The Ex-Employee Problem
Why Former Staff Knowing Your Passwords Is a Ticking Time Bomb
A Common Business Scenario
An employee leaves your business. Maybe it was planned. Maybe it wasn’t. Maybe it was on good terms. Maybe it wasn’t.
But here’s what happened: They know your supplier passwords. Your PlaceMakers login. Your Bunnings Business account. Your electrical supplier portal. Maybe even your accounting software password.
They still know these passwords right now. And they’ll know them tomorrow. And next week. And next month.
This is one of the biggest hidden risks in New Zealand’s small businesses. Former employees with ongoing access to critical business systems. This guide explains why this matters, what could go wrong, and how to prevent it.
The Uncomfortable Truth About Staff Departures
Let’s be honest about what actually happens when someone leaves your business:
They Know Your Passwords
Over their time working for you, they’ve seen, used, or been given passwords for:
- Multiple supplier websites and trade portals
- Your business social media accounts
- Accounting or booking software
- Council or government portals
- Shared email accounts or customer systems
- Industry-specific systems relevant to your business
If they wrote these passwords down (and most people do), they still have that notebook or phone note. If they didn’t write them down, they might still remember them—especially if you use simple, memorable passwords.
You Probably Didn't Change the Passwords
Here’s what you intended to do when they left:
- Make a list of all systems they had access to
- Log into each one and change the password
- Update your records with the new passwords
- Tell your remaining staff about the changes
Here’s what actually happened:
- You changed one or two critical passwords
- You got busy with other things
- You forgot which systems they had access to
- The process was too painful to complete
- Most passwords never got changed
This isn’t because you’re careless. It’s because the process is genuinely difficult and time-consuming. Most New Zealand business owners face exactly this situation.
The Access Window That Never Closes
Result: Your former employee can still access your business systems. Not just for a few days—for weeks, months, or even years after they’ve left. The access window that should have closed when they walked out the door is still wide open.
What Could Possibly Go Wrong?
Most former employees won’t misuse their knowledge of your passwords. But ‘most’ isn’t ‘all.’ And even good people can make poor decisions under the right (or wrong) circumstances. Here are the real risks you face:
1. The Disgruntled Departure
Real Scenario:
You had to let someone go unexpectedly. They’re angry. They feel wronged. They know your supplier passwords.
What they could do:
- Order thousands of dollars of materials to a different address
- Cancel your existing orders without you knowing
- Change delivery addresses on orders you’ve placed
- Access customer information and contact details
- Post inappropriate content on your business social media
- Download customer lists to take to a competitor
You might not discover any of this until invoices arrive, customers complain, or orders don’t show up.
This isn’t theoretical. It happens. And when it does, the damage to your business can be severe—both financially and reputationally.
2. The Competitive Intelligence
Your former employee goes to work for a competitor (or starts their own competing business). They still have access to your supplier accounts.
What they could learn:
- Your pricing arrangements with suppliers
- What products you’re ordering (revealing what jobs you have coming up)
- Your order volumes and patterns
- Which suppliers you use and what terms you have
- Customer delivery addresses and project details
This information gives them a competitive advantage. They can undercut your pricing, approach your customers, or use your supplier relationships to benefit their new employer.
3. The Accidental Access
Common Scenarios:
Your former employee needs to check something for their new job. They log in to their usual account and, without thinking, use their old password—which still works. Now they’ve accidentally accessed your business account.
Or: They’re training someone at their new company. ‘Here’s how to use supplier portals,’ they say, and accidentally log into your account as a demonstration because that’s what they’re used to.
Or: They have the passwords saved in their browser from when they worked for you. Their browser auto-fills them. They don’t even realise they’ve logged into your account.
Even unintentional access creates problems. You don’t know they’ve accessed your systems. They might see information they shouldn’t. It’s messy, awkward, and risky.
4. The Security Breach Through Them
Here’s a risk most business owners don’t consider:
Your former employee wrote your passwords in their personal notebook. That notebook gets stolen. Or their phone with password notes gets hacked. Or their home computer (where they saved passwords) gets compromised.
Now, criminals have your business passwords. Not because of anything you did wrong—but because someone who used to work for you wasn’t secure with information they no longer should have had.
5. The ‘Favour’ That Goes Wrong
Sometimes, former employees still want to help. Maybe you can call them with a question. Maybe they offer to ‘just quickly fix that thing’ they used to handle.
The problem: They’re accessing your systems without proper authorisation. If something goes wrong, whether they make a mistake, access the wrong information, or there’s a security incident, you have no clear record of who did what, and the liability becomes very murky.
The Real Cost of Former Employee Access
When something goes wrong with former employee access, the costs hit you in multiple ways:
Financial Cost | Operational Cost | Reputation Cost |
• Fraudulent orders charged to your account • Materials delivered to wrong addresses • Cancelled orders causing project delays • Legal costs investigating incidents | • Time spent investigating suspicious activity • Changing all compromised passwords • Reversing unauthorised actions • Staff time dealing with consequences | • Customer trust damaged by security lapses • Supplier relationships strained • Industry reputation affected • Competitive disadvantage |
Beyond the immediate costs, there’s the stress and worry. Every former employee who knows your passwords is a potential risk you’re carrying. That nagging concern: ‘Could they still access our systems?’
Why the Traditional Solution Doesn’t Work
The standard advice is: ‘Change all passwords when someone leaves.’ Here’s why that doesn’t work in practice:
It’s Genuinely Difficult
A typical employee might have had access to 10-30 different systems:
- 6-8 different supplier portals
- Multiple social media accounts
- Accounting or business management software
- Booking or scheduling systems
- Industry-specific platforms
- Email, customer databases, and more
Changing passwords across 20 websites takes 4-6 hours. Most business owners don’t have that time, especially during the disruption of someone leaving.
You Can’t Remember Everything
Which systems did they actually access? You probably don’t have a complete list. They might have accessed systems you’ve forgotten about. Or systems that only they knew how to use. The chances of changing every single password they knew are effectively zero.
It Disrupts Your Remaining Staff
After you change passwords:
- You have to tell everyone about every change
- People miss messages and use old passwords
- Accounts get locked from failed login attempts
- You spend more time unlocking accounts and resending passwords
- Work gets delayed because people can’t log in
The disruption to your team can be as problematic as the person leaving in the first place.
It Rarely Gets Completed
The reality: You change a few critical passwords, then other business priorities take over. The job never gets finished completely. Former employees retain access to some systems indefinitely.
How SafeKey Solves the Ex-Employee Problem
SafeKey eliminates the ex-employee access problem completely. Not reduces it. Not makes it easier. Eliminates it. Here’s how:
They Never Know the Passwords in the First Place
This is the key insight that changes everything:
The SafeKey Approach
With SafeKey, your staff can use business accounts without ever seeing the actual passwords.
They click on ‘PlaceMakers’ in SafeKey. SafeKey automatically fills in the username and password, then logs in. They do their work. They log out.
They never saw the password. They couldn’t write it down. They don’t know it. When they leave, they still don’t know it.
Think about what this means: An employee can work for you for years, using your supplier accounts daily, and when they leave, they know exactly zero passwords. They can’t leak what they never knew.
Instant Access Removal
When someone leaves your business:
- You log into SafeKey
- You click ‘Remove User’ next to their name
Done
That’s it. Takes 30 seconds. They immediately lose access to every single business system. All supplier portals. All accounts. Everything. Instantly.
Without SafeKey1. Make a list of all accounts 2. Log into each website 3. Change each password 4. Update your records 5. Tell the remaining staff 6. Deal with lockouts 7. Hope you got everything Time: 5-8 hoursRemaining risk: High | With SafeKey1. Log into SafeKey 2. Click ‘Remove User’ 3. Done All access is removed instantly No passwords changed No one else was affected
Time: 30 secondsRemaining risk: Zero |
This is the difference between a process so painful you often don’t complete it, and a process so simple there’s no excuse not to do it every time.
Additional SafeKey Benefits for Staff Changes
No Disruption to Remaining Staff
When you remove an employee from SafeKey, the passwords don’t change. Your remaining staff keep working exactly as before. No messages needed. No confusion. No locked accounts. Business continues normally.
You Can Check Their Access History
SafeKey logs every time someone accesses a password. Before removing someone, you can:
- See exactly which systems they accessed
- Check if they accessed anything unusual in their final days
- Have a complete record for security audits or investigations
After they’re gone, you can still review what they accessed and when. This is impossible with written passwords.
Perfect for Temporary Staff
Got someone helping out for a busy period? Contractor for a specific project? Seasonal worker? Give them SafeKey access for exactly what they need, exactly when they need it. When they finish, remove their access instantly. No passwords shared. No ongoing risk.
Compliance and Insurance
Cyber insurance companies specifically ask: ‘How do you revoke access when staff leave?’ Being able to say ‘We remove their access instantly through our password management system’ is exactly what they want to hear. It demonstrates proper security controls.
Real-World Examples
Example 1: The Unexpected Resignation
The Situation:Your warehouse manager gives two weeks’ notice on Friday afternoon. They’ve been with you for three years and know every supplier login. Without SafeKey:You spend the weekend worrying about what they might access Monday morning, you start the password change process It takes most of the week to complete They’re still working for you while you change passwords With SafeKey:On their last day, you click ‘Remove User’ Access removed in 30 seconds No passwords changed Zero ongoing risk |
Example 2: The Difficult Termination
The Situation:You have to let someone go. They’re unhappy about it. They had access to your major supplier accounts and social media. Without SafeKey:You’re worried about what they might do with access You urgently change passwords on critical accounts But you’re not sure if you got everything You monitor accounts nervously for weeks With SafeKey:You remove their access during the termination meeting They leave with zero access to anything You have complete peace of mind Your business is protected immediately |
The Bottom Line
Every former employee who knows your business passwords is a risk you’re carrying. Whether they left yesterday or two years ago, if they know your passwords, you have a problem.
The traditional solution—changing all passwords when someone leaves—sounds good in theory but fails in practice. It’s too time-consuming, too disruptive, and almost never gets completed properly.
SafeKey solves this problem completely:
✓ Employees never know passwords in the first place
✓ Remove access in 30 seconds when they leave
✓ No passwords need changing
✓ No disruption to remaining staff
✓ Complete audit trail of their access
✓ Zero ongoing risk after they leave
The Cost Comparison
Changing Passwords ManuallyTime per departure: 5-8 hours At $50/hour: $250-400 per departure Plus: • Staff disruption and confusion • Locked accounts and delays • Incomplete coverage • Ongoing security risk | SafeKeyTime per departure: 30 seconds Cost: Negligible Plus: • No staff disruption • No delays or confusion • Complete coverage guaranteed • Zero ongoing risk |
SafeKey costs $36 per user per year. For a business with 10 staff, that’s $414 per year total.
If just one person leaves per year, SafeKey saves you more in time than it costs—while eliminating the security risk entirely.
Stop Worrying About Former Employees
How many former employees know your business passwords right now? How many people who no longer work for you could still log into your supplier accounts, social media, or other systems?
If you don’t know the answer or it concerns you, it’s time to fix this problem.
SafeKey eliminates the ex-employee access problem completely. No more worrying. No more time-consuming password changes. No more ongoing risk. Just simple, secure access management that actually works.
Protect Your Business from Former Employee Access
Contact SafeKey for a free consultation
Website: www.SafeKey.co.nz
Email: info@safekey.co.nz
Simple password control for New Zealand businesses