They should, but then it only takes one misconfigured, or misbehaving machine to cause a data breach that, depending on the industry, could be a big headache and cost. At scale, with many employees, the chances of this happening approach 1.

Physical destruction is cheap and effective insurance against this.

I wouldn't: https://www.bitdefender.com/en-us/blog/hotforsecurity/resear...

I don't trust HP firmware to wake the laptop from sleep in one attempt, let alone trust them to securely store their telemetry (that they won't let me see directly).

It's just easier.

You don't have to worry about IT forgetting to wipe a drive or something.

You have a policy that says we take the SSD out before sending it to the reseller/donating.

A used SSD is a bad idea anyway, everything else on a laptop can more or less work indefinitely

There's a possibility that unencrypted data could be in a sector marked "bad" (if plaintext data was present before encryption was turned on). It's just not worth it. I always take my drives out and put a few holes on them on the drill press before disposing/donating computers.