1. You grant a trusted contact (spouse, sibling) access rights
2. Contact doesn't see passwords immediately
3. If you don't log in for X days (you set), contact gets access
4. Contact must wait Y days (you set) before password reveal
5. Option: Contact can request access immediately (you approve/deny)

1. Create document with critical passwords/instructions
2. Encrypt with strong password
3. Store encryption password in sealed envelope (spouse holds)
4. Document stored in safe place (home safe, bank safe deposit)
5. Only family member with envelope can decrypt

1. Create legal "Power of Attorney" or "Living Will"
2. Appoint trusted person as fiduciary/executor
3. In document: Authority to access digital accounts
4. Store with lawyer (safely, legally binding)
5. Provide copy to family + password manager

Step 1 - Create family vault in 1Password (not personal vault)
  1Password home → Settings → Vaults → Create new vault
  Name: "Family Shared"
  Purpose: Critical accounts only (not every password)

  Add to this vault:
  - Bank account info
  - Insurance policy numbers
  - House deed digital copy
  - Cryptocurrency seed phrase (encrypted note)
  - Investment accounts
  - Password to password manager itself (!)

  Do NOT include:
  - Email passwords (family doesn't need them)
  - Work account passwords (employer owns them)
  - Social media passwords (revoke after death)

Step 2 - Grant emergency contact access
  1Password home → Settings → Emergency Access
  Click: "Add emergency contact"

  Select contact: Your spouse (or trusted sibling)

  Grant access to vault: "Family Shared"

  Set recovery time:
    Quiet period: 90 days
    (If you log in, timer resets)

    Wait time: 14 days
    (After 90 days passes, emergency contact can request.
     You have 14 days to deny. If you don't respond, access granted.)

Step 3 - Test the setup
  Have your spouse log into 1Password
  Show them they can see "Family Shared" vault is being protected
  (She sees "Emergency access pending" or similar)

Step 4 - Update your will
  Include in will: "1Password emergency access set up under [spouse name].
  All critical accounts in 'Family Shared' vault."

1Password shows emergency contact:
"Patrick hasn't accessed this account in 104 days.
[CLAIM ACCESS] button appears"

Spouse clicks [CLAIM ACCESS]
→ Gets full access to "Family Shared" vault
→ Sees all critical passwords
→ Can change them if needed
→ Can transfer accounts to her name

Risk 1 - You get kidnapped/injured, now incapacitated
  Problem: Must wait 90 days before spouse can access anything
  Solution: Also give spouse sealed envelope with 1Password master
            password (she can use it immediately if you're hospitalized)

Risk 2 - 1Password company goes out of business / shuts down
  Problem: Loss of access to vault
  Solution: Keep backup copy of critical info in encrypted file

Risk 3 - Spouse doesn't know master password
  Problem: Can't use 1Password even if emergency access granted
  Solution: Store master password in sealed envelope (see below)

Risk 4 - Email is compromised
  Problem: Attacker could approve/deny emergency access
  Solution: Use 1Password login with biometric, not email password

Step 1 - Create organization vault (Bitwarden Premium required: $10/year)
  Bitwarden → Organizations → Create new organization
  Name: "Family Emergency Vault"

  Create collection inside: "Critical Accounts"
  Add items to this collection:
  - Bank account info
  - Insurance policies
  - Cryptocurrency seed phrase
  - 2FA recovery codes (!)

Step 2 - Grant emergency access to spouse
  Settings → Emergency Access → Add emergency contact

  Email - spouse@example.com
  Role: Manager (can access vault)
  Access to: "Critical Accounts" collection only

  Activation delay: 90 days
  Confirmation delay: 14 days

Step 3 - Spouse accepts in her Bitwarden account
  She receives email invite to emergency access
  Clicks link, accepts
  Shows in her account as "waiting for activation"

1Password:      $36/year family plan (+ premium features)
Bitwarden:      $10/year premium (for organization features)
                + free option with workarounds

Cost winner - Bitwarden (but fewer features)
Convenience winner - 1Password (better UI, more options)

Best value - Bitwarden for pure emergency access
Best experience - 1Password for daily use + emergency access

Step 1 - Create encrypted document
  Use: Google Docs, Word, or Notes app
  Content:
  
  FAMILY EMERGENCY VAULT

  Last updated: March 20, 2026
  This document contains passwords. Share with family
  only if something happens to me (death, incapacity).

  BANK ACCOUNTS:
    Chase checking: Account #123456, username: patrick.j
    Password: [Don't write actual password - see below]

  INSURANCE:
    Homeowners: Policy #987654, USAA
    Health: Blue Cross, Policy #555555

  CRYPTOCURRENCY:
    Bitcoin wallet seed phrase: [12-word phrase]
    Ethereum wallet address: 0x1234...
    Where stored: Cold wallet on desk in safe

  INVESTMENT ACCOUNTS:
    Fidelity 401k: Account #777, username: patrickj

  DIGITAL ASSETS:
    Hard drives with photos: In office closet
    Cryptocurrency: See above
    Domain names: Namecheap, username: patrick@

  ESTATE INSTRUCTIONS:
    Bank account transfer: Speak to Chase manager
    2FA phone: AT&T account, transfer to spouse
    Email forwarding: Set up automatic reply

  

Step 2 - Encrypt the document
  If using Google Docs: Download as PDF

  Use: Password-protected PDF tool
  Tool - PDFtk (free, open source) or Smallpdf.com

  Terminal command (Mac/Linux):
  pdftk original.pdf output encrypted.pdf user_pw "MyStrongPassphrase123!"

  Or online: https://smallpdf.com/encrypt-pdf
  Upload PDF, set password: "MyStrongPassphrase123!"
  Download encrypted PDF

Step 3 - Create sealed envelope with encryption password
  On paper: Write password clearly
  "MyStrongPassphrase123!"

  Put in envelope
  Seal it
  Write on front: "FAMILY EMERGENCY - Open only if I'm incapacitated/deceased"

  Give sealed envelope to spouse
  Instruct: "Don't open unless something happens"

Step 4 - Store encrypted document
  Where: Safe deposit box at bank (secure, accessible by spouse via will)
  OR: Home safe, tell spouse combination
  OR: Parent's house with trusted sibling

  Backup: Email to spouse as attachment
  (Encrypted PDF, password in sealed envelope she holds)

Step 5 - Write in will
  "My spouse holds a sealed envelope with encryption password
  to my emergency vault. The vault is stored in [location].
  This document contains all critical account information."

Scenario 1 - Your email is hacked
   Attacker can't access bank accounts
   Attacker can't decrypt emergency vault (password is sealed envelope)
   Password manager shows emergency access pending (not approved)

Scenario 2 - Someone breaks into your house
   Safe with passwords isn't found
   Even if found, it's encrypted
   Spouse has password in sealed envelope, not visible

Scenario 3 - 1Password or password manager goes down
   Sealed envelope backup still works
   Can manually access all accounts using info in vault

Scenario 4 - You're in accident, need account access immediately
   Spouse has sealed envelope
   Can decrypt vault immediately (doesn't have to wait 90 days)
   Can access all critical accounts within 30 minutes

In 1Password Emergency Vault, add:

Account - Chase Bank
Login - patrick.j
Password - [in 1Password]

2FA Recovery Codes:
  12345-67890
  10293-84756
  39384-29384
  [8 more codes]

How to use - If you're incapacitated, spouse can
use recovery code to bypass 2FA phone requirement.

Gmail - Settings → Security → 2FA Backup codes → Show codes
      (Codes start with format: XXXX XXXX XXXX)

Chase Bank - Customer service, request backup codes
           Must do in person or security call

Apple - iCloud.com → Account settings → Recovery codes

AWS - Account settings → Security → Multi-factor authentication

1Password emergency vault item:

ACCOUNT RECOVERY CODES
Updated - March 20, 2026

Gmail recovery codes:
  1234 5678 9012
  3456 7890 1234
  [8 more]

Chase recovery codes:
  5678 9012 3456
  1234 5678 9012
  [6 more]

Apple iCloud:
  9999 8888 7777
  6666 5555 4444
  [4 more]

These are single-use. Once used, mark as consumed.
Print a physical copy and keep with sealed envelope.

Option 1 - Sealed envelope (best)
  Write master password on paper
  Put in sealed envelope: "1Password Master Password - Emergency Use Only"
  Spouse keeps this separate from regular passwords

  Risk: Spouse must protect password (don't tell anyone)
  Benefit: Can use immediately if needed, no waiting

Option 2 - 1Password Trusted Contact Feature (easier)
  1Password: Settings → Trusted contacts
  Add spouse as trusted contact
  Can request access to vault immediately

  She doesn't see passwords until you approve or 90 days pass
  No master password needed

Option 3 - Write it down + lawyer
  Give sealed envelope to lawyer
  In will: "Give this sealed envelope to my spouse if I'm incapacitated"
  Lawyer holds it securely

PATRICK'S SETUP (married, 2 kids, age 38)

What could go wrong:
  - Car accident (immediate need for banking)
  - Sudden illness (incapacity)
  - Death (estate access)

His plan:

 PRIMARY: 1Password Trusted Contact Feature           
                                                      
 - Wife as emergency contact                         
 - Access to "Family Shared" vault                    
 - 90-day quiet period, 14-day confirmation wait     
 - Includes: Banking, insurance, crypto, deeds       
                                                      
 BACKUP 1: Sealed Envelope with Master Password      
                                                      
 - Wife holds sealed envelope                        
 - Contains: 1Password master password                
 - Can use immediately if Patrick hospitalized       
 - Labeled: "Open only if emergency"                 
                                                      
 BACKUP 2: Google Drive encrypted PDF                
                                                      
 - Encrypted PDF with all critical accounts          
 - Password in separate sealed envelope              
 - Stored on Google Drive (wife has read access)     
 - Accessed if 1Password ever fails                  
                                                      
 LEGAL: Will + Power of Attorney                      
                                                      
 - Will mentions emergency vault setup               
 - Power of attorney allows wife to access accounts  
 - Executor can use legal authority with banks       


Time to set up - 2 hours
Peace of mind - Invaluable

Every January:
  1. Update critical account list (any new accounts?)
  2. Update insurance policy numbers (anniversaries?)
  3. Refresh recovery codes (some may be consumed)
  4. Update cryptocurrency address (if changed)
  5. Tell spouse: "Emergency vault updated"
  6. Test: Have spouse see she still has emergency access

 Don't use same password for everything
   (Breach = attacker has access to all accounts)

 Don't write passwords on sticky notes and tape to monitor
   (Even family finding them isn't secure)

 Don't tell spouse password via text/email
   (Creates plaintext record of password)

 Don't use spouse's birthday as encryption password
   (Attacker can guess it)

 Don't store only in 1Password without backup
   (Company could fail, servers could be hacked)

 DO use strong, random encryption password
 DO keep sealed envelope with spouse
 DO include 2FA recovery codes
 DO test annually that backup access works
 DO update will to reference emergency setup

Setup complete when you can answer YES to:

 Password manager configured (1Password or Bitwarden)
 Emergency contact assigned to spouse/trusted person
 "Family critical accounts" vault created and shared
 2FA recovery codes stored in emergency vault
 Master password in sealed envelope (if needed)
 Backup copy stored securely (safe deposit box or home safe)
 Spouse knows where backup copy is located
 Spouse knows not to open without emergency
 Updated will to reference emergency vault
 Test done annually (access still works)