HELP FILE

What other data does LastPass handle?

Security and privacy are the foundation of our business. Listed below are some features and settings that LastPass uses to deliver a best-in-class product which users may have additional questions. All user data collected by LastPass is stored using best-in-class security and procedures, and when used by LastPass in the course of delivering our service, is done so in an aggregated way that does not put our users at risk. We are always evaluating how we can make LastPass even more secure, and strive to make sure we are as sensitive and careful about user privacy as possible.

Account History

LastPass provides account history as a security feature for our users, should they want to stay alert to any unusual activity or unauthorized actions in their LastPass account. The LastPass Customer Care team may also use this information to investigate reports of unauthorized access and locked accounts.

You can review your account history by doing the following:

  1. Log in to LastPass and access your Vault by doing either of the following:
    • Go to https://lastpass.com/?ac=1 and log in with your username and Master Password.
    • In your web browser toolbar, click the LastPass icon LastPass then click Open My Vault.
  2. Select More Options in the left navigation.
  3. Go to Advanced > History.
  4. Select your desired date range.
  5. Select the radio button for either Logins or Events.
  6. Click Submit to view the report.

You can manage your account history settings by doing the following:

  1. Log in to LastPass and access your Vault by doing either of the following:
    • Go to https://lastpass.com/?ac=1 and log in with your username and Master Password.
    • In your web browser toolbar, click the LastPass icon LastPass then click Open My Vault.
  2. Select Account Settings in the left navigation.
  3. Click Show Advanced Settings.
  4. Under Privacy, check the box to enable the Track History option.
  5. Click Update, then enter your Master Password and click Confirm to save your changes.

Note: If you have a LastPass Teams, Enterprise, or Identity account, the ability to perform these actions may be limited or prohibited due to policies enabled by your LastPass admin.

Site URLs

LastPass has access to site URLs (e.g. google.com) and the number of items stored in your Vault. This information serves two important purposes:

  • This data is aggregated across all users to give us a better understanding of how LastPass is being used and how to optimize the product so that it best meets the needs of our users.
  • LastPass uses the URL data to accurately deliver website logos in your Vault, which provides easier navigation and an overall better user experience.

Protecting Private Information

As with all LastPass data, the above information is securely synced to LastPass servers. We use firewalls, secure transfer protocols, and industry-standard practices to protect the servers and service, as well as regular third-party audits for outside review and validation of our security and privacy measures. Any other personally identifiable Vault Data (e.g., usernames, passwords, information in notes, name of entries, values for form fields) is encrypted using our local-only encryption model, in which LastPass never knows your Master Password and never has access to personal information stored in your Vault.

For more information LastPass security, please see the LastPass Technical Whitepaper.

For more information about privacy, please view LogMeIn's Privacy statement at https://www.logmeininc.com/legal/privacy.

Related

Where is my LastPass Vault data stored locally on my computer?

How do I export my LastPass Vault data?

Where is my LastPass Enterprise Vault Data stored?