For sites such as this, I use basic passwords (simple names with a few digits chucked in). Easily remembered, though I let Chrome remember them all. There's minimal risk.
More data-secure sites I use "dinghies I have owned" (can't forget things like that: name and sail number, pretty much unguessable. Or "lines from books". I've had more than a few people look at me when I casually type in a thirty-letter password. Easy to recall, very hard to guess.
When my father died a couple of years ago, I found myself in front of his PC, trying to guess his password to unlock/refund his Paypal cash to my Mum's account. It took less than a minute: he was a radio amateur, I knew his call sign.
Bottom line is: IF someone is going to steal info about you, they will do it. Making it slightly harder than the average password means that the 'low hanging fruit' will be picked first. I'd never trust to a password manager, as those systems must be targetted (bigger potential gains) much more often than mere individuals.
Andy