3D logos for Microsoft Edge, Google Chrome, and Mozilla Firefox on a wooden surface.

Getting a new computer is great right up until you realize none of your saved passwords came with it. Most people don’t notice this until they’re locked out of something important.

Every major browser can export your passwords as a CSV file. You can import that file into the browser on your new machine, or use the migration as a reason to finally switch to a dedicated password manager. This guide covers both — export steps, import steps, and what to do with that file so it doesn’t become a security problem.

You’ll need about 10 minutes and your computer’s login PIN or password. Every browser requires you to authenticate before it lets you export. Plan to do the whole thing — export, move to the new machine, import, delete — in one sitting if you can.

Read This First

The exported file is a plain-text CSV. Not encrypted. Not password-protected. Anyone who opens it can read every username and password in it.

That sounds alarming, but the process is safe as long as you treat the file carefully. Don’t save it to a folder that syncs to the cloud. Don’t email it to yourself. Don’t leave it sitting on your desktop. Export it, import it on the new machine, then delete it and empty the Trash or Recycle Bin.

More detail on this at the end, but it’s worth knowing upfront.

Exporting from Google Chrome

Chrome reorganized its password manager in recent versions, so if the steps you remember don’t work, here’s the current path:

  1. Click the three-dot menu (top right) → Passwords and autofillGoogle Password Manager
  2. In the left sidebar, click Settings
  3. Under Export passwords, click Download file
  4. Enter your device PIN or password when prompted
  5. Save the file somewhere local — not a cloud-synced folder

You can skip to step 2 by typing chrome://password-manager/settings directly in the address bar.

Worth knowing: if your passwords sync through a Google account, they’ll show up automatically on Chrome once you sign in on the new computer. You may not need the CSV at all — just sign in and check.

Exporting from Microsoft Edge

  1. Click the three-dot menuSettings
  2. Go to ProfilesPasswords
  3. Click the three-dot icon next to “Saved passwords”
  4. Select Export passwords
  5. Confirm the warning and save the file

Same deal as Chrome — if you use a Microsoft account, your passwords already sync. Sign into Edge on the new machine first and see if they’re there before going the CSV route.

Exporting from Mozilla Firefox

Firefox changed the menu label at some point. Older versions said “Export Logins.” Current versions say “Export Passwords.” They do the same thing.

  1. Click the hamburger menu (three lines, top right) → Passwords — or type about:logins in the address bar
  2. Click the three-dot menu in the top right of the Passwords page
  3. Select Export Passwords…
  4. Click through the confirmation warning
  5. Enter your Windows PIN or Mac password if prompted
  6. Save the CSV file

If you’ve set a Primary Password (Firefox’s version of a master password), you’ll need it here. Forgotten it? The export won’t work without it — you’d need a third-party recovery tool at that point.

Firefox 79 or later is required for built-in export. If you’re on something older, update first.

Exporting from Safari on Mac

This one changed with macOS Sequoia. Apple pulled password management out of Safari’s menus and put it in a standalone Passwords app.

Sequoia or later:

  1. Open the Passwords app — find it in Spotlight, or go to Safari → Settings → Passwords and it’ll take you there
  2. In the menu bar: File → Export All Passwords to File
  3. Click Export Passwords in the confirmation dialog
  4. Pick a save location — avoid your Desktop or Documents folder if iCloud Drive syncs those
  5. Authenticate with your Mac password or Touch ID

Ventura or Sonoma:

  1. Open Safari → Settings → Passwords
  2. Click the three-dot menu or look for an export option at the bottom
  3. Authenticate and save

If iCloud Keychain is on, your passwords are already syncing across your Apple devices. Sign in with the same Apple ID on your new Mac and they’ll be there. The CSV export is mainly useful if you’re switching away from Safari or Apple’s ecosystem.

One thing that catches people: if iCloud Drive syncs your Desktop or Documents folder, don’t save the password CSV there. It’ll get uploaded to iCloud unencrypted before you even realize.

Importing on the New Computer

Chrome

  1. Go to chrome://password-manager/settings
  2. Under Import passwords, click Select file
  3. Choose your exported CSV
  4. Chrome will confirm how many passwords imported successfully
  5. Delete the CSV immediately

Chrome handles up to 3,000 passwords per import. More than that, split the file and import in batches.

Edge

  1. Settings → Profiles → Passwords
  2. Three-dot icon next to “Saved passwords” → Import passwords
  3. Select your file

Firefox

  1. Go to about:logins
  2. Three-dot menu → Import from a File…
  3. Select the CSV → click Open → Done

Into a Password Manager

All three of these accept a CSV from any browser:

  • Bitwarden: bitwarden.com → Tools → Import Data → pick your browser → upload
  • 1Password: File → Import → select Chrome/Edge/Firefox → drag the CSV in
  • LastPass: Web vault → Advanced Options → Import → select your browser → upload

What to Do With the File After

Delete it from both computers, then empty the Trash (Mac) or Recycle Bin (Windows). That’s the minimum.

If you saved it to Dropbox, Google Drive, OneDrive, or iCloud, it’s sitting in the cloud right now. Log into that service and delete it there too, not just locally.

On Mac, if Time Machine was running while the file existed, it’s in a backup. Either export with Time Machine paused, or save the file to a location Time Machine doesn’t watch.

On Windows, some backup tools run constantly in the background and may have already captured it. Check your backup software’s recent activity if you’re concerned.

The file has every username and password you’ve ever saved in your browser. Worth spending two minutes making sure it’s actually gone.

Browser Password Managers vs. Dedicated Ones

Browser-stored passwords work fine until they don’t. They’re tied to one browser, can’t be shared securely, and disappear when you switch browsers or reinstall. If someone else logs into your browser profile, they have your passwords.

A dedicated password manager stores everything encrypted, works across all your browsers and devices, and lets you share individual passwords with family or coworkers without handing over your whole vault.

Bitwarden is free for personal use and open-source — the code has been audited. Hard to argue with it at that price.

1Password costs money but is genuinely well-built. Travel Mode, which hides specific vaults when crossing borders, is the kind of feature you don’t think you need until you do.

LastPass had a significant breach in 2022 — attackers got encrypted vault data. The company has made security changes since then, and plenty of people still use it. If you stay with LastPass, use a long, unique master password and turn on two-factor authentication.

For businesses, browser-stored passwords are a real liability. No central management, no way to revoke access when someone leaves, no audit trail. safemode IT deploys business-grade password managers for clients across Central Texas as part of managed IT service. If your team is still sharing passwords via email or a spreadsheet, that’s worth fixing.

FAQ

Is exporting passwords to a CSV safe?

Safe to do, risky to mishandle. The file itself is unprotected plain text. Export it, import it, delete it. Don’t let it sit around.

Can I do this from my phone?

Not really. Chrome on Android and Safari on iPhone don’t offer CSV export. You’d need to do it from the desktop browser. For phone-to-phone moves, syncing through your Google or Apple account is the practical answer.

The import says “missing column labels” — what does that mean?

This happens most when importing into Apple’s Passwords app, which expects specific headers: Title, URL, Username, Password, Notes, OTPAuth. If your exported file uses different headers, open it in a spreadsheet app and rename them. Export a single test entry from the Passwords app first to see the exact format it wants.

Browser manager or dedicated manager — which is better?

For one person using one browser on one device, browser storage is fine. Any more complexity than that — multiple browsers, multiple devices, sharing with others — and a dedicated manager is worth the setup. For businesses, browser storage is a security risk with no good justification.

How do I permanently delete the CSV file?

Windows: delete the file → right-click Recycle Bin → Empty Recycle Bin. Mac: Trash it → Finder → Empty Trash. If it was in a cloud folder, log into that service and delete it there too.

My passwords already sync through Google/Apple. Do I even need to do this?

Probably not. Sign into the same account on your new computer and check. The CSV export mainly makes sense if you’re switching browsers, switching accounts, or moving to a standalone password manager.

Need help with a computer migration? safemode IT handles full setups for businesses across Central Texas — new machine configuration, data transfer, account migration, and security. Get in touch and we’ll take care of it.

← Back to Blog
Share: