What if we make all our devices in such a way that you can easily pull out an encrypted volume (e.g. SD card or SSD disk) containing all PII from it rendering it's state same as if it was "factory reset"? You could do this before you send it to be fixed or put on sale.