Am I right to think that if a group work together (with vault held in say a shared Dropbox folder):
a) they share the vault password,
b) when 1 of the group leaves, the password can be changed, (and distributed the remaining members) - and hence effectively remove access to the repository for the one who left.
But keep in mind that there might be sync conflicts if two or more people are working on the same document.
If this happens, cryptomator will create 2 files and not merge them.
See here for details: