Trust me, I’ve worked in the corporate legal world and been involved in enough cases of accused IP theft to know that this is true, and is a huge deal.
“According to Osterman Research’s “Best Practices for Protecting Your Data When Employees Leave Your Company”, 69 percent of organizations have experienced data loss from employee movements (departure, changing roles, re-location), and 50 percent of employees who left their jobs in the last 12 months kept confidential corporate data.”
There’s a lot to like in the article about ways to lessen those percentages. It’ll never be perfectly secure, but you can get a lot closer than we do now, which is almost inviting people to take data with them.
One of the things I most like about it that the procedures for exiting employees should be an automatic. The communication about an employee leaving, and the steps that are taken when that happens should just be done, every single time, no questions asked. But, in reality, I’ve worked places where that communication doesn’t happen, and security access isn’t even disabled for a while after they are gone. I’ve also worked places where the HR was handled from the East Coast, and I was on the West Coast, and my access was terminated in the middle of the work day, but hey, at least the steps were getting done! 😉