MacMost Q&A Forum • View All Forum QuestionsAsk a Question

What Is the Best Way To Manage the Encryption Of Sensitive Data On a Laptop Where Performance Is Critical?

I’m now acting as the legal representative for a relative. I have files on my MacBook Pro (2018) that relate to their financial situation.

As a court appointee I’m charged with managing my relatives affairs, and by extension, I believe, protecting their interests with regard to the data I keep on my laptop.

The obvious thing to do is to turn on File Vault. However, I’m reluctant to do this for fear it would compromise performance.

I write music and need fast access to audio during playback and loading of samples.

Based on comments in earlier posts it would appear I also need to turn on Time Machine Encryption, but that’s not the only back up option I use. I also use Carbon Copy to clone my hard drives and Backblaze.

What impact would encryption have on cloud and clone back ups? Would it mean, for instance, that the contents of my hard drive would have to be saved again to my Backblaze account?

Does using File Vault mean that documents saved to Cloud Drive are also encrypted? Or is that a separate option that I have to turn on?

Would the best option be to purchase an additional laptop, and use that exclusively for anything related to my relative?

I’m also wondering if it’s possible to encrypt just a folder, or a small partition perhaps, rather than the whole disc?

If not available directly in MacOS is there a third party program that can do this?

The recent pandemic has also highlighted the need to record more information than I’ve done in the past with regard to my own affairs to ensure my loved ones can access my own accounts should I fall sick.

In a similar vein I’ve also been wondering about how to manage my digital accounts and on-line subscriptions in case the worst happens. It appears that using 1Password , or LastPass, would be the way to go for that though. Would you agree?
Malcolm James

Comments: One Response to “What Is the Best Way To Manage the Encryption Of Sensitive Data On a Laptop Where Performance Is Critical?”

    8 months ago

    First, two of the things you mention are already encrypted. Backblaze and iCloud Drive already encrypt the files. See and

    As for encrypting your data on your Mac, FileVault is the right way to go. It shouldn’t really affect performance on a newer Mac like you have. It will take a while to encrypt once you turn it on, so do that at the end of the day or before a weekend if you go that route. You can also turn on Time Machine encryption too. That takes even longer, but it doesn’t bother you with it so you turn it on and a few days later it is done, with no real effort or delay on your part.

    You could just create an encrypted disk image and store all of these files on there. You do that in Disk Utility. Then when that disk image is backed up anywhere it is the same encrypted file so you are set. Maybe this is an easy option for you as long as the files involved are a small set of things.

    You could also get an external drive, encrypt it, and store those files on there. So you can even leave that drive at home and not have to worry about those files even being with you at all unless you need them. Maybe a simple USB Flash drive would work for this. But I would definitely get 2 (or 3) of them and make backups since these are important documents.

    As for your own passwords and such, using 1Password or the like is a good idea. But you can also just use the built-in Keychain on your Mac. If you store your login password, iCloud password and iPhone’s passcode in a safe place on paper for a trusted person to access, then they would be able to get access to your devices, iCloud account, and then in Keychain to your other passwords (in Safari or Keychain Access) and email accounts. You’d need both your Mac password and iPhone passcode to handle two-factor authentication.

Leave a New Comment Related to "What Is the Best Way To Manage the Encryption Of Sensitive Data On a Laptop Where Performance Is Critical?"

0/500 (500 character limit -- please state your comment succinctly and do not try to get around this limit by posting two comments)