Currently, for users who left before BBID was implemented, if a user's access was removed but their permissions remained, there is no way to go back and remove their permissions. This results in them showing up as viable options for reviewers in the Expense Management module.