An employee exit is a coordinated legal, payroll, security and knowledge-transfer event—not only a final salary calculation.
HR, payroll, IT and manager
Per exit
Open one cross-functional exit ticket.
Resignation or termination documents.
Classify the exit route and obtain the required approval and communication. Notice, garden leave, termination, misconduct and redundancy can have different legal and contractual consequences.
Payroll should reconcile salary, leave, incentives, recoveries, advances, reimbursements, tax and statutory contributions. Final settlement rules depend on law, contract and location.
IT and operations should remove access based on risk and timing, preserve company data and recover devices. Access should not remain open merely because payroll is pending.
| Control | What it covers | Operating rule |
|---|---|---|
| Authority | Exit reason and approval are documented. | Use lawful communication. |
| Payroll | All earnings, deductions and benefits are reconciled. | Provide final statement. |
| Assets and access | Devices, data and credentials are secured. | Use time-based checklist. |
| Continuing duties | Confidentiality, IP and non-solicit terms are explained. | Preserve acknowledgements. |
Set access removal by risk: privileged and finance access may end immediately, while controlled handover uses monitored alternatives.
Keep the exit file separate from general HR notes and limit access to people who need the information.
Record the decision, owner, due date and evidence expected. A verbal explanation should become an approved working, board note, contract amendment, statutory filing or reconciliation before the item is treated as closed.
Rules, forms, thresholds and procedures can change. Use the latest official source and the actual company facts rather than copying a prior-year control or another entity’s legal position.
Classify every exception as a timing difference, data error, missing document, legal non-compliance, control-design gap or control-operating failure. This prevents management from treating fundamentally different problems as one ageing list.
The exception file should show amount or exposure, root cause, immediate correction, preventive action, owner and board-escalation threshold. Repeated low-value issues can become material when they reveal weak systems or management override.
Close the item only after the evidence agrees across source documents, books, portal data and management reporting. A screenshot or email promise is not equivalent to a completed filing, lender waiver, signed contract or reconciled ledger.
The control should operate across the full transaction population, not only the samples management expects a reviewer to inspect. For this topic, the key stages are authority, payroll, assets and access, continuing duties. Each stage should identify the source system, preparer, reviewer, deadline and evidence retained.
A useful management review asks whether the legal document, accounting entry, bank movement, tax treatment and public filing describe the same event. Differences may be valid, but they should be reconciled through a dated working rather than explained from memory during audit or diligence.
Materiality should determine escalation, not whether the company keeps a record. Repeated small exceptions can show weak master data, unclear authority, system bypass or management override. Root cause and preventive action should therefore be documented separately from the immediate correction.
Employment controls should balance legal process, confidentiality, dignity and operational security. The company should preserve a need-to-know record without circulating sensitive complaint, health or disciplinary information through ordinary email groups.
HR, payroll, IT, legal and the employee’s manager should use one controlled case or exit tracker. Separate spreadsheets often cause inconsistent dates, unrecovered assets, continued system access or incorrect statutory reporting.