Passpack upgrades MSP partner programme for EU data

Passpack has upgraded its Managed Service Provider Partner Program, adding EU data residency through its Amsterdam data centre.

The update also introduces a tiered partner model and tools for managed service providers handling credentials across multiple client environments.

Managed service providers, or MSPs, often have technicians working across large numbers of customer systems, leaving them to manage hundreds or thousands of passwords and other privileged credentials. That can create risks around offboarding, access permissions and audit visibility, particularly for providers with distributed teams.

The revised programme includes secure client vaults, technician-level access controls, zero-trust credential sharing and audit logging. Passpack says deployments across client environments can be completed in as little as one day, supported by prebuilt migration templates and onboarding support.

For providers serving customers in Europe, the Amsterdam facility is intended to keep customer data within EU borders, supporting regional data protection requirements including GDPR.

The partner model has been formalised into tiers, with new entrants able to start with free internal use and limited client deployments before a broader rollout. The structure is designed to let MSPs test the service in their own operations and then expand customer use over time.

The commercial changes come as cyber insurers and clients ask service providers for clearer evidence of how sensitive access is controlled. Audit reporting and credential visibility have become a more prominent part of procurement and renewal discussions, especially in sectors with stricter compliance demands.

Market pressure

A broader issue for MSPs is that many password and documentation products were built for single-organisation IT teams rather than businesses serving multiple customers at once. That can leave service providers relying on tools that do not map neatly to technician access, client separation and offboarding controls.

Credential attacks remain a persistent source of breaches, and MSPs are attractive targets because they often hold privileged access into several customer environments. Insurers have also tightened underwriting standards, pushing providers to show verifiable access controls and usable audit trails when seeking or renewing cover.

Passpack is positioning the revised programme for small and mid-sized MSPs, especially those working in compliance-sensitive markets. The package is intended to give those firms a more structured way to manage credential governance for clients while also creating recurring revenue opportunities.

Chris Skipworth outlined the company's view of the gap in the market.

"MSPs need a credential management solution that fits how they actually operate, not a watered-down enterprise tool that creates more complexity than it solves," said Chris Skipworth, Chief Executive Officer, Passpack.

Channel focus

Channel support is another part of the overhaul. The programme includes expanded commercial benefits and is built around a model that lets partners add clients gradually rather than commit to high upfront costs.

Passpack also plans marketplace integration, including Pax8, alongside alliances with cyber insurance and compliance service providers. Those links reflect the way MSPs often buy and bundle software through distribution and ecosystem partners rather than direct vendor relationships alone.

Passpack's product set centres on password management and secure credential sharing. Its platform uses a zero-knowledge architecture, with access reporting and control features intended to help organisations track who has access to what and when actions took place.

For MSPs, the operational challenge is not only storing passwords securely but doing so in a way that preserves separation between customers and limits technician access to the minimum needed for a task. Offboarding is another pressure point, since providers need to show that access has been removed promptly when staff leave or roles change.

The revised partner programme aims to address that with client-specific vaults and more granular access controls tied to technician roles. Audit-ready reporting is meant to provide documentation MSPs can use in client reviews and internal governance processes.

Skipworth said the changes are also meant to address scrutiny from insurers and customers.

"This program upgrade is about giving MSP partners a clear path to value, with faster deployment, better margins, and the kind of credential control that holds up under cyber insurance scrutiny and client audits," said Skipworth.