Audit Logs
Track every action in your workspace with a complete audit trail
Overview
Audit logs provide a chronological record of every significant action taken in your IdeaLift workspace. Every login, data change, and configuration update is recorded with the user who performed it, when it happened, and relevant context.
Audit logs are essential for security monitoring, compliance audits (SOC 2, HIPAA), incident investigation, and understanding how your team uses IdeaLift.
What's Logged
Authentication
- ✓User login (email/password, SSO, OAuth)
- ✓Failed login attempts
- ✓User logout
- ✓MFA enrollment and verification
- ✓Password reset requests
- ✓SSO configuration changes
Data Access
- ✓Dashboard viewed
- ✓Idea details viewed
- ✓Analytics report accessed
- ✓Data export initiated
- ✓API key used to access data
Data Modification
- ✓Idea created (manual or captured)
- ✓Idea updated (title, description, status)
- ✓Idea deleted
- ✓Idea pushed to issue tracker
- ✓Vote cast or removed
- ✓Decision applied (approved, rejected, deferred)
Admin Actions
- ✓Team member added or removed
- ✓Role changed (Member, Admin, Owner)
- ✓Workspace settings updated
- ✓Integration connected or disconnected
- ✓SSO or SCIM configuration changed
- ✓Billing plan changed
API Key Usage
- ✓API key created
- ✓API key revoked
- ✓API request made with key (endpoint, method)
- ✓Rate limit exceeded
Log Entry Details
Each audit log entry contains the following information:
| Field | Description |
|---|---|
| Timestamp | Exact date and time of the event (UTC) |
| User | Name and email of the user who performed the action |
| Action | The specific action taken (e.g., idea.created, user.login, settings.updated) |
| Resource | The type and ID of the affected resource |
| IP Address | The IP address of the request origin |
| User Agent | Browser or client information |
| Metadata | Additional context specific to the action (e.g., integration name, previous value) |
Viewing Audit Logs
Access audit logs from your workspace settings. Only Admins and Owners can view audit logs.
- Go to Dashboard → Settings → Security
- Click "Audit Logs"
- Browse the event timeline, with the most recent events shown first
- Click any entry to expand its full details and metadata
Plan requirement: Audit logs are available on Scale and Enterprise plans. Growth plan workspaces can view login events only. Starter and Pro plans do not have access to audit logs.
Filtering & Search
Use filters and search to find specific events in your audit trail.
Available filters
- • Date range — Specify start and end dates
- • User — Filter by specific team member
- • Action type — Authentication, data modification, admin, etc.
- • Resource type — Ideas, users, settings, integrations
- • IP address — Filter by request origin
Search tips
- • Search by user email:
[email protected] - • Search by action:
idea.deleted - • Search by resource ID to trace all actions on a specific idea or user
- • Combine filters for targeted investigations
Exporting Audit Logs
Export audit logs for compliance reviews, internal audits, or integration with your SIEM system.
Export formats
How to export
- Navigate to the audit logs page
- Apply any desired filters (date range, user, action type)
- Click "Export" in the top-right corner
- Select your preferred format (CSV or JSON)
- The export will be generated and downloaded to your browser
API access
Enterprise plan customers can also retrieve audit logs programmatically via the REST API. This is useful for streaming events to external SIEM platforms such as Splunk, Datadog, or Sumo Logic.
Retention Policy
Audit log retention varies by plan to meet different compliance requirements.
| Plan | Retention Period | Notes |
|---|---|---|
| Growth | 30 days | Login events only |
| Scale | 1 year | All event categories |
| Enterprise | Unlimited | All events, custom retention available |
Compliance tip: SOC 2 Type II typically requires at least 12 months of audit log retention. The Scale plan meets this requirement. For organizations with longer retention needs, the Enterprise plan offers unlimited storage with optional archival to your own S3 bucket.
Related Documentation
Need Help?
Questions about audit logs or compliance requirements?