This question does not include a perfect world
The people I'm concerned with use laptops with either XP Home or XP Professional, they do not belong to a Domain and their laptops are their file servers as well.
I've had them do the following, but I am still trying to figure out if this is the best I can do.
Ghost the machine daily
compress files that contain sensitive data
encrypt files that contain sensitive data
Install software that find the laptop if it's been stolen
Is this the best I can do, trying to get them to upgrade from XP Home to Professional works in only a small number of cases
thanks for the help