Australia's Leading SSD Destruction Specialists
Blancco EAL4+ Certified
SSD Destruction Sydney: Why Solid State Drives Need Different Treatment
Blancco Certified
Australian ISM Compliant
NIST 800-88 Compliant
ISO 27001 Certified
ISO/IEC 27001:2022
Information Security Management
ISO 45001:2018
Occupational Health and Safety Management
ISO 9001:2015
Quality Management Systems
ISO 14001:2015
Environmental Management
SSD destruction requires different methods than traditional hard drive destruction because solid-state drives store data on NAND flash memory cells that cannot be reliably overwritten using software-only techniques. ITC Asset Management provides certified SSD destruction across Sydney with SSD-specific physical shredding that reduces drives to particles below 30mm to satisfy IEEE 2883-2022 and NIST 800-88 Destroy, optional crypto-erase verification, and serialised Certificates of Destruction signed under our ISO/IEC 27001:2022 certified Information Security Management System. We handle SATA, SAS, NVMe, M.2, and U.2 SSDs from laptops, workstations, servers, and data centre arrays, with on-site witnessed destruction available for classified or highly confidential workloads.
Why SSDs Require Different Destruction Methods
Solid-state drives are fundamentally different from traditional hard drives. The destruction techniques that work for spinning HDDs do not reliably destroy data on SSDs.
SSDs store data on NAND flash memory cells arranged across multiple chips. Three properties of this architecture mean SSD data cannot be reliably destroyed by software-only methods:
Wear levelling distributes writes across the entire drive to extend its lifespan. When an operating system asks to overwrite a specific block, the SSD controller may write to a different physical location and mark the old one for later garbage collection. Software overwrites cannot guarantee they reach every cell.
Over-provisioning reserves between 7 and 28 percent of total NAND capacity as a hidden pool, invisible to the operating system. Standard overwrite utilities never see this reserved space, leaving fragments of original data behind.
Remapping permanently retires cells that fail or wear out. The data in retired cells remains physically present on the chip but is inaccessible to the controller, and therefore to any software trying to overwrite it.
The technically correct path for high-assurance SSD sanitisation is physical destruction of the NAND chips themselves through SSD-specific shredders that reduce drives to particles small enough that individual memory cells are physically destroyed.
HDD vs SSD: How Destruction Methods Must Differ
A side-by-side reference for the technical differences that drive method selection.
| Aspect | Traditional HDD | Modern SSD |
|---|---|---|
| Storage medium | Magnetic platters | NAND flash memory cells on silicon |
| Overwrite reliability | Reliable when verified per sector | Unreliable due to wear levelling and over-provisioning |
| Degaussing effectiveness | Effective at neutralising magnetic data | Ineffective because SSDs are not magnetic |
| Recommended destruction | NIST 800-88 Destroy by shredding to particles below 30mm | IEEE 2883-2022 with SSD-specific shredders reducing drives to fine particles destroying individual NAND cells |
| Software wipe standard | NIST 800-88 Purge using verified single-pass overwrite | NIST 800-88 Purge using ATA Sanitize, NVMe Format, or built-in crypto-erase where supported and verified |
| Verification method | Per-sector read-back verification | Manufacturer sanitise command status, then physical destruction for high-assurance jobs |
| Hidden data areas | HPA and DCO can be addressed and overwritten | Over-provisioned cells and retired blocks remain inaccessible to overwrite tools |
| Cost per drive (destruction) | Standard shredding rates apply | SSD-specific shredders cost more per drive due to slower throughput and finer particle requirement |
All SSD Types and Form Factors We Destroy
From consumer laptop drives to enterprise data centre arrays.
2.5-inch SATA SSDs
Standard SATA SSDs from laptops, desktops, and entry-level servers. Most common form factor in business refresh programmes.
M.2 NVMe SSDs
M.2 form factor NVMe drives common in modern laptops and workstations. PCIe-attached, much higher throughput than SATA.
M.2 SATA SSDs
M.2 form factor SATA drives in older or budget laptops and small form factor desktops.
U.2 NVMe SSDs
Enterprise 2.5-inch NVMe drives used in storage arrays, hyperconverged infrastructure, and high-performance database servers.
Enterprise SAS SSDs
SAS interface SSDs used in enterprise storage arrays where SAS reliability features matter. Common in legacy enterprise refresh.
PCIe Add-in Cards
Full-height and half-height PCIe SSDs from servers, including older Fusion-io and similar high-performance cards.
mSATA and Older Formats
mSATA SSDs from older laptops and embedded systems. Less common today but still encountered in legacy refresh programmes.
USB and Thumb Drives
Flash memory USB drives, thumb drives, and SD cards. Same NAND architecture, same physical destruction requirement.
Our SSD Destruction Process
Designed for the documentation depth your auditors, security team, and customers will expect.
Scoping
SSD quantities, types, classification level, witness requirements, and turnaround confirmed in writing.
Secure Collection
Police-checked ITC employees in branded vehicles with lockable bins. Signed manifest at handover.
Serial Logging
Every SSD logged by serial number on receipt at our facility or on-site. Pre-destruction photo evidence per drive.
Optional Crypto-Erase
For self-encrypting drives, manufacturer crypto-erase command issued and verification status logged before physical destruction.
Physical Destruction
SSD-specific shredder reduces drives to particles below 30mm satisfying IEEE 2883-2022 and NIST 800-88 Destroy.
Post-Destruction Evidence
Post-shred photo evidence per serial number. Reconciliation against the original manifest.
Serialised Certificate
Certificate of Destruction listing each SSD by serial number, destruction method, and particle size achieved, signed under our certified ISMS.
Material Recovery
Destroyed material streamed to certified processors aligned with AS 5377:2013. Zero landfill outcome.
Compliance Standards Our SSD Destruction Meets
The standards your auditors, regulators, and information security officers will reference.
| Standard | Coverage |
|---|---|
| IEEE 2883-2022 | IEEE Standard for Sanitising Storage. The current technical reference for SSD and flash storage destruction, addressing limitations in earlier standards that were written before flash storage dominated. Our particle size and methodology satisfy IEEE 2883 Destroy. |
| NIST 800-88 Rev 1 | US National Institute of Standards and Technology guidelines for media sanitisation. Our physical destruction satisfies the Destroy method; crypto-erase and NVMe Format satisfy Purge where the drive supports it. |
| ISO/IEC 27001:2022 | Information Security Management System certification. Our full SSD destruction workflow operates within a certified ISMS, providing third-party assurance counterparties require. |
| Privacy Act 1988 (APP 11.2) | Obliges Australian organisations to take reasonable steps to destroy or de-identify personal information no longer needed. Serialised Certificates of Destruction provide OAIC Notifiable Data Breaches scheme defensibility for SSD-stored personal information. |
| APRA CPS 234 and CPS 230 | For APRA-regulated entities, our destruction documentation supports CPS 234 information security control attestation and CPS 230 operational risk management service provider oversight requirements. |
| AS/NZS 5377:2013 | Australian Standard for collection, storage, transport, and treatment of end-of-life electrical and electronic equipment. Destroyed SSD material streamed to certified downstream processors per AS 5377. |
| NAID AAA Process Alignment | Our operational practices align with NAID AAA Certification process requirements covering chain of custody, employee screening, and destruction protocols. |
Who Uses Our SSD Destruction Service
Sectors where modern hardware combined with regulatory obligation makes SSD-specific destruction the only defensible path.
Financial Services
Banks and insurers with all-flash storage arrays in their data centres and SSD-equipped staff laptops carrying customer data. APRA CPS 234 documentation requirement.
Government Agencies
Federal and NSW state agencies where ISM media sanitisation guidance for SSDs and PSPF information classification handling require physical destruction for PROTECTED and above.
Healthcare
Hospitals, Local Health Districts, and medical research running modern SSD-equipped clinical workstations and imaging systems. Privacy Act and My Health Records Act compliance.
Data Centre Decommissions
All-flash arrays from hyperconverged infrastructure exits, cloud migrations, and bulk SSD turnover from server refresh programmes. Combined on-site and off-site capability.
Legal and Professional Services
Law firms running SSD-equipped fleet laptops carrying privileged client information. Legal professional privilege obligations make verified destruction critical.
Modern Business IT Refresh
Any organisation refreshing post-2018 laptop fleets where SSDs are now the default. Standard refresh programmes increasingly mean SSD destruction is the default scope.
Sydney SSD Destruction Coverage
Our SSD destruction service operates across Greater Sydney from our certified North Rocks facility, with on-site service available at your premises.
Regular collection corridors include Sydney CBD (Barangaroo, Martin Place, Bligh Street, Pitt Street financial precinct), North Sydney, Parramatta and the Westmead health precinct, Chatswood and St Leonards, Macquarie Park tech corridor, and the Alexandria and Mascot data centre belt.
SSD destruction is often delivered as part of a broader IT asset disposal programme alongside hard drive shredding for mixed-media fleets. Witnessed on-site destruction available for classified or highly confidential SSD workloads.
What Sydney Clients Say
Verified 5-star reviews from our Google Business Profile.
Really impressed with this service. Was recommended to us by our IT supplier and could not be happier. Communication was excellent throughout the process. Pick up was arranged quickly and happened as promised. Destruction certificates provided as promised and never needed to chase. Would highly recommend.
Amazing service from ITC Asset Management. Naomi was very clear and concise with the cost and the service. Rohit who picked up our depreciated IT assets was so efficient in his work and showed high level of professionalism. Thanks again.
Choosing ITC Asset Management was clearly the right choice. I needed an e-Waste provider that was ISO certified and they were able to assist with all of my requirements.
I contacted ITC through their website and was contacted back within minutes. I was given really detailed information on their process which helped me decide that they would be right for the job. I was able to book my e-Waste collection within the dates that I requested and the gentlemen who attended my office were lovely and helpful.
Collect the POS system and provided the reports promptly.
Quick response to emails, turned up on time and took everything away with no fuss.
SSD Destruction Sydney: Frequently Asked Questions
Why can't SSDs be reliably wiped with software like Blancco?
Software wipes can be effective on SSDs when the drive supports NIST 800-88 Purge commands such as ATA Sanitize, NVMe Format with Cryptographic Erase, or built-in crypto-erase, AND the command completion is verified. Where these commands are not supported, or where the verification cannot be performed, software wipes are unreliable because of three SSD architectural features: wear levelling spreads writes across the drive so overwrites cannot guarantee they reach every cell, over-provisioning hides 7 to 28 percent of the drive from the operating system, and remapped cells retain original data in physically inaccessible locations. For high-assurance jobs, physical destruction is the only fully defensible path.
What is IEEE 2883 and why does it matter for SSDs?
IEEE 2883-2022 is the IEEE Standard for Sanitising Storage, published to address gaps in older standards that were written before flash storage dominated. It provides specific technical guidance on SSD destruction methods including required particle sizes, crypto-erase verification, and chain of custody requirements. Modern auditors and security teams increasingly require IEEE 2883 alignment specifically for SSD destruction because earlier standards like the original NIST 800-88 did not fully address flash storage limitations. Our SSD destruction process satisfies IEEE 2883 Destroy requirements through SSD-specific shredders that produce particles below 30mm.
What is crypto-erase and when do you use it?
Crypto-erase, also called cryptographic erasure, is a sanitisation method available on self-encrypting drives. The drive uses internal encryption to scramble all stored data; crypto-erase destroys the encryption key, rendering all data on the drive cryptographically inaccessible. NIST 800-88 recognises crypto-erase as a valid Purge method when properly implemented and verified. We offer crypto-erase as an option for self-encrypting SSDs, typically paired with physical destruction for high-assurance jobs to provide defence in depth.
What particle size do you achieve on SSDs?
Our SSD-specific shredders reduce drives to particles below 30mm, satisfying IEEE 2883-2022 and NIST 800-88 Destroy requirements for SSDs. For very high-assurance jobs we can specify finer particle sizes on request. Pre-destruction and post-destruction photo evidence is captured per drive serial number and reconciled to the Certificate of Destruction.
Can you destroy NVMe and M.2 SSDs?
Yes. NVMe, M.2, U.2, mSATA, and PCIe add-in card SSDs are all processed through our SSD-specific shredding equipment. Form factor does not change the destruction process; the underlying NAND flash architecture is what determines methodology. Mixed-format jobs are handled in a single workflow with consistent serialised documentation across all drives.
Is on-site SSD destruction available in Sydney?
Yes. Witnessed on-site SSD destruction is available across Greater Sydney for classified or highly confidential workloads. Our mobile shredder is deployed to your premises, your nominated witness observes every drive being destroyed, and a same-day Certificate of Destruction is signed before our team leaves the building. Standard scope for PROTECTED-classified government work and high-assurance financial services jobs.
What documentation do I get?
Standard documentation includes: a signed asset manifest at collection, serialised Certificate of Destruction listing every SSD by serial number with destruction method and particle size, pre-destruction and post-destruction photo evidence per serial, Certificate of Recycling for downstream material recovery, and an asset disposition report. For regulated industries we can format the disposition report to match APRA, OAIC, or agency internal audit submission requirements.
How fast can you destroy our SSDs?
Standard Sydney metropolitan collections are scheduled within 3 to 5 business days from quote acceptance. Urgent response is typically available within 1 to 2 business days for regulator-driven deadlines, security incidents, or M&A confidentiality work. Throughput on our SSD shredder is approximately 100 to 200 SSDs per hour depending on form factor; a typical 100-drive job is destroyed and certified within 2 to 3 hours of arrival at our facility or your site.
What happens to the destroyed SSD material?
Shredded SSD material is transported to certified downstream processors aligned with AS/NZS 5377:2013. Material recovery focuses on the metals, plastics, and rare earth elements in the drive PCB and casing. Zero landfill outcome guaranteed. The disposition report links each device serial number to its destruction event and material recovery stream for full closed-loop accountability.
Do you destroy SSDs from data centre arrays?
Yes. Enterprise SSDs from all-flash arrays, hyperconverged infrastructure, and storage area networks are part of our standard scope. Bulk drive volumes from data centre decommission programmes are common scope; we coordinate logistics, chain of custody, and consolidated disposition reporting at the array level so your records align with the array serial numbers your asset register references.
Book SSD Destruction in Sydney
Get a no-obligation quote for certified SSD destruction satisfying IEEE 2883-2022 and NIST 800-88. On-site or off-site, with serialised Certificate of Destruction. We respond within one business day.