ADISA Certified (AAL 4) data erasure for Mac and iOS. NIST SP 800-88 Rev.2, IEEE 2883, GDPR, ISO 27001 aligned. SHA-256 verified audit trail.
BlankState is ADISA Product Claims Test certified at Assurance Level 4 (certificate AAC281, project ADPC330), with independent verification by ADISA's analysts that the DFU-based sanitisation method meets published claims on embedded storage in Apple devices.
UK GDPR Article 17 (right to erasure): supports demonstrable erasure for data controllers.
ISO/IEC 27001: audit trail and access controls align with Annex A objectives.
HIPAA and Cyber Essentials aligned documentation in every certificate.
Public certificate verification at blankstate.io/verify with SHA-256 hash.
Frequently asked questions
Is BlankState certified?
Yes. BlankState holds ADISA Product Claims Test certification at Assurance Level 4 (certificate AAC281, project ADPC330, valid until April 2029). ADISA's analysts independently verified that the DFU-based sanitisation method meets its published claims on embedded storage in Apple devices.
Which standards does BlankState align with?
NIST SP 800-88 Rev. 2 (Purge level), IEEE 2883-2022 for sanitizing storage, UK GDPR Article 17, ISO/IEC 27001, HIPAA, and Cyber Essentials.
How does BlankState support UK GDPR compliance?
It supports the Article 17 right to erasure and the Article 5(2) accountability principle: every erasure produces a tamper-evident certificate, so you can demonstrate rather than just claim that data was destroyed. All operations are logged for audit.
What makes a BlankState certificate tamper-evident?
Each certificate carries a SHA-256 hash computed from the device serial, erasure method, timestamp, and result. Any change to the document breaks the hash. Certificates are publicly verifiable at blankstate.io/verify.
Can a third party verify a certificate without contacting us?
Yes. Anyone (a client, downstream buyer, auditor, or regulator) can verify a certificate at blankstate.io/verify using its SHA-256 hash, with no login and no dependency on the vendor.
Does BlankState keep an audit trail?
Yes. The web portal records every assessment and erasure with technician identity, plus permission grants, role changes, and site changes, each logged with actor, timestamp, and metadata.
Public certificate verification at blankstate.io/verify, SHA-256 tamper-evident, no login required.
About the publisher
BlankState is built and maintained by Stabilise Ltd,
an Apple Premium Technical Partner based in the United Kingdom. We work directly with
ITAD operators, enterprise IT teams, legal and financial firms, and education institutions
on Apple device end-of-life workflows. Our technical guidance is based on first-hand
field experience, independent results from the ADISA Product Claims Test
methodology, Apple's own Platform Security
documentation, and NIST Special Publication 800-88 Rev. 2,
the standard US guideline for media sanitisation. Founder and principal author: Dustin Rhodes.
BlankState at a glance
What it is: A native macOS app for Apple device end-of-life, covering ADISA-certified data erasure, health assessment, and tamper-evident PDF certification for Mac and iOS.
Built by:Stabilise Ltd, a UK-registered Apple Premium Technical Partner. Founder: Dustin Rhodes.
Certified by: ADISA Product Claims Test Assurance Level 4 (certificate AAC281, project ADPC330, valid until April 2029).
Standards: NIST SP 800-88 Rev. 2 (Purge) and IEEE 2883-2022 aligned; supports UK GDPR, ISO/IEC 27001, HIPAA, and Cyber Essentials.
Pricing: Credit-based from £4.00 down to £1.25 per device. See pricing.
Verify a certificate:blankstate.io/verify, a public SHA-256 lookup, no login required.