then gain access to all of those passwords.
There are two central locations that enable you to manage passwords. The first is found directly in the Chrome web browser, the other on the web on a Google service page.
Local password management
To find out whether account information are saved by Chrome locally, do the following:
To manage locally saved passwords, click on the "manage passwords" link next to the option in the Chrome settings or load chrome://settings/passwords directly instead.
You have two options on the page that appear when you hover the mouse over an entry.
Whenever you delete a password locally in Chrome and have sync enabled, it is automatically deleted in the cloud as well. The same happens the other way around.
Delete all saved passwords
Chrome users can delete all saved passwords in the browser. If they are signed in to a Google account, these changes are reflected automatically in the cloud as well.
The second option becomes only available if you have signed in to Chrome with a Google Account. Google notes that signing in will sync data such as the browsing history, bookmarks or passwords so that they become available on all connected devices.
Sign in to get your bookmarks, history, passwords and other settings on all your devices. You'll also automatically be signed in to your Google services.
The data is secured by the Google Account password, and if configured, by another verification step only by default. Chrome users can improve the security of the data by setting a sync passphrase.
The idea here is to protect the data with another passphrase that is different from the account password. Doing so has consequences though:
To manage Chrome passwords remotely, do the following:
The online page offers two additional options of interest. First, you may disable Smart Lock for passwords which allows you to block the saving of passwords to the Google Account.
Second, you may disable auto sign-in which has the effect that you are asked whether you want to sign-in to the site instead of being signed in automatically. (thanks Caschy)
Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.
We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats (video ads) or subscription fees.
If you like our content, and would like to help, please consider making a contribution:
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.