We have identified a security risk where staff members retain access to features even after their roles are changed, as long as they remain logged in. This poses a significant threat, especially when a staff member leaves the company. We request an automatic logout feature for any staff member whose role or access permissions are altered, to ensure security and privacy. Deleting staff members is not an option as it removes historical data, so automatic logout is essential.