DashboardOperations & SecurityConfidential 機密

10 · Offboarding Playbook

Offboarding SOP

A zero-loss handover process for accounts, access, client relationships and sensitive assets when someone leaves.

Ops / Founder2 min readUpdated May 31, 2026

When a team member leaves Tenten, how to hand over accounts, access, files, client relationships and sensitive assets to the successor — zero loss, zero residue, zero downtime.

Tenten relies on a lot of SaaS, infrastructure, API keys, social accounts and client systems. If any departure isn't handed over properly, at best you lose files or break an automation; at worst, client data leaks, social assets go out of control, or billing goes haywire. This SOP standardizes offboarding. It pairs with the Security & Assets guide: one covers "how to protect while here," the other "how to hand over when leaving."

The Five Handover Roles

Every handover needs the roles below clearly assigned. In a small setup one person may wear several hats, but accountability must be written on the tracking sheet.

Leaver

The departing member

Proactively lists their accounts, in-flight work, client relationships and single-points-of-failure.

Manager

Direct manager

Confirms knowledge and relationship handover is done, approves access transfer, answers for the outcome.

IT / Tech

Technical executor

Revokes accounts, rotates keys, rebinds automation credentials, reclaims delegated access.

Founder

Approves transfer of the most sensitive matters — finance (Mercury), social ownership.

The Handover Timeline

Handover doesn't start on the last day. The ideal process spans two weeks before to 30 days after departure, to avoid a last-day scramble and missed access.

T-14Notify & inventorytwo weeks before

1.1

On notice, the manager starts the handover tracking sheet and assigns the five roles.

1.2

The leaver lists all accounts, keys, client delegated access and scheduled content they hold.

T-7Knowledge & relationship handoverone week before

2.1

Hand over in-flight projects, client contacts and know-how to the successor, written into Notion.

2.2

Introduce the successor to client contacts so the relationship isn't interrupted.

DAY 0Confirm access transferlast day

3.1

Confirm item by item that access has transferred to the successor or a company service account.

3.2

Rebind first, disable second: rebind automation credentials to a company account before disabling the personal one.

DAY 0–3Revoke & securefrom the last day

4.1

Revoke personal accounts, SSO, social admin rights; rotate all shared keys and passwords.

4.2

Reclaim client-side delegated access (GA, Search Console, CMS, shared drives).

DAY 30Verify & archive30 days after

5.1

Recheck billing and usage for anomalies; confirm no leftover login or recovery path.

5.2

Sign off and archive the tracking sheet.

The Six Most Error-Prone Areas

The six below are where Tenten is most likely to slip up and most likely to overlook. Double-check them every time.

Social accounts (250–300K followers).Revoke personal admin rights, rotate passwords, confirm the company is still primary owner; inventory scheduled content that keeps firing after departure.

n8n automation credentials.Rebind credentials to a company service account before disabling the personal account, or the whole line breaks.

Shared API keys.Rotate Anthropic / Cloudflare / Supabase, etc. and check billing.

Mercury & finance access.Revoked and confirmed by the founder — most sensitive.

Client-side delegated access.GA, Search Console, CMS and shared drives are the most-forgotten to reclaim.

Single-point-of-failure accounts.Passwords or systems only the leaver knows must be transferred before departure.

The final sweep before closing

Even after the full process, the most-missed items: the 2FA authenticator on a personal phone, browser-saved passwords, company files in a personal drive, and recovery paths bound to a personal email. Clear each, then sign off and archive.

Security & Assets

Data classification, keys, client data, and social-asset rules.

Clients & Work

The brands we've served, industry coverage, and selected work.

New-Hire Onboarding

From day one to day 90 — account provisioning and team Who's Who.

The Five Handover Roles

Every handover needs the roles below clearly assigned. In a small setup one person may wear several hats, but accountability must be written on the tracking sheet.

Leaver

The departing member

Proactively lists their accounts, in-flight work, client relationships and single-points-of-failure.

Manager

Direct manager

Confirms knowledge and relationship handover is done, approves access transfer, answers for the outcome.

IT / Tech

Technical executor

Revokes accounts, rotates keys, rebinds automation credentials, reclaims delegated access.

Founder

Approves transfer of the most sensitive matters — finance (Mercury), social ownership.

The Handover Timeline

Handover doesn't start on the last day. The ideal process spans two weeks before to 30 days after departure, to avoid a last-day scramble and missed access.

T-14Notify & inventorytwo weeks before

1.1

On notice, the manager starts the handover tracking sheet and assigns the five roles.

1.2

The leaver lists all accounts, keys, client delegated access and scheduled content they hold.

T-7Knowledge & relationship handoverone week before

2.1

Hand over in-flight projects, client contacts and know-how to the successor, written into Notion.

2.2

Introduce the successor to client contacts so the relationship isn't interrupted.

DAY 0Confirm access transferlast day

3.1

Confirm item by item that access has transferred to the successor or a company service account.

3.2

Rebind first, disable second: rebind automation credentials to a company account before disabling the personal one.

DAY 0–3Revoke & securefrom the last day

4.1

Revoke personal accounts, SSO, social admin rights; rotate all shared keys and passwords.

4.2

Reclaim client-side delegated access (GA, Search Console, CMS, shared drives).

DAY 30Verify & archive30 days after

5.1

Recheck billing and usage for anomalies; confirm no leftover login or recovery path.

5.2

Sign off and archive the tracking sheet.

The Six Most Error-Prone Areas

The six below are where Tenten is most likely to slip up and most likely to overlook. Double-check them every time.

Social accounts (250–300K followers).Revoke personal admin rights, rotate passwords, confirm the company is still primary owner; inventory scheduled content that keeps firing after departure.

n8n automation credentials.Rebind credentials to a company service account before disabling the personal account, or the whole line breaks.

Shared API keys.Rotate Anthropic / Cloudflare / Supabase, etc. and check billing.

Mercury & finance access.Revoked and confirmed by the founder — most sensitive.

Client-side delegated access.GA, Search Console, CMS and shared drives are the most-forgotten to reclaim.

Single-point-of-failure accounts.Passwords or systems only the leaver knows must be transferred before departure.

Offboarding SOP

The Five Handover Roles

The Handover Timeline

The Six Most Error-Prone Areas

The final sweep before closing

Related

Offboarding SOP

The Five Handover Roles

The Handover Timeline

The Six Most Error-Prone Areas

The final sweep before closing

Related

The Five Handover Roles

The Handover Timeline

The Six Most Error-Prone Areas

The final sweep before closing

lightbulb Related

The Five Handover Roles

The Handover Timeline

The Six Most Error-Prone Areas

The final sweep before closing

lightbulb Related

Related

Related