Second-hand electronics may pose security risks

Care for personal data is a constant concern for those who live online 2023, according to data from the annual survey ICT Households, there are already 84% of Brazilians. Electronic devices such as smartphones, laptops and cable TV set-top boxes store sensitive information of users, which raises questions about the security of this data during the reconditioning process so that the device finds a new owner.

A Gartner study published in 2021 identified data security as a major concern in refurbished devices, pointing out that up to 40% of second-hand smartphones contained malware or previous user data. Several other studies and reports confirm the existence of security risks in refurbished devices.This is the case of research by the University of Glasgow in 2019, which found that 21% of the refurbished iPhones tested contained malware; and a BBC report in 2020, pointing out that some restored laptops came with pre-installed spy software.

Carlos Tanaka, CEO of PostalGow, a leading logistics solutions company specialized in the telecommunications segment, highlights the importance of strict security protocols.“It is critical that companies implement solid measures to ensure that customer data is completely removed before re-placing a device on the market”, he says.

The importance of strict procedures

Electronic devices, when collected for maintenance or reconditioning, may contain a variety of personal information such as consumption data, usage preferences, passwords and payment records.The absence of an efficient data management policy can result in privacy violations, with the leakage of financial records, intimate photos and highly sensitive professional documents.

To ensure data security, it is essential to adopt strict cleaning procedures, including the use of specific software for the complete removal of information. In addition, the implementation of encryption practices during the transport and temporary storage of devices can prevent unauthorized access.

Security policies in reconditioning companies

Companies dealing with electronic device refurbishment should adopt security policies that include regular audits and ongoing employee training.The implementation of market-recognized certifications such as ISO 27001 can ensure compliance with international information security standards.

Carlos Tanaka concludes by reinforcing that consumers have the right to demand transparency when purchasing a second-hand device.“Protecting customer data is a responsibility that must be treated with the utmost seriousness.This needs to be clear to customers, at the risk of jeopardizing the reputation of the service and company”, warns the expert.