If an employee who set up an account with two-factor authentication (2FA) leaves the company, you should immediately disable their access and follow the account’s recovery or admin reset process to regain control. This often involves using a backup code, recovery email, or contacting the service provider. To avoid this issue, always use store-controlled email addresses and ensure ownership of critical accounts stays with management or IT—not individual employees.