U.K. software developer Elliot Kember, brought attention to Google (GOOG) Chrome’s security policies in a blog posted on Tuesday.

Google Chrome, like many other web browsers, allows users to store their password data with the browser so that it can automatically fill password in for users. The problem lies in how Google protects these password. Google uses an all-or-nothing approach when it comes to dealing with password storage. The passwords are stored as plain text in the web browser. There isn’t any kind of decoding that has to be done, or a master password that needs to be used to see user’s stored passwords, anyone who sits at your computer can learn your passwords. Google says that it relies off of the OS password to protect your information. This means that your user account password for your computer also protect your other passwords. While this has always been how the company handled passwords, its only after this blog post that people learned about these policies, reports Wired.

“Today, go up to somebody non-technical. Ask to borrow their computer. Visitchrome://settings/passwords and click “show” on a few of the rows. See what they have to say.” reads Kember’s blog. “I bet you it won’t be ‘That’s how password management works’.”