Skip to main content

Employee Departure

The Context

Nadia is the HR Director at FinSecure, a financial consulting firm. A senior consultant, Marc, is leaving the company on Friday. Marc had access to dozens of applications containing sensitive client financial data. Nadia must ensure that all his access is cut off on the same day, without missing any.

  • No one knows exactly which applications Marc had access to
  • Accounts must be deactivated one by one on each application
  • Some shared applications require a password change
  • The process takes days, even weeks
  • Forgotten accounts often remain active for months

Risk: a former employee can access client data long after leaving.

Step 1 — View All of Marc's Access (1 minute)

Nadia opens Marc's profile in SmartLink. She instantly sees all the folders he belongs to and all the applications he can access.

Step 2 — Revoke All Access (1 click)

Nadia deactivates Marc's account. Instantly:

  • Marc is removed from all folders
  • All applications are removed from his dashboard
  • The browser extension no longer fills in any credentials
  • Active sessions are invalidated

Step 3 — Verify (1 minute)

The dashboard confirms that Marc no longer has access to any application. Since Marc never knew the passwords (thanks to the company vault), no password change is necessary.

Step 4 — Prove Revocation via Audit Trail

Nadia opens the Audit Trail from Marc's profile. The log lists each event chronologically: last logins, folder removals, account deactivation. Each line is timestamped and indicates the application, device, and event type.

If the legal department or an auditor requests proof, Nadia generates the monthly CISO report from the Reports menu — Marc's deprovisioning automatically appears in the "Access Management and Provisioning" section.

What Changes

Without SmartLinkWith SmartLink
Days to cut everythingInstant revocation in 1 click
Forgotten active accountsAutomatic exhaustive inventory
Password change requiredNo password to change
No proof of revocationTimestamped audit log + compliance reports

Features Used

  • 📊 Admin Dashboard — Overview of users and their access
  • 📁 Member Management — Remove a user from all folders
  • 🔑 Company Vault — Passwords never revealed to users
  • 📜 Audit Trail — Timestamped proof of each access revocation
  • 📑 Reports — CISO report including provisioning/deprovisioning
  • 📜 Audit Trail — Timestamped proof of each access revocation
  • 📑 Reports — CISO report including provisioning/deprovisioning