Like I said in my other comment, Vaultwarden is probably not something you could set up yourself but it would basically give you the paid featureset of Bitwarden within all the Bitwarden apps and browser plugins at zero cost or whatever hosting it in the cloud would cost you.
Personally I’d rather have my (albeit thoroughly encrypted) password data on hardware that I control than giving it to someone else. Data sovereignty is something you can’t really “buy” into. Whether your company can justify paying a freelancer or some specialist to do the initial setup is a different question which I think can be answered while imagining a worst case scenario of a company like Bitwarden or 1Password getting hacked. Passwords are never stored in plaintext of course but things like personal or credit card data for example can still get compromised when using a readymade subscription.
Interesting that the current version has this bug. I think around the time I started using Vaultwarden as my Bitwarden backend it was also said that the password-sharing should be treated as experimental, but I have had zero issues with it so far. The Web UI might not be super self-explanatory the first time round when it comes to sharing passwords with others but I mean as far as I know this is the work of a single Bitwarden-employee doing this in their free time. And once you have the org set up you don’t have to rely on the Web UI for any of the sharing, transferring, creating and whatnot anymore.
If it is currently impossible to create new Organizations then I’m sure this week-old bug will be resolved fairly soon, probably with the next release.
Either way OP said they’re not tech-savvy so they would probably need to hire someone to set this up for them, which I wouldn’t say is a ludicrous thing to suggest. Even with the level of encryption that this data is stored with you can never go wrong with the data sovereignty that comes with self-hosting. Once you have Vaultwarden in a Docker container with Watchtower updating it regularly it’s zero maintenance as far as I’m concerned.
It’s a completely fair standpoint. You have to look out for your business first. I’m just the sysadmin trying to weigh some counterpoints because I deal with threat aversion and infrastructure hardening on a day-to-day basis.
Once one has a solution that’s at least good enough people will usually stick with that, which is also fair. I know that the decisionmakers who pay my salary can’t have me follow every tech lead where my hourly wage goes to something that’s not a direct moneymaker.