Skip to content
English
Customer portal Sign in
Don't see the SOP you're looking for? Submit your suggestion here.
  • There are no suggestions because the search field is empty.

Employee Offboarding SOP

Phase 1: Immediate Actions (Within 0–15 Minutes of Termination)

1. Disable Identity & Core Access First

These are the highest risk systems — do these immediately.

  • Google Workspace
    • Suspend user account (do NOT delete yet)
    • Force logout of all sessions
    • Reset password
    • Remove recovery email/phone
    • Transfer ownership of:
      • Google Drive files
      • Calendars
      • Docs/Sheets
  • Slack
    • Deactivate account
    • Force logout of all sessions
    • Transfer ownership of any private channels if needed

Phase 2: Security & Password Management

2. Password & Vault Access

  • LastPass
    • Disable user account
    • Remove from all shared folders
    • Rotate critical shared passwords:
      • Hosting
      • Domains
      • APIs
      • Payment systems

Phase 3: Internal Systems & Tools

3. CRM & Client Systems

  • HubSpot
    • Deactivate user
    • Reassign:
      • Contacts
      • Deals
      • Tickets
    • Remove from workflows and reporting dashboards
  • Client Dashboard (Internal Tool)
    • Disable login

Phase 4: AI & Developer Tooling

4. AI Tools

  • Claude
    • Revoke access
    • Remove API keys if applicable
  • OpenAI
    • Remove user from organization
    • Rotate API keys (critical)

Phase 5: Communication & Automation Tools

5. Automation / Messaging Systems

  • Make
    • Remove user access
    • Transfer ownership of scenarios
    • Check for personal API connections
  • n8n
    • Remove user access
    • Transfer ownership of scenarios
    • Check for personal API connections
  • Twilio
    • Remove user access
    • Rotate API keys and Auth Tokens
    • Verify phone numbers / routing unaffected

Phase 6: Infrastructure Access

6. Hosting & Infrastructure

  • Amazon Web Services (if applicable)
    • Disable IAM user
    • Rotate:
      • Access keys
      • Secrets
    • Audit active sessions
  • Hostinger (if applicable)
    • Remove user access
    • Change master account password
  • Cloudflare (if applicable)
    • Remove user from account
    • Audit DNS / firewall changes
    • Rotate API tokens

Phase 7: Financial Systems

7. Payments & Billing

  • Stripe
    • Remove user access based on role:
      • Admin / Developer / Analyst / View-only
    • Audit recent activity
    • Confirm no API keys tied to user
  • Company Credit Cards
    • Owner or Accountant must:
      • Cancel card immediately
      • Issue replacement if needed
    • Review last 30–60 days of transactions

Phase 8: Final Checklist (Within 24 Hours)

  • All logins disabled
  • Passwords rotated (critical systems)
  • Ownership transferred (files, accounts, workflows)
  • Devices returned (if applicable)
  • Email forwarding set up (temporary, if needed)
  • Out-of-office or alias configured (if role was client-facing)