>as in my data be safe

You should have disk encryption turned on. I would not worry unless you think there is someone who is willing to spend an enormous amount of time and effort to access your data.

Thank you.

I'm still using a 2012 Lenovo laptop because I could upgrade its disk and RAM, and replace its battery. Otherwise I'd have had to buy a new laptop years ago.

Disappointing that most Lenovo laptops now have soldered RAM but you can only get up to 16 GiB.

> how do I send it for repair safely (as in my data be safe)?

You have backups, right?

(That is, unfortunately, the legit answer to this question.)

The question is ambiguous but I interpreted it as if the laptop fails and I need to have it repaired how do I keep my data safe because I can't just pull the hard drive out before sending it for repair.

The T2 chip already encrypts the SSD using a unique identifier generated and known only by that host's T2, so it's sort of a non-issue imo

Thank you for your input, that's exactly what I meant.

If you use FileVault encryption with a secure password.

No, it's encrypted either way. With FileVault enabled it just won't automatically mount and decrypt when connected to the T2 chip

That doesn’t matter if the password is known, guessable, or nonexistent.