10 Key Shifts at Bitwarden: What Users Need to Know

Bitwarden has long been a trusted name in password management, especially after the LastPass exodus. Its open-source code, free tier, and transparent ethos won over millions. But recent months have brought quiet changes at the executive level, in company values, and even in how the product is marketed. While the company insists core principles remain intact, the shifts have left many users uneasy. Here’s a breakdown of the ten most notable changes, what they mean, and why you should care.

1. The Free Tier Isn’t Going Anywhere—For Now

Let’s start with the biggest reassurance: Bitwarden’s free tier remains exactly that—free. In a recent blog post, new CEO Michael Sullivan explicitly stated there’s no plan to adopt a trial model or bait-and-switch approach. He emphasized that the free offering, open-source foundation, and ability to self-host are what set Bitwarden apart. This is critical because competitors like LastPass have eroded trust by limiting free functionality. For now, users can breathe easy, but the fact that this needed to be stated at all hints at underlying anxiety.

2. A CEO Change That Was Kept Under Wraps

In February 2026, longtime CEO Michael Crandell stepped back to an advisory role. Bitwarden made no public announcement—the only clue came from Crandell’s LinkedIn profile. The new CEO is Michael Sullivan, formerly of Acquia and InsightSoftware. His background includes extensive work with private equity firms like Hg, Vista Equity Partners, and TA Associates. For a company that stores sensitive user data, this transition stirred concern about potential profit-driven shifts. The lack of transparency around the change only amplified the unease.

3. The CFO Also Quietly Left

Not long after the CEO shift, Bitwarden’s CFO Stephen Morrison departed in April 2026. His replacement, Michael Shenkman, previously ran InVision. Like the CEO transition, this change was not announced. For a company that prides itself on transparency, these silent departures feel contradictory. While executive changes are normal, the secrecy suggests Bitwarden may be navigating internal turbulence. Users are left wondering: what else hasn’t been shared?

4. Why No Official Announcements?

Bitwarden has built its reputation on being open—both in code and in communication. Yet the CEO, CFO, and values changes were not formally communicated. A company employee admitted on Reddit that the “Always free” tagline removal was a marketing oversight. But the pattern of silent updates erodes trust. If a password manager can’t be transparent about its own leadership, can it be trusted with your secrets? Many in the community feel the silence is deafening.

5. The “Always Free” Tagline Vanished Then Reappeared

For years, Bitwarden’s personal plan page boasted “Always free” on the pricing table. Around mid-April 2026, that phrase disappeared. It wasn’t until after May 14 that it was restored. According to a Bitwarden employee on Reddit, it was an oversight by the marketing team. However, the timing—coinciding with executive changes and the values update—made users suspicious. Is the free tier truly secure, or was this a test balloon? The company has since confirmed the free tier remains, but the incident left a scar.

6. Company Values Got a Quiet Makeover

Bitwarden’s internal culture was defined by the GRIT acronym: Gratitude, Responsibility, Inclusion, and Transparency. That changed silently—the values now are Gratitude, Responsibility, Innovation, and Trust. Using the Wayback Machine, the original GRIT was intact as of March 14, 2026. After that, the page was updated, and even a 2022 blog post by Crandell explaining the values was partially edited. The explanatory paragraph still mentions Inclusion and Transparency. This half-baked change suggests inconsistency, either in decision-making or execution.

7. The Edited Blog Post Tells a Story

The blog post in which Michael Crandell originally laid out GRIT was updated to reflect the new values. But the editing stopped halfway. The top of the post shows the new acronym (Innovation, Trust), while the detailed section still describes Inclusion and Transparency. This sloppiness undermines the message. If Bitwarden can’t maintain coherence in its own communications, what else is half-finished? It’s a small detail, but for a security tool, consistency matters.

8. Sullivan’s Background Raises Eyebrows

Michael Sullivan’s résumé includes stints as CEO of Acquia and InsightSoftware, but the red flag for many is his experience with “all facets of mergers and acquisitions” at private equity firms like Hg, Vista Equity Partners, and TA Associates. Private equity ownership often leads to cost-cutting, monetization of free tiers, or eventual sale. Bitwarden is currently privately held by venture capital and may not be for sale, but such career history makes users nervous. Sullivan has tried to ease fears in his first 100 days blog post, but the concern lingers.

9. A First 100 Days Blog Attempts Damage Control

To address the growing unease, Sullivan published a blog summarizing his first 100 days. He reiterated the company’s commitment to open source, transparency, and the free tier. He ruled out bait-and-switch tactics. However, the blog felt reactive rather than proactive. Users noted it didn’t directly address the silent changes or the pivot in company values. Some view it as a positive step; others see it as a gloss-over. Time will tell if actions match words.

10. The Community Is Watching Closely

Bitwarden’s user base is unusually engaged—thanks to its open-source nature, many developers and privacy advocates rely on it. Forums like r/Bitwarden are buzzing with concern. While the company still operates as it always has, trust is fragile. If Bitwarden’s transparency continues to slip, it risks losing the very community that made it successful. The next few months will be critical: will Sullivan’s promises hold, or will the quiet changes signal a deeper shift?

In an era where every password manager must prove its integrity, Bitwarden’s quiet adjustments are more than noise. They’re a test of whether the company can evolve without sacrificing what made it great. So far, the jury is still out. But for those who switched from LastPass, the stakes have never been higher.