Why Encrypt Your Disk?
If your laptop is stolen or lost, disk encryption is your last line of defense. Without it, thieves can simply remove the drive and access all your files.
Full Disk Encryption (FDE)
Encrypts everything on your drive - files, system, even empty space. Without the password, data is unreadable.
Encryption Tools
| Tool | Platform | Price | Notes |
|---|---|---|---|
| BitLocker | Windows Pro/Ent | Included | Best for Windows |
| VeraCrypt | Win/Mac/Linux | Free | Open source, audited |
| FileVault | macOS | Included | Built into Mac |
| LUKS | Linux | Free | Standard for Linux |
BitLocker (Windows)
- Enable in Settings > Privacy & Security > Device encryption
- Save recovery key securely (NOT on the same drive)
- Requires TPM chip (most modern PCs have it)
VeraCrypt
- Open source and regularly audited
- Hidden volumes for plausible deniability
- Works on Windows Home edition
- Can encrypt external drives
Backup First!
Always backup data before encrypting. Encryption errors can cause data loss.
Best Practices
- Use strong passphrase (15+ characters)
- Store recovery key in password manager
- Keep backup copy of recovery key offline
- Enable pre-boot authentication