there are just too many ways for people to steal vital information, including proprietary information, via smart phones. It's reasonable that they be able to image it as you leave the company (or in the case of impending action for misconduct), and establish a hash for it. If nothing legal comes up, they simply delete the info (usually six months to 2 years) after a period of time, having never looked at it.