Lingering Data

ByMike Moffit

A significant concern was brought up after we posted the article Clean Install vs. Deleting Users’ Accounts a few weeks ago. The question as to whether your deleted data can be recovered is something to be aware of, but it’s not necessarily something to worry about. It is a fact that data deleted from your hard drive can possibly be recovered by the appropriate recovery software. For most people, this is not something to worry about, as it takes time and effort to recover deleted data, and depending on how long the data has been removed from the hard drive for, it very well may not be recoverable.

Recovering deleted information is possible because of the process through which the hard drive stores and removes data. All information is stored in binary format: zeros and ones. A directory on the hard drive then points to specific groupings of the binary digits to make up files. When you use Disk Utility to erase a disk, you are emptying the directory. An Apple Support article uses a great analogy of “removing the table of contents from a book but leaving all the other pages intact.” Basically, your data is still present on the hard drive; however, the hard drive ignores the existence of this data, overwriting it as the computer continues to be used. Therefore, the longer the erased data stays stagnant on your hard drive, the less likely it is recoverable.

Disk Utility has a built-in “Secure Erase” option, which allows you to effectively erase a hard drive in such a way that the data almost certainly cannot be recovered. This feature will erase the hard drive normally (removing the directory), and then proceed to write zeros over the data. Every pass of zeros written over that data makes the recovery process that much harder. In reference to the aforementioned article written a few weeks back, Lion now has a “Secure Erase” option when removing user accounts. This performs the same function, but only to the removed user account/home folder.

It’s always a good idea to consider the option of securely erasing your data, depending on the situation. Whether you have extremely sensitive personal data, or are selling your computer to a complete stranger, it’s nice to have the option of extra security.

Note from Matt: The only way to be completely sure your data is unrecoverable is to physically smash the device into small pieces. Following the suggestions outlined here is fine for 99% of users, however.

Similar Posts

  • Failure to Boot…Camp

    To give a little background before launching into this article: I am a junior technician compared to some here at Small Dog Electronics….

  • Why Did My Hard Drive Die?

    The old adage says there are only two certainties in life: death and taxes. I’d like to add a third: hard drives die….

  • Making a Bootable Lion Installer

    Unlike its predecessors, Lion is primarily a download-only version of Mac OS. You can purchase a preloaded flash drive from Apple, but it’s…

  • Backing Up vs Data Recovery Costs

    One of the toughest things a technician has to do is tell customers that their hard drive has failed and recovering the data will likely cost thousands of dollars. A Small Dog customer brought in her 24-inch iMac earlier this month because it would not start up. It was on the bench and diagnosed as a failed hard drive a few hours later, and we contacted her with a few options: replace the hard drive under warranty and return the failed drive to Apple, or send the drive to DriveSavers for professional recovery.

    DriveSavers is widely acknowledged as the most capable and best-equipped data recovery firm in the world, and our customer was happy to receive an external hard drive with 100% of her data mere days after sending in the toasted one. She was not happy about the bill, though, which was more than the cost of her computer!

    We spoke at length on the phone about how all hard drives fail eventually and how she needs to have a backup system in place. She clearly understood what I was saying, and I made it clear that our conversation was not really about sales but about her protection. No backup drive was purchased.

    Three weeks later, the warranty hard drive replacement has failed again. She didn’t back it up and has lost three weeks of work and simply cannot afford the pricey recovery again.

    David Lerner, an owner of the preeminent New York City Apple Specialist and repair shop Tekserve, has in his email signature “May you have 1,000 backups and never need one.” It’s a mantra we all should take seriously.

    This is just one more sad story about 100% preventable data loss. Do yourself a favor and get a Time Capsule, an external drive, even email important documents to yourself or stash them on your iDisk. A $200 Time Capsule is much cheaper than a $2200 data recovery!

    Do yourself a favor… (be sure to click the green links on the product page to view all specials)
    Time Capsule 500GB from $199.99
    Time Capsule 1TB from $349.99

  • Why Do Logic Boards Fail?

    One of the most common questions I receive as a technician is “why did [x,y,z] part fail, I mean, I take great care…