Upgrade

Bring everything across.

Eleven password managers, four browsers, and Google Authenticator. Drop the export in, or scan the QR.

Password managers

Eleven exports, one importer.

Each manager exports its own way. Clavitor reads all of them — nothing passes through a third-party converter on the way in.

1PASSWORD

1Password

1PUX and CSV. Credentials, cards, identities, notes, SSH keys, licenses, databases, servers.

BITWARDEN

Bitwarden

JSON. Credentials, cards, identities, notes, custom fields.

PROTON PASS

Proton Pass

JSON, including aliases. Credentials, cards, identities, notes, TOTP, custom fields.

LASTPASS

LastPass

CSV. Credentials, cards, identities, notes, SSH keys, licenses, databases, Wi-Fi, servers.

DASHLANE

Dashlane

CSV and JSON. Credentials, cards, identities, notes, TOTP.

NORDPASS

NordPass

CSV. Credentials, cards, identities, notes.

KEEPER

Keeper

JSON. Credentials, cards, identities, notes, SSH keys, TOTP, custom fields.

KEEPASS

KeePass

CSV. Credentials, notes, custom strings.

KEEPASSXC

KeePassXC

CSV with native TOTP. Credentials, notes, TOTP.

ROBOFORM

RoboForm

CSV. Credentials, identities, notes, custom fields.

ENPASS

Enpass

JSON. Credentials, cards, identities, notes, TOTP, custom fields.

Browsers

Four formats.

The passwords your browser has been saving for years count too.

CHROMIUM

Chrome and Chromium

Chrome, Edge, Brave, Arc, Vivaldi, Opera — one shared CSV. Passwords and notes.

FIREFOX

Firefox

Passwords via CSV.

SAFARI

Safari / iCloud Keychain

CSV with otpauth:// URIs. Passwords and TOTP, macOS and iOS.

Authenticator apps

Scan the QR.

Google Authenticator's bulk export QR moves every seed at once. Single-entry otpauth:// QRs from any other app are read the same way.

What gets stored

Thirteen entry types.

	Clavitor	1Password	Bitwarden	Proton	LastPass	Dashlane
Credentials	✓	✓	✓	✓	✓	✓
TOTP / 2FA	✓	✓	✓	✓	✓	✓
Cards	✓	✓	✓	✓	✓	✓
Identities	✓	✓	✓	✓	✓	✓
Imported secure notes	✓	✓	✓	✓	✓	✓
Note	✓	—	—	—	—	—
Memory	✓	—	—	—	—	—
SSH Keys	✓	✓	—	—	✓	—
Software Licenses	✓	✓	—	—	✓	—
Databases	✓	✓	—	—	✓	—
Wi-Fi	✓	—	—	—	✓	—
Servers	✓	✓	—	—	✓	—
Crypto Wallets	✓	—	—	—	—	—
Custom Fields	✓	✓	✓	✓	✓	—
Per-field encryption tiers	✓	—	—	—	—	—

Note

A markdown document with a one-line summary and a status (draft, active, archived). Runbooks, recovery procedures, meeting notes — anything that doesn't fit a password field. Imported secure notes land here.

Memory

A knowledge base your AI agents read, write, and search across sessions. Think Notion or Obsidian, except the cloud cannot read your text and it isn't stranded on one machine. Memory syncs across your devices encrypted with your hardware key.

When an agent writes a Memory, it computes the embedding itself and stores it alongside. To recall, it sends an embedding back and the vault returns the closest matches. Search runs on vectors; the text stays encrypted. Agents find what they need by meaning, not by keyword.

Both Note and Memory use Credential Encryption: agents read them via the CLI; Clavitor's servers cannot.

How it works

Export. Drop. Done.

Export from your current manager, drop the file into the Clavitor web UI. The importer maps fields deterministically per source format. Nothing leaves your browser.

Duplicates

Import from several sources at once. For each duplicate, the entry with the newer modification timestamp wins. Chrome exports carry no timestamps, so the existing vault entry holds.

Nothing lost

Custom fields, TOTP seeds, notes, attachment metadata — if the export had it, the import keeps it. Unmapped fields become custom fields.

Field tiering

Each field lands at the right encryption tier on import: passwords and API keys at Credential Encryption (agent-readable), card numbers and SSNs at Identity Encryption (hardware-tap only).

API key detection

Imported API keys are recognized by pattern and filed in their own category, so agents find them without searching through generic logins.

Ready to upgrade?

Get a free vault →See plans →