Audit Log
The audit log is the workspace’s append-only system of record for governance-relevant activity. It provides the evidence trail that compliance teams, auditors, and platform operators rely on when reconstructing the lifecycle of a product, passport, or member action.
What Is Logged
Properties of the Log
- Append-only — entries are never modified or deleted in place
- Tenant-scoped — every entry is bound to a
brand_idand isolated by RLS - Actor-attributed — every entry records who performed the action, including platform staff acting inside a tenant
- Time-stamped deterministically — entries are ordered by
created_atto support reproducible reconstruction - Cross-referenced — entries link to the affected product, passport, or member record
Where to Read It
- Settings → Audit Log — interactive viewer with filters by actor, action category, and date range
- API — programmatic access for export into a brand’s compliance platform
- CSV export — full or filtered export for offline retention
Retention
Audit entries are retained for the lifetime of the workspace. Workspaces on enterprise plans can extend retention into long-term archival storage for regulatory archiving (for example, ESPR record-keeping requirements).