OPERATIONS · FACILITIES

Everyone Plans the Furniture. Nobody Plans the Server Closet.

Office closures run on a real-estate clock — lease end, key handover, deposit return. IT's job is making sure no data-bearing device is still in the building, on a truck to storage, or inside a leased copier when that clock hits zero. The checklist, T-90 to T-0.

By Brian Boynton Published 8 min read

TL;DR

Treat an office closure as a mini-decommission with a hard real-estate deadline. Sweep and inventory everything data-bearing at T-90, decide disposition paths by T-60, recover and release employee devices by T-30, destroy or ship under chain of custody in the final weeks, and hand over keys with a closeout file — not with equipment still in a closet.

  • The riskiest devices in a closing office are the ones nobody owns: copiers on lease, spare-drive drawers, the closet switch stack, badge and camera systems.
  • Leased equipment (especially copiers) needs drive handling settled with the lessor before it leaves — the machine returns; the data must not.
  • A closure compresses months of ITAD decisions into weeks; the T-schedule is what keeps decisions ahead of the movers.
  • The deliverable is the closeout file: inventory, custody, certificates, settlements — reconciled.

01 / THE CLOCKWhy closures go wrong: the deadline belongs to real estate

An office closure isn't an IT project — it's a real-estate project that IT is inside of. The lease-end date is immovable, the movers are booked, facilities is measuring furniture, and somewhere in week two someone remembers the server closet. That compression is the risk: disposal decisions that normally get months — remarket or destroy, on-site or facility, who signs the certificates — get made at the loading dock by whoever's standing there. Which is how organizations end up with the whole-building problem: hardware scattered into storage units, employee garages, and dumpsters, each one an untracked data-bearing asset.

The fix is running the closure against a T-schedule that puts every decision before the physical work. The one below assumes ninety days; compress proportionally if you have less, but keep the order.

02 / T-90 TO T-60T-90 to T-60: sweep everything, decide everything

  • Full asset sweep — physical, not just the CMDB. Walk the space: every desk, closet, ceiling, storage room. Closing offices reliably surface ghost assets — the drawer of loose drives, retired laptops under a credenza, the abandoned test server. Everything data-bearing gets a serial on the closure inventory.
  • Inventory the invisible categories: copiers/MFPs and their storage, desk phones and the PBX, conference-room gear, badge controllers and cameras (and where their recordings live), network gear with configs and credentials, UPS units, TVs with logged-in accounts.
  • Read the lease. Note the surrender condition, removal obligations (cabling is often the tenant's to remove), and any data-security or disposal clauses. If equipment or services transfer to the landlord or a successor tenant, data handling for those items needs its own line. (The Vault's lease data-security clause pack covers the language for next time.)
  • Decide disposition paths per class: what relocates to other sites, what's remarketable (recent laptops and monitors carry real recovery value), what's donated, what's destroyed. Deciding now is what makes the final month mechanical.
  • Book the ITAD provider now — with the site walk, not after it. Closure timelines are exactly when “we can be there in six weeks” becomes a plan-breaking sentence.

03 / T-60 TO T-30T-60 to T-30: leased equipment and employee devices

  • Copiers and printers first. Leased MFPs return to the lessor — but their drives hold every scan, copy, and stored job. Settle the drive question with the lessor in writing: drive removal and destruction (with certificate), or a documented, verified sanitization before return. Never let “the vendor wipes them” go unverified; the copier episode exists because it does.
  • Other leased/financed gear: network equipment on subscription, postage and mail machines, kiosks — same pattern: what returns, what data it holds, who certifies the handling.
  • Employee device recovery. Collect devices from relocating and departing staff against the inventory; for remote workers attached to the closing site, run the mail-back workflow now, not after the office mailbox closes.
  • Release the locks. MDM retirement, Autopilot/ABM deregistration, activation-lock checks, firmware passwords — the full release checklist, run against the closure inventory, so remarketable devices actually remarket.
  • Data dependencies: anything hosted in the office (local file server, NVR, the app nobody admits to) gets migrated or formally retired with its backups decided.

04 / T-30 TO T-0T-30 to T-0: destruction, custody, and the last walk

  • Destruction event. On-site shredding for the sensitive tier (drives pulled from servers, NVRs, copiers if you kept them) removes transport risk; the rest ships under seal to the processing facility. Either way: serialized, witnessed or certificate-verified, per the NIST 800-88 method your data class demands.
  • Chain of custody on every truck. Sealed containers or banded pallets, seal numbers on the manifest, signatures at each handoff — the custody log template makes this a form, not a project.
  • Network & security systems last. The network stack and badge/camera systems come down at the end (people still need doors and Wi-Fi) — wipe configs and credentials from switches, firewalls, and controllers, and don't leave the NVR's drive behind for the landlord.
  • The final walk. Sweep the space against the T-90 inventory one last time — ceiling APs, wall-mounted players, the closet shelf. Zero data-bearing devices remain: not in the space, not in a storage unit “for now,” not in a manager's trunk.
  • Closeout file: inventory, custody chain, certificates of destruction and sanitization, remarketing settlement, donation records, lessor confirmations — reconciled to zero unexplained serials, archived per retention policy. Keys go back with the file complete.

Office closure FAQ

What about the drives in leased copiers?

MFPs typically contain storage retaining scans, copies, and print jobs. Since the machine returns to the lessor, settle drive handling in writing before pickup: drive removed and destroyed with a certificate, or documented verified sanitization before return. An unverified “the leasing company wipes them” is the failure mode — get the certificate or keep the drive.

On-site destruction or ship everything out?

Most closures mix both: on-site destruction for the sensitive tier (pulled server/NVR drives, regulated-data devices) to eliminate transport risk; facility processing for the volume tier where value recovery matters, under sealed, serialized custody. Decide the split at T-60, not at the dock.

Can we donate the equipment instead?

Yes — after verified sanitization, and only for gear actually worth donating. Donation doesn't lower the data bar: every device gets the same 800-88 treatment and record as a remarketed one. Route working, current-enough equipment to donation or remarketing; route the rest to certified recycling rather than burdening a nonprofit with e-waste.

Who owns this checklist — IT or facilities?

IT owns the data-bearing workstream inside facilities' closure project. Facilities owns the lease, movers, and surrender condition; IT owns inventory, disposition decisions, lock release, destruction, and the closeout records — with one named owner, because closures fail in the seams between teams. The mechanism: a shared T-schedule with IT milestones on the same timeline as the real-estate ones.