You upgraded your office tech, cleared out the old equipment, and assumed everything was safely handled. The hard drives are out of sight, and the devices seemed worthless—broken, outdated, or no longer useful. It felt like the risk was gone. In reality, unless those machines were physically destroyed, the data they held may still be accessible. Many businesses don’t realize how easily discarded devices can lead to a breach. Even non-functioning computers can contain sensitive information, and data thieves know exactly where to look.
When it’s time to upgrade your tech, how can you safely get rid of the old stuff? For most companies, their IT department is good enough. Back up and transfer your data, do a factory reset, and toss the device into the dumpster. But actually, by doing this, you aren’t just being environmentally irresponsible, you’re putting your business at risk of a data breach.
Is Dumpster Diving for Data a Real Thing?
“Come on. No one is dumpster diving for my old laptop/tablet/desktop. It barely works, it’s out of date, I took out the battery, and it’s basically a brick. Who would want it?”
A data thief would.
Any asset that even has the possibility of being sold – and that includes the data on an old machine – has at least some value. And if it has value, a data thief will go to extreme measures to get it. Even if you think an old laptop or desktop is completely broken, the hard drive could still have enough data to cause serious complications.
The fact is that most machines that are tossed into dumpsters for disposal haven’t been checked for thorough data deletion. Sometimes because the one disposing of the machine doesn’t think it’s necessary (who would go through all that trouble?), sometimes because the machine is broken (this laptop is waterlogged and won’t even turn on so we can wipe it. It’s clearly not a risk), and sometimes it’s because everyone assumed that someone else took care of deleting the data.
What if I Wiped It?
Many people think that as long as they’ve transferred all their data to their new machine, they can “wipe” the old machine and it’s no longer a risk. However, what most people think of as wiping a laptop, desktop, or other machine that once held your data, isn’t actually getting rid of everything that was ever on the machine. A factory reset, which reinstalled your operating system and removes all personal data, looks like enough. But if someone is willing to dumpster dive in the hopes of recovering data, they are often sophisticated enough at using specialized tools to be able to recover some lingering data. A factory reset doesn’t guarantee complete irreversible data deletion, even though it may look like it to most users.
The Thief Could Be Someone You Know
You don’t want to accuse your employees of theft. But some employees will help themselves to equipment you are throwing away. They might rationalize that if you only deem it “dumpster worthy”, it’s not theft. Sometimes it’s innocent – and sometimes it’s not. A machine that’s not valuable to you and your company might be valuable to someone else – someone with time, software, and the expertise to see just how effective you were at getting rid of your personal data.
The moral of the story?
-One old computer can cost your company significantly in a data breach.
What Should We Do Instead?
The best thing you can do when you are ready to get rid of old equipment that once held valuable data is to use a certified data destruction company. These companies have a thorough and complete process that includes:
- Tracking your device through a chain of custody so you know exactly where it is in the process and who is handling it.
- Removing any toxic components unsuitable for recycling.
- Shredding and crushing the device so the data is irretrievable.
There are a lot of companies who claim to be electronic recyclers, but since data destruction certification is not mandatory, only a small percentage actually have the standards and means to do it right.
Most of us don’t think about how to thoroughly protect our data after disposal because we’re generally good people who would never dream of dumpster diving in the hopes of finding enough usable data to go through the work of recovering it to sell it on the dark web. But those people exist, and your trust is how they operate. No matter the condition of the machine you are getting rid of, make the investment to protect yourself and your company from an expensive mistake.
Every year, millions of computers and office machines are discarded—many of them still containing sensitive personal and business information. Studies show that a significant number of people fail to properly erase data before disposal, increasing the risk of identity theft, data breaches, and unauthorized access. As workplaces upgrade their technology, the volume of improperly handled electronic waste continues to grow. Taking responsibility for secure disposal is one way to lessen your company’s environmental impact. If you’re unsure how to securely dispose of your old equipment—or if your business needs a certified shredding provider—AccuShred is here to help. Contact us today to safeguard your information.