Hi Atlassian, 

I have a project which is used for a client. They use the help center to create ticket and to grant them access I have added them as customers in the project. 

This is done by first adding an organisation group and then adding all the customers into this. It works perfectly, and I can add/remove anyone in this organisation group. 

However, suddenly I saw that other people was added as customers (not done manually). All the people is known to me and have a license but they should not be customers in this project. 

Those people are included in the "root" of the customer menu, so alongside the group I have created. And I cannot manage them like I can with the ones within the organisation group I have created. 

I guess these are automatically added either by global permissions or something else. 

But my questions is how to back track this? I need these people removed from the project but don't know where to start.