The Sensitive Challenge of Deceased Estate Electronics
When someone passes away, their digital life persists on the devices they leave behind. Smartphones, laptops, tablets, desktop computers, and external storage devices all contain personal data that presents both practical and ethical challenges for executors, family members, and anyone involved in managing the estate. Handling this technology with care and respect is essential, both for the privacy of the deceased and for the protection of the living individuals whose information may also be stored on those devices.
Estate electronics often contain a uniquely comprehensive picture of a person’s life. Financial records, personal correspondence, photographs, medical information, login credentials for online accounts, and private documents accumulate over years of device use. The way these devices are handled during estate administration can have lasting implications for the deceased person’s legacy and for the security of surviving family members and associates.
Legal Framework for Deceased Estate Data
The Australian Privacy Act 1988 generally ceases to protect personal information after death, as the Act applies to the privacy of living individuals. However, this does not mean that data on a deceased person’s devices can be treated carelessly. The devices may contain personal information about living people, including family members, friends, business contacts, and others, who retain their full privacy rights.
The executor or administrator of the estate has a fiduciary duty to manage all assets, including digital assets, in accordance with the deceased’s will and the relevant state or territory succession legislation. This duty extends to making reasonable decisions about the handling and eventual disposal of electronic devices and the data they contain.
Some digital accounts and services have their own terms regarding deceased user accounts. Major platforms like Google, Facebook, and Apple have legacy contact or memorialisation features, but these apply to the online accounts rather than the physical devices themselves.
Immediate Steps for Estate Electronics
When managing electronics as part of an estate, the first priority is securing the devices. Collect all electronic devices and store them in a safe location. Do not allow multiple family members to browse through devices unsupervised, as this can lead to data being copied, deleted, or shared without appropriate authority.
Do not attempt to factory reset or wipe any devices until the executor has determined what data needs to be preserved. Financial records, tax information, and correspondence may be needed for estate administration. Digital photographs and personal documents may have sentimental or practical value for the family.
If the deceased person owned a business or was self-employed, their devices may contain business records, client information, and financial data that has implications beyond the personal estate. The executor should identify any business data early in the process and seek appropriate guidance on handling it.
Accessing Locked Devices
Modern devices are typically protected by passwords, PINs, biometric locks, or encryption. Gaining access to locked devices can be challenging, and the options available depend on the device type and the security measures in place.
For Apple devices, the executor may be able to access the device through the deceased person’s Apple ID if the password is known or can be recovered through account recovery processes. Apple also has a Digital Legacy program and a process for executors to request access with appropriate legal documentation.
For Android devices and Windows computers, similar account recovery processes may be available through Google or Microsoft. In some cases, a court order may be needed to compel a technology company to provide access to a deceased person’s account or device.
Professional data recovery services can sometimes bypass device locks, but this should only be pursued with proper legal authority. The executor should be able to demonstrate their legal standing through a grant of probate or letters of administration before engaging recovery services.
Deciding What to Keep and What to Destroy
The executor should work through the contents of estate electronics systematically, categorising data into several groups. Financial and tax records should be preserved for the period required by the ATO, typically at least five years from the date the relevant return was lodged or from the date of death, whichever is later.
Personal photographs, correspondence, and documents of sentimental value should be discussed with beneficiaries before any decisions about preservation or deletion are made. Copying these to a shared storage location or distributing them to family members may be appropriate.
Login credentials and account information for online services should be documented so that accounts can be properly closed. This includes banking, superannuation, insurance, social media, email, subscription services, and any other online accounts.
Data that is no longer needed and has no ongoing value should be securely destroyed. This includes temporary files, cached data, browsing histories, and any personal information about third parties that served no ongoing purpose.
Disposing of Devices After Estate Administration
Once all necessary data has been preserved or distributed and the estate no longer needs the physical devices, they should be properly sanitised before disposal, donation, or sale. A simple factory reset is not sufficient, as data can often be recovered from devices that have undergone standard reset procedures.
For devices being donated or sold, NIST 800-88 compliant data sanitisation should be performed to ensure no personal data remains. This protects both the deceased person’s privacy and the privacy of any living individuals whose information was stored on the devices.
For devices containing particularly sensitive information, or devices that cannot be unlocked for software-based sanitisation, physical destruction of the storage media may be the most appropriate option. This ensures that no data can be recovered regardless of the device’s security settings.
If the estate includes business equipment or devices that stored client or customer data, the same data destruction standards that would apply to a business should be followed. The executor may wish to engage a professional IT asset disposition provider to handle business equipment securely.
Respecting Privacy Throughout the Process
Managing deceased estate electronics requires a balance of practical necessity and respectful handling. The deceased person’s private thoughts, communications, and personal data deserve to be treated with dignity. Living individuals whose data appears on the devices deserve to have their privacy protected. And the executor has a responsibility to manage the process lawfully and diligently. By approaching estate electronics with care, proper tools, and appropriate professional support when needed, executors can fulfil their obligations while honouring the trust placed in them.