Captain Ned wrote:
Are you in a Server 2008 or newer environment? If so, you can use AD to cache all of the laptop encryption keys on the server and remotely unlock and grab the data while connected to the network.
The horse has already left the barn. He's got the key, but the data's gone and the laptop re-imaged, and now that this has been done (naturally) someone higher up the food chain wants probably-overwritten data recovered, on a volume that is not only encrypted with the current Bitlocker key, but hosts partially-overwritten data that was encrypted with a different Bitlocker key.
I can't help with the recovery, but it sounds like maybe OP should ask his boss for a lot of storage so that he can capture an image of everyone's drives before they get re-imaged and then store it for a set period of time. Also he should get a nice bottle of single malt because he's going to need it.