Home Services Medical Practices Veterinary Clinics Law Firms Construction & Trades Federal Contractors How We Work Results About Get Assessment

What happens when a superintendent loses a laptop?

By the Sentry Consulting Group team · Updated July 2026 · 4 min read

A superintendent calls in: the laptop was in the truck, the truck got broken into, and now the laptop is gone. It has job files, email, and probably some saved passwords. What happens next depends almost entirely on one thing: whether that laptop was managed before it disappeared.

With management in place

If the device was encrypted and enrolled in device management, this is a bad afternoon, not a crisis. The data on the drive is unreadable without the login. You remotely lock or wipe the device. You force a password reset and rely on MFA to keep the account safe even though a password may have been saved. Because you can show the device was encrypted and wiped, many breach-notification obligations may not be triggered (the rules vary by state), which matters for your cyber insurance and for any GC or client contract that requires notification. A replacement is re-provisioned to the same configuration and the superintendent is working again quickly.

Without management

If the laptop wasn't encrypted or managed, you're now guessing what was on it, whether anyone can read it, and whether you're obligated to notify clients, a general contractor, or your insurer. That uncertainty is the actual damage: the cost of a laptop is trivial next to the cost of a possible breach you can't rule out, the downtime, and the scramble to rebuild what was only on that machine.

The short version of the checklist

Every step above assumes the groundwork (encryption, MDM, MFA) was done in advance. That's the whole argument for managing field devices before anything goes missing.

Part of our guide to IT for construction and trades companies in Northern Virginia. See how Sentry supports construction and trades, or book a free assessment.

Common questions.

What should we do when an employee loses a laptop?

Remotely lock or wipe it, reset the user's password and confirm MFA, check the account for suspicious activity, and re-provision a replacement. Every one of those steps depends on the device having been encrypted and enrolled in management beforehand.

Is a lost laptop a reportable data breach?

If the device was encrypted and you can remotely wipe it, the data is generally considered unreadable and many notification obligations may not apply, though the rules vary by state. If it wasn't encrypted or managed, you often can't rule out exposure, which is what can trigger notification obligations to clients, GCs, or insurers.

How does device management change the outcome?

It's the difference between a replacement cost and a potential breach. Encryption makes the data unreadable, remote wipe removes it, and MFA protects the account, so a lost device is an inconvenience instead of an incident you have to investigate and report.

Find out where your operations stand.

We will review your current environment, identify the gaps, and tell you exactly what it would take to bring your IT operations up to a disciplined, documented standard. If something is outside our scope, we will say so directly.

Schedule Your Free Assessment

No pressure, no obligation. Available to practices and businesses in the DC/MD/VA corridor.