Passwork 7.4 Tightens Enterprise Security with Granular Controls

BARCELONA, Spain – February 16, 2026 – In a significant move to strengthen enterprise data security, Passwork today launched version 7.4 of its self-hosted password management solution. The update introduces a powerful set of restrictive settings for individual User vaults, giving administrators unprecedented control over how sensitive credentials are shared and distributed across an organization. This enhancement directly targets the pervasive security risks associated with shadow IT and uncontrolled data sharing, marking a strategic shift from passive password storage to active credential governance.

At the heart of the 7.4 update is the ability for administrators to centrally disable specific actions within all User vaults. These restrictions can prevent employees from adding other users to their personal vaults, sending passwords directly, or creating temporary password links and shortcuts from their private spaces. By enforcing these policies at a platform level, organizations can effectively funnel all credential sharing through controlled and auditable Company vaults, drastically reducing the risk of accidental data leaks or unauthorized access.

Beyond Password Storage: Controlling Credential Flow

The latest update from Passwork signals a maturing approach to enterprise password management. For years, the primary focus of such tools has been on generating and storing strong, unique passwords. However, as cybersecurity threats evolve, the battleground has shifted to controlling the flow and distribution of these credentials. With over 80% of data breaches linked to compromised passwords, enterprises are under immense pressure to lock down not just the passwords themselves, but the pathways they travel.

Passwork 7.4 addresses this head-on. By restricting actions within User vaults, the platform ensures that personal vaults can be used for their intended purpose—storing individual credentials—without becoming a backdoor for unmonitored sharing of corporate data. For example, an employee can still store passwords in their personal vault, but they can no longer create a temporary link to share a corporate password with an external contractor. That action must now originate from a centrally managed Company vault, where administrators can enforce expiration times and monitor access. This eliminates the dangerous practice of duplicating corporate passwords into personal spaces, ensuring a single, authoritative source for critical credentials.

"With Passwork 7.4, we are addressing critical security gaps that enterprises face in password management," said Alex Muntyan, CEO of Passwork, in a statement. "These updates reflect our commitment to providing organizations with the tools they need to maintain complete control over their sensitive data while simplifying compliance and enhancing operational efficiency."

The Compliance Imperative in a High-Stakes Environment

This move toward granular control is not just a security best practice; it is a business necessity driven by a complex web of data protection regulations. For organizations subject to GDPR, HIPAA, CCPA, or the standards of ISO 27001, proving that they have implemented "appropriate technical and organizational measures" to protect data is paramount. The restrictive features in Passwork 7.4 provide tangible, auditable evidence of such controls.

By preventing uncontrolled credential sharing, the update directly supports the GDPR principles of data minimization and accountability. For healthcare organizations bound by HIPAA, the ability to lock down access to systems containing electronic protected health information (ePHI) is critical. The new controls ensure that access is managed through official channels, with a clear audit trail for every action. This capability is invaluable during security audits, allowing compliance officers to demonstrate that access to sensitive data is strictly governed and monitored.

Passwork's position is further strengthened by its own credentials. The company is ISO 27001 certified and, being based in Europe, has built its platform with GDPR compliance and data sovereignty as core tenets. This provides an additional layer of assurance for organizations, particularly those in Europe, that are looking for partners who understand the intricacies of the local regulatory landscape.

Navigating the Crowded Enterprise Password Market

The enterprise password management (EPM) market is a competitive space, with major players like Keeper Security, Delinea, and LastPass offering robust feature sets. However, Passwork carves out a distinct niche with its focus on self-hosted solutions and now, with its highly specific approach to securing User vaults.

While most EPM solutions provide policies for sharing, Passwork 7.4’s innovation lies in its direct intervention at the personal vault level. This tackles a common blind spot for IT departments: the informal sharing practices that often fly under the radar of broader company-wide policies. For organizations that prioritize data sovereignty, the self-hosted model remains a powerful differentiator, allowing them to keep their most sensitive data—their credentials—entirely within their own infrastructure.

This strategy appears to be paying off. The EPM market is projected to grow substantially over the next decade as businesses continue to digitize and confront escalating cyber threats. Solutions that offer a clear path to mitigating specific, high-risk behaviors while respecting data sovereignty are well-positioned for growth.

Balancing Robust Security with User Productivity

A common concern with implementing tighter security controls is the potential impact on user productivity. If security measures are too cumbersome, employees may resort to workarounds that defeat the purpose of the controls. Passwork appears to have anticipated this, bundling its new security features with a suite of user experience enhancements.

The 7.4 update includes fixes and improvements designed to create a more seamless interface, such as smoother visual transitions and better notification indicators. Furthermore, by centralizing credentials in Company vaults and preventing duplication, the new restrictions can actually improve efficiency. Teams no longer need to wonder which version of a password is correct; there is a single, centrally managed source of truth. This reduces confusion, minimizes errors, and ensures that when a password is changed, the update propagates correctly to all authorized users. Ultimately, the update aims to prove that robust security and operational efficiency are not mutually exclusive goals, but rather two sides of the same coin in a well-managed enterprise environment.