Audit Log

The audit log is the workspace’s append-only system of record for governance-relevant activity. It provides the evidence trail that compliance teams, auditors, and platform operators rely on when reconstructing the lifecycle of a product, passport, or member action.

What Is Logged

CategoryExamples
Workspace governanceMember invitations, role changes, ownership transfers, plan changes
Product lifecycleProduct creation, attribute changes, deletion, identifier changes
Passport lifecycleMint, publish, revoke, controlled update, break-glass amendment
Theme & template changesTheme assignment, template publish, advanced template publish
Localisation changesMarket Pack assignment, multilingual payload publish
API & integrationAPI credential issuance and revocation, bulk update jobs
Tia AI activityTia interactions, staged actions, approvals
Platform interventionsPlatform-admin access, break-glass approvals

Properties of the Log

  • Append-only — entries are never modified or deleted in place
  • Tenant-scoped — every entry is bound to a brand_id and isolated by RLS
  • Actor-attributed — every entry records who performed the action, including platform staff acting inside a tenant
  • Time-stamped deterministically — entries are ordered by created_at to support reproducible reconstruction
  • Cross-referenced — entries link to the affected product, passport, or member record

Where to Read It

  • Settings → Audit Log — interactive viewer with filters by actor, action category, and date range
  • API — programmatic access for export into a brand’s compliance platform
  • CSV export — full or filtered export for offline retention

Retention

Audit entries are retained for the lifetime of the workspace. Workspaces on enterprise plans can extend retention into long-term archival storage for regulatory archiving (for example, ESPR record-keeping requirements).