Maintain data security after an employee leaves

As your organization's administrator,  keep your organization's data safe and secure when an user leaves by completing the following best practices:

  1. Wipe any mobile devices
    Use the Admin console to remotely remove data from the user's device. You can remote wipe the entire device or only erase your organization's data.
  2. Revoke password recovery access 
    Remove the user's recovery email address and phone number so they can't use the password recovery feature to access their old account.
  3. Change the user's password
    This can greatly reduce the risk of unauthorized access to their old account. 
  4. Revoke all OAuth 2.0 application tokens
    Changing a user's password also revokes OAuth 2.0 tokens issued for accessing certain products. Review all authorized access and revoke any other authorized applications. 
  5. Reset the user's sign-in cookies
    This also reduces the risk of unauthorized access.
  6. Revoke security keys and app password access
    Revoke any security keys or application-specific passwords that have been granted access to the user's account.
  7. Delete the user's account 
    Move any of the user's data that you want to save to another account. Then delete their original account completely. This is the best way to ensure they can't access your organization's data.

Was this helpful?

How can we improve it?
Search
Clear search
Close search
Google apps
Main menu
11195363616793641820
true
Search Help Center
true
true
true
true
true
73010
false
false