How to Securely Erase an SSD Before Sale or Disposal

Knowing how to securely erase your SSD is essential if you plan to sell, recycle, or repurpose your old drive. Standard methods like deleting files or running a quick format still leave data behind that can be recovered. A proper secure erase process ensures your information is completely removed, and the SSD is ready for safe reuse. In this guide, we’ll cover trusted methods for Windows 11, including Kingston SSD Manager and BIOS / UEFI.

Disclaimer: The information in this article is intended for general guidance only and should not be considered technical or professional advice. While we make every effort to keep the content accurate and up to date at the time of publication, we cannot guarantee its completeness or accuracy.
Before taking any action based on this information, please consider your specific circumstances and seek professional advice if needed. Kingston cannot accept responsibility for any loss or damage resulting from reliance on the information in this article.
Any links to third-party resources are provided for your convenience and do not mean Kingston endorses or is responsible for their content. Please note that the information in this article may change without notice.

What is SSD secure erase and is SSD formatting enough?

Most people assume that formatting an SSD will wipe everything, but that’s not the case. A quick format simply removes the file table, not the actual data. In many cases, recovery tools can bring that information back. That’s where “secure erase” comes in.

Unlike a simple format, a secure erase tells the SSD to reset all its storage cells, permanently clearing your data. Think of it like wiping a whiteboard with cleaner instead of just erasing the writing with your hand, one looks gone, but the other makes sure it’s truly clean.

Format vs wipe vs factory reset SSD

Formatting, wiping, and factory resets all sound similar, but they’re not equal. Formatting is quick and doesn’t guarantee security. A factory reset often just reinstalls the operating system, leaving personal files behind. Wiping with generic tools may help on a hard drive but can damage an SSD’s lifespan. Secure erase is different: it uses the SSD’s built-in commands to fully reset the drive in a way that protects both your privacy and the health of the SSD.

Common misconceptions when erasing SSDs

Not all methods of wiping a drive are effective for SSDs. Some approaches that worked for older HDDs either leave sensitive data behind or cause unnecessary wear to flash memory. Here are the main ones and why you should avoid them:

Quick formatting removes all data

A quick format only clears the file allocation table, meaning the underlying data is still present on the disk. Recovery tools, even free ones, can often restore files after a format, making this unsafe for resale or disposal.

Deleting partitions wipes everything

Removing a partition might make the SSD appear empty, but the files remain recoverable. This method does nothing to erase or overwrite the actual storage cells.

Multiple overwrite passes works the same as on HDDs

With older hard drives (HDDs), overwriting the entire disk multiple times was the standard way to securely erase data. Because HDDs store information magnetically, each overwrite physically replaces the old data, making recovery almost impossible. So, if you are upgrading from an HDD to an SSD, this method is still a safe way to prepare the drive for resale or disposal.

However, this same approach doesn’t translate to SSDs. Due to wear levelling, data isn’t always stored in the same physical cells, so multiple overwrites can leave fragments behind. It also creates unnecessary write cycles that shorten the SSD’s lifespan. For solid-state storage, a secure erase command, whether it's manufacturer tools or BIOS/UEFI options, is the correct and more reliable option.

Assuming TRIM guarantees full data removal

TRIM / NVMe DSM allows the host to send an advisory command to the SSD controller to inform it that blocks are no longer in use. It’s up to the drive firmware to clean those blocks later with garbage collection, which runs at the controller’s discretion during idle time.

This means data persistence is an unknown variable dependent on controller’s garbage collection implementation, meaning data can persist for an unknown amount of time before being permanently removed.

Checklist before you erase an SSD

Before starting the erase process, make sure your drive is ready to ensure that nothing important is lost when you erase the SSD:

• Back up your files: You can clone your old SSD, or simply move any documents, photos, or applications you want to keep to a USB flash drive or external hard drive. If your SSD is encrypted, note down any passwords or keys you might need later.
• Ensure stable power: If erasing a system disk, keep your computer connected to power during the process.
• Confirm the type of drive: Check if you’re working with a SATA SSD or a NVMe SSD. Some erase methods only apply to specific types of drives.
• Identify the correct drive: Double-check the model and capacity so you don’t accidentally erase the wrong disk.
• Administrator privileges: Make sure you have administrator privileges, or if you don’t, ask the administrator to grant you access.
• Understand it’s permanent: Once complete, the secure erase cannot be undone. This is because a secure erase permanently resets the SSD's memory cells to their factory state, effectively overwriting all existing data.

Best ways to wipe an SSD without affecting its health

The safest way to wipe a SATA SSD is to use the tools designed for it. Most large SSD manufacturers provide free utilities, like Kingston SSD manager that take you through a secure erase in just a few clicks. The key here is to use the method intended for your specific drive, so you don’t shorten its life.

How does Kingston’s secure erase tool actually work?

Kingston’s secure erase tool works by issuing the ATA Secure Erase command directly to the SSD’s controller, which instructs the drive to internally wipe all user-accessible data areas. Instead of overwriting files from the operating system level, the command triggers the controller’s built-in firmware routine to clear the flash translation layer and reset the NAND to a fresh state.

This process is handled entirely within the drive, runs at the drive’s native speed, and restores the SSD to its original factory-default condition, making previous data unrecoverable. Here is how to do it:

1. Download the correct version of Kingston SSD Manager for your SATA SSD from Kingston’s support page.
2. Install the software and run it with administrator privileges.
3. Open Kingston SSD Manager and select your SATA SSD from the list (NVMe is not supported).
4. Navigate to the Security tab.
5. Under ATA Security, click the Secure Erase button.
6. You’ll be prompted with a warning about permanent data loss. Enter the last 4 digits of your SSD’s serial number to confirm.
7. Click Perform Erase and wait for the process to complete. A success message will appear once finished.

Note: The secure erase may take a few minutes to complete. Once complete, you will see a message stating “the secure erase completed successfully” so hold back and wait till the process is done.

BIOS/UEFI secure erase feature (advanced)

Many modern motherboards include a secure erase feature in their BIOS or UEFI settings.

1. Restart your computer and press the key for BIOS/UEFI setup (usually Del, F2, or F12).
2. Wait for the BIOS/UEFI to load, then locate either the storage, security or maintenance section.
3. Look for a Secure Erase option and select the SSD that you want to secure erase.
4. Confirm the erase process, then make sure your computer maintains stable power throughout the process.
5. Wait for the process to finish, and once it’s finished, restart your system.

How to erase NVMe SSD using nvme-cli (advanced)

NVMe drives need a different approach to secure erase than SATA SSDs because they use a different command set. While SATA relies on ATA Secure Erase, NVMe drives use built-in commands like NVMe Format and NVMe Sanitize that are designed specifically for their high-speed, parallel architecture.

These commands can wipe the entire drive efficiently, often by destroying the encryption key or issuing a controller-level erase, which ensures your data is unrecoverable without putting unnecessary wear on the SSD. To do this, the best approach is a bootable Linux distribution with nvme-cli, and the user data erase flag to properly secure an NVMe drive:

1. Download a Linux distribution iso of your choice, we recommend Ubuntu 22.04.
2. Burn the iso to a USB 3.0 (or faster) using rufus.
3. Insert the USB drive in your computer and restart your computer. Then enter Bios/UEFI and set the boot option to the USB drive and boot into the Linux distribution.
4. To install nvme-cli use this command: sudo apt update –y && sudo apt install nvme-cli -y
5. List the NVMe drives in your system using command: sudo nvme to list and identify your target drive for erasure.
6. Run the secure erase command on the NVMe drive you want to wipe: sudo nvme format /dev/nvmeXn1 --ses=1. Replace /dev/nvmeXn1 with your drive’s identifier from the list in step 5.

Disclaimer: Kingston is not responsible for any potential issues that may arise from following the above steps. If a drive becomes non-functional as a result of these actions, it may not be covered under your SSD’s warranty.

Other methods for securely erasing SSDs

There are other methods for those who prefer third-party tools. Software like Parted Magic. Parted Magic Live CD, it’s a custom Linux bootable that allows multiple format options such as ATA Secure Erase or NVMe Format in GUI form with few clicks.

And if you have a self-encrypting SSD, a cryptographic erase, basically deleting the encryption key, can instantly make all data unreadable. These approaches are more technical but are worth knowing about if you want absolute control.

What is cryptographic erase or crypto-erase?

Cryptographic erase, or crypto-erase, is a way to securely wipe an SSD by removing or replacing the drive’s encryption key instead of overwriting the data itself. Modern self-encrypting drives (SEDs) encrypt all stored data automatically. Once the key is deleted or replaced, the data becomes instantly unreadable. Because nothing needs to be written over, the process is much faster than a full overwrite and puts less wear on the SSD.

This method is most effective when the drive has been encrypted from the start. It offers a hardware-level solution that meets standards like NIST SP 800-88 for data sanitization, making it popular in enterprise settings where both speed and security matter. The catch is that crypto-erase only works as intended if encryption was properly implemented. Weak or absent encryption limits its protection.

Is cryptographic erase effective?

When used on an encrypted SSD, crypto-erase is very effective. By deleting or overwriting the encryption key, it instantly renders all data inaccessible. Because only the key is targeted, the process is quick and minimizes drive wear compared to multi-pass overwrites. That’s why standards such as NIST SP 800-88 Rev.1 recognize it as a valid method of secure erasure.

There are limits, though. If the drive wasn’t encrypted, crypto-erase won’t protect unencrypted data. And its reliability depends on the strength of the encryption and confirmation that the key was fully destroyed or replaced. Without that verification, there’s a small chance some information could still be recovered.

Legal / Regulatory considerations

When you’re getting rid of an old SSD, it’s not just about clearing space in your drawer, it’s also about protecting your data. Data privacy laws regulations around the world make it clear that personal information must be handled properly, even when you’re selling or recycling your hardware. Simply hitting “format” isn’t enough to stay compliant. If your drive still holds recoverable information, you could be exposing yourself to data leaks, identity theft risks, or even fines if you’re a business handling customer records.

That’s why it’s smart to treat SSD disposal as more than a technical task. Think of it as part of your data security routine. Using secure erase methods or encryption key destruction not only keeps you safe but also helps you prove that you did things by the book. In some cases, especially for businesses, it’s worth generating or requesting a certificate of erasure. This kind of documentation can be useful if you ever need to show compliance or reassure a buyer that the drive is clean and safe to use.

How to verify the erase was successful

After running a secure erase process, it’s a good idea to confirm the drive is truly clean:

• Use manufacturer software: Tools like Kingston SSD Manager can confirm the erase state and show if the secure erase feature was applied.
• Check with Disk Utility or Disk Management: Open Disk Management. A securely erased SSD should show as unallocated or empty with no partitions.
• Look for remaining files: If the erase was done correctly, browsing the SSD should show no recoverable data.
• Optional scan: Data recovery programs can be run to double-check, but if the secure erase completed successfully, they should find nothing.

FAQs on securely erasing SSDs

Safely preparing SSDs for sale or disposal

When it comes to learning how to securely erase an SSD, the right method depends on your hardware and operating system. Manufacturer tools provide the most reliable option, while built-in utilities such as BIOS/UEFI give users more advanced options.

By using a proper secure erase process, rather than formatting or deleting partitions, you ensure that your sensitive data is permanently removed. This not only protects your privacy but also prepares the drive for safe resale, recycling, or reuse without the risk of any security breaches if the data was recovered from the SSD drive.