A data storage device in which access to user data is restricted. The data storage device includes a data memory having memory locations that store user data. The device also has a program memory. The program memory includes first program code that enables a user to create a first device security ID and thereby restrict access to the stored data. Second program code, also included in the program memory, is capable of receiving a security command and comparing a second device security ID associated with the received security command to a stored security key. If the second device security ID and the stored security key correspond, then authentication with the first device security ID is bypassed and access is provided to the stored data.