Data Sanitization 5 Common Myths

26 Jan 2021 | Michael Waksman
Screenshot data sanitization men's feet with text myth and fact

Data sanitization is a crucial aspect of information security that should be familiar to all organizations. So why are so many companies still not taking the appropriate measures to permanently remove data from their devices? One reason is the variety of myths surrounding data sanitization. What does data sanitization really mean? What happens when attempts to remove sensitive information is done the wrong way? Companies are easily at risk of not complying with GDPR and other data protection regulations.


To make sure you won’t be fooled by data sanitization myths, we will share 5 of the most common ones. You will likely be familiar with at least at least 1 or 2 of these myths, but it’s never too late to fix the situation by using data wiping software.

What Is Data Sanitization?

Data sanitization is the process of permanently removing or destroying the data stored on a device. After sanitizing the storage media, data will be unrecoverable, even with the assistance of advanced forensic tools. Beyond removing the files and folders, the sanitization process will permanently remove all Data Remanence, or residual traces of the data.

Data Sanitization Myth 1:

Deleting Files Is Enough

The most common piece of misinformation surrounding data sanitization may be the belief that 'deleting' files by normal means is enough to make them disappear for good. When we say 'deleting' files by normal means, we refer to the process of moving files to your Recycle Bin and then emptying it, or simply holding Shift + Del. Although emptying your Recycle Bin seems to make files vanish, this really isn’t the case.

In reality, files that are deleted in these ways remain on your computer and can be retrieved with common file recovery software. This problem exists because of Data Remanence.

Data Sanitization Myth 2:

Formatting Deletes Data Permanently

Formatting a computer’s hard drive is often performed when people want to remove all the information. Unfortunately, formatting a hard drive does not permanently delete its contents. Instead, formatting allows you to perform a fresh installation of an operating system by unlinking all the files in the hard drive’s file system.

So, while formatting your computer makes it seem like your data has been removed, the information will still be stored on your system and can be recovered with file recovery software.

Data Sanitization Myth 3:

Degaussing Works for All Devices

Degaussing is a method of physically destroying data by using a powerful magnetic field that leaves data in an unrecoverable state. It’s true that degaussing can be an effective way of permanently destroying your data, but it doesn’t work on all devices.

In fact, degaussing only works on magnetic storage devices like hard disk drives (HDDs). This is a problem if you want to permanently remove data from a solid-state drive (SSD) – degaussing doesn't work on SSD as data is not stored magnetically. Instead, SSDs use flash memory chips. Degaussing doesn’t work for optical storage devices either.

You should also keep in mind that degaussing modern HDDs can be problematic, as degaussers may have insufficient strength to counteract newer types of magnetic storage media.

Data Sanitization Myth 4:

Physical Destruction Is Always the Best Choice

If your organization has a hard drive that’s no longer needed, a quick Google search will tell you there’s 2 ways of dealing with it securely — wiping its contents with software or physically destroying the drive. In this case, it’s true that both methods can be effective, but that certainly doesn’t mean physical destruction is the best option.

First of all, when you destroy an old hard drive with a hammer – or your preferred tool to smash or burn – you are creating harmful electronic waste that may not agree with your company’s sustainability policy. Taking the path of destruction also rules out the possibility of keeping the hard drive as a handy backup or donating it to someone in your local communityIn addition, burning or smashing your drive destroys the storage media, not the data itself.

Data Sanitization Myth 5:

Data Wiping Is Too Expensive

Some organizations tend to think that securely wiping their vulnerable information is not a worthy investment. While it’s true that effective data wiping is a paid solution, the cost of the software and additional support is very little when compared to the risks of not having reliable data sanitization measures in place.

By failing to securely remove sensitive information, organizations are risking more than their reputation. They face the possibility of data breaches, which can result in paying huge fines for not complying with regulations like GDPR. If anything’s too expensive, it may well be the foolish decision to not invest in data sanitization software.

Now that we’ve separated fact from fiction, there should be no remaining doubts about the importance of data sanitization and how to do it properly. If you want to learn more about securely wiping hard drives clean, check out our ultimate guide and review our 5-step checklist for hardware decommissioning. To get started with Jetico’s secure data wiping solution, begin your free trial of BCWipe today

Ready to learn the 5 most common cybersecurity myths?
Read our blog: 5 Cybersecurity Myths & How to Overcome Them

 

Related Articles

Hardware Decommissioning Process: A 5-Step Checklist
The Ultimate Guide to Deleting Files Permanently

DoD 5220.22-M Explained - Data Erasure Standards
NIST SP 800-88 Guidelines for Media Sanitization Explained
IEEE 2883-2022 Standard for Sanitizing Storage
IRS Publication 4812 & How to Comply with Wiping Standards

How to Delete Files on SSD
How to Wipe an NVMe Drive
How to Wipe an SSD on Windows 11 & 10
How to Wipe a Hard Drive on a Dead Computer

Michael Waksman Jetico CEO bio image
Michael Waksman

Michael Waksman has been serving as CEO of Jetico since 2011, more than doubling the size of the company during his tenure. He brings more than 20 years of communications, technology and leadership experience.

At Jetico, Waksman has lead creation of the corporate identity, raising global brand awareness, building a more commercially-driven team and initiating enterprise customer relations. Jetico has maintained a wide user base throughout the U.S. Defense community, in the global compliance market and for personal privacy.

Waksman served as vice-chairman of the Cyber Group for the Association of Finnish Defense and Aerospace Industries. Recognized as a security and privacy advocate, he is a frequent speaker at international events, occasionally on behalf of the Finnish cyber security industry. In 2012, Waksman was honored with The Security Network's Chairman's Award for fostering collaboration between the United States and Finland. As dual citizen, he is a native New Yorker and has been living in the Helsinki region for over 15 years.

View all blog posts

Thank you for contacting Jetico!
We will respond to you as soon as possible.

Send us a message - we'll reply within 24 business hours.

Need help now? Call Us
US: 202 742 2901 EU: +358 50 339 6388