Don't Take It Personally
Passwords as a security feature have a well earned, bad rep. I've overtly, watched bank tellers and financial advisers type in their passwords and elicited, at most, a wry smile. The security context for one person may be totally different than that of another, and, overall, the requirement to memorize a handful of passwords for different programs with different security contexts is daunting in the face of all the other attendant demands. If there's not a gun pointing at someone's head, in the form of some sort of dire consequence for failure to comply, then the likelihood is there'll be any number of weak links. OTOH if any one individual is targeted then it's likely their passwords can be had. I routinely use, short lived, passwords of 11 digits, but, at least once a month, in an uncaffeinated daze, I'll logon to a networked box then bring up a web, mailbox requiring little or no security and retype my computer logon password rather than the maybe, 6 digit silly password the mailbox requires and send my logon password over the net unencrypted. If smart, bad guys target you it's likely all the security you can muster won't stand the test.
During WWII, the American author Ernest Hemingway was sharing dinner with a few American Army officers when a German artillery barrage started raining down hard. The Army officers ran for the basement, Hemingway stayed at the table, drinking wine. An officer came back up to coax Hemingway to safety but he steadfastly refused to leave the table, insisting that as long as they're not shooting specifically at you, you were as safe in one spot as another. Hemingway and the officer stayed at the table drinking and debating Hemingway's theory throughout the artillery barrage.