Based on our analysis, 1Password is the more privacy-respecting choice overall.
BACK →Overall
Malwarebytes
B- · 68/1001Password
B · 74/100What they collect
Malwarebytes
Mixed (70)
1Password
Mixed (78)
Who they share it with
Malwarebytes
Mixed (68)
1Password
Mixed (65)
What you can do
Malwarebytes
Mixed (68)
1Password
Mixed (73)
What they promise
Malwarebytes
Mixed (65)
1Password
Mixed (76)
| Category | Malwarebytes | 1Password |
|---|---|---|
| Overall | B- · 68/100 | B · 74/100 |
| What they collect | Mixed (70) | Mixed (78) |
| Who they share it with | Mixed (68) | Mixed (65) |
| What you can do | Mixed (68) | Mixed (73) |
| What they promise | Mixed (65) | Mixed (76) |
Malwarebytes has noticeably better specific privacy practices than comparable US security companies — IP addresses are explicitly not stored, the VPN has a detailed and specific no-logs commitment, text messages are scanned without being retained, cloud storage scan files are deleted immediately after scanning, and usage/threat statistics collection can be opted out of in product settings — but it is a US company (Santa Clara, CA) with no named security certifications in its policy, vague retention periods, and a website advertising tracking stack.
View full analysis →1Password can never read your saved passwords — they're end-to-end encrypted and even 1Password holds no keys — but outside the vault, the company collects substantial usage and diagnostic data, shares information with advertising partners in ways that may legally count as a data sale, and applies vague retention language to everything that isn't your vault content.
View full analysis →You might also want to compare