Macworld reader Phil wisely asks how to erase securely the data on old Macs and external drives before sending them off to electronics recycling centers. He asks about hard disk drives (HDDs), solid-state drives (SSDs), and RAM.
We sometimes feel our digital memories are highly transient, given how readily a disk drive crash or broken device makes them irretrievable. But it’s not so: data lingers! Reports regularly emerge of TV news stations or security researchers buying everything from surplus laptops to old photocopiers that used hard drives for storing documents and finding secrets and personal information in huge quantities.
Any qualified electronics recycling center should make some representation about what happens to your data. Some will disclaim all responsibility. Others have specific polices. In the latter case, you might also wonder if they follow those policies or not, so there’s an element of trust (though some have certifications).
However, I’ve discovered that some outfits that handling electronics for disassembly and resale or material recycling also have data-destruction services. You may be able to go to a one-stop shop. One Seattle-era business that offers data destruction, for example, says it uses Department of Defense approved technology and provides a certificate confirming they destroyed your data.
What are your options?
If you’ve been using FileVault 2 from the time you set up your Mac, that encryption is extremely strong, and erasing the drive deletes the passphrase-protected encryption key. That makes the contents effectively irretrievable, and no additional erasure is needed for an SSD or HDD.
If you didn’t use FileVault, here are your options.
Unless you’re dealing with secrets that would lead to the overthrow of governments, using Disk Utility’s secure erase feature meets the mark.
HDDs can also be physically destroyed with a drill equipped with a bit suitable for puncturing the metal casing. A hammer and chisel could work, too. On a visit to a Facebook data center several years ago, I had the pleasure of using one of the HDD-crushing devices they had purchased for this in-house purpose. (Using powerful magnets a consumer could purchase to erase drives by scrambling their contents is no longer considered reliable enough—you need professional-grade equipment.)
If you have a dead HDD and if you think anyone with motivation might pay to have the data recovered, physical destruction is the only way to ensure data isn’t readable.
Data is written in an unpredictable fashion on SSDs to distribute the wear across all the memory cells in the solid-state device. As a result, a secure erase feature doesn’t work at all, as it may not overwrite all the data. (There’s a hardware-level erase function in some SSDs that actually works, but macOS isn’t designed to take advantage of it. It can require a DOS—yes, DOS!—or Linux boot to run the software.)
Physical destruction is really the only course of action, which is an unfortunate waste of technology. And if you have a Mac in which the SSD isn’t removable, but part of the computer, that’s even worse.
The backup company Backblaze notes that an SSD in a drive container has a lot of empty space, and using a drill bit or other techniques can leave chips untouched. They recommend “shredding,” but it requires a special shredded. You can also disassemble the drive and use a hammer on components.
Fortunately, the various kinds of RAMs used by generations of Macs are all volatile memory: the contents disappear instantly or shortly after a device is powered down. So far, there’s no way to recover any traces of data from RAM chips.
You may have read about researchers figuring out how to extract data from RAM on a secured computer, but that’s only the case when the computer is up and running.
Ask Mac 911
We’ve compiled a list of the questions we get asked most frequently along with answers and links to columns: read our super FAQ to see if your question is covered. If not, we’re always looking for new problems to solve! Email yours to email@example.com screen captures as appropriate, and whether you want your full name used. Every question won’t be answered, we don’t reply to email, and we cannot provide direct troubleshooting advice.