Disk Encryption: How to protect your computer and University data

Studies show that many people who lose or have their computer stolen often have personal and family data at risk, as well as confidential University data. Encryption converts data to a format that is unreadable by anyone except authorized users.

The recommended method for protecting the information on your computer is to use the encryption software which comes bundled with your computer's operating system. 

The Princeton Disk Encryption Service, available for faculty and staff computers, escrows the encryption recovery keys in University servers.

What type of computer should use disk encryption?

How can I tell if my computer's disk is already encrypted?

How do I enable disk encryption on my computer?

University managed Windows and macOS computers

Unmanaged computers

Linux Computers

Traveling abroad with encrypted laptops

Before traveling out of the country with encryption software, University members should follow the Encryption & International Travel guidelines published by the OIT Information Security Office.

What types of computers currently do not support disk encryption?

External storage devices and encryption

Enabling Bitlocker for Windows or FileVault for macOS will not encrypt external storage devices such as USB drives, thumb drives, etc. These devices can be protected using encryption features built into Windows and macOS:

Information for technical support representatives

Refer to Suspend BitLocker protection for non-Microsoft software updates - Windows Client | Microsoft Learn

For devices using native Windows Bitlocker disk encryption, BitLocker must be suspended before: