What do we test?
The test rigorously evaluates an organisation’s ability to securely and effectively perform data sanitisation across a wide range of media and destruction methods. Our in-depth testing framework—developed by ADISA, focuses on both the tools and processes used by service providers, ensuring data is unrecoverable and that compliance with industry standards is verifiable.
Reuse
We test data re-use procedures across storage types including:
Magnetic Hard Drives (HDD)
Solid State Drives (SSD)
Smart Phones & Tablets
Data Tape
Destruction
We test data destruction procedures across the most common storage types including:
Shredding
Degaussing
Other mechanical techniques (e.g., crushing)
Core Test Areas
1. Random Sample Data Recovery
We collect a random sample of processed devices and attempt forensic recovery of data. A pass means no user data can be retrieved—confirming a successful sanitisation.
2. Challenge Drives
We simulate high-risk data scenarios using difficult-to-sanitise drives. These challenges test whether your tools correctly identify and act on hidden risks—or fail silently.
3. Smart Phones & Tablets
We use mobile devices preloaded with known data and evaluate the effectiveness of your sanitisation process, including whether factory resets and forensic tools can still recover information.
4. Networking Equipment
Networking devices like routers can store credentials and logs. We assess whether your sanitisation process thoroughly removes sensitive configurations.
5. Degaussers
We measure the performance of your degaussing hardware using calibrated gauss meters and NSA-standards testing. We also review whether your operational process ensures drives are correctly exposed to the magnetic field.
6. Shredders
We analyse shredder output using Vizion imaging software, comparing the results to ISO/IEC 21964 shred size categories. This determines if your shredder renders data-bearing components (especially NAND chips) unrecoverable.
