Someone came up with a scenario where a chatbot is tricked into handing over sensitive data, lol.

What you would presumably do here is, either hire actual support staff (lol), or limit the data which that particular context has access to.

Presumably, it can't disclose anything or access anything which it is technically incapable of accessing.