> ## Documentation Index
> Fetch the complete documentation index at: https://docs.carelane.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Audit

> Review organization activity and changes

The audit log provides a record of all significant actions within your organization, supporting compliance and accountability.

## What is Audited

The audit log captures every significant change at the Organisation Unit level:

| Category                  | Events                                                                  |
| ------------------------- | ----------------------------------------------------------------------- |
| **Organisation**          | Organisation created / updated, branding and logo changes               |
| **Members**               | Invitations, role changes, removals                                     |
| **Studies**               | Study created, updated, and **deleted** (including permanent deletions) |
| **Partner Organisations** | Partner created, updated, deleted                                       |
| **Templates**             | Creation, modification, deletion                                        |
| **Queries**               | Query created, updated, deleted                                         |
| **Site Updates**          | Study-site relationship changes                                         |
| **Access**                | Login events                                                            |

## Accessing Audit Logs

<Steps>
  <Step title="Navigate to Organization">
    Open your organization.
  </Step>

  <Step title="Open Audit">
    Go to Settings > Audit Log.
  </Step>

  <Step title="View Events">
    Browse the audit event list.
  </Step>
</Steps>

## Audit Event Details

Each audit event includes:

| Field         | Description              |
| ------------- | ------------------------ |
| **Timestamp** | When the event occurred  |
| **User**      | Who performed the action |
| **Action**    | What was done            |
| **Target**    | What was affected        |
| **Details**   | Additional context       |

## Filtering Events

Filter audit logs by:

| Filter         | Options             |
| -------------- | ------------------- |
| **Date Range** | Start and end dates |
| **Event Type** | Category of event   |
| **User**       | Specific user       |
| **Target**     | Specific resource   |

<Steps>
  <Step title="Set Filters">
    Configure filter criteria.
  </Step>

  <Step title="Apply">
    Apply filters to view results.
  </Step>

  <Step title="Clear">
    Clear filters to see all events.
  </Step>
</Steps>

## Common Event Types

### Member Events

| Event                    | Description              |
| ------------------------ | ------------------------ |
| **member.invited**       | User was invited         |
| **member.joined**        | User accepted invitation |
| **member.role\_changed** | Role was updated         |
| **member.removed**       | User was removed         |

### Setting Events

| Event                | Description            |
| -------------------- | ---------------------- |
| **settings.updated** | Configuration changed  |
| **branding.updated** | Logo or colors changed |

### Study Events

| Event                     | Description                                                    |
| ------------------------- | -------------------------------------------------------------- |
| **study.created**         | New study created                                              |
| **study.status\_changed** | Study status updated                                           |
| **study.deleted**         | Study permanently removed (captured at the organisation level) |

## Exporting Audit Logs

Export logs for compliance:

<Steps>
  <Step title="Set Filters">
    Configure desired date range and filters.
  </Step>

  <Step title="Export">
    Click Export to download.
  </Step>

  <Step title="Select Format">
    Choose CSV or other available format.
  </Step>
</Steps>

## Using Audit Logs

### Compliance

Support compliance requirements:

* Demonstrate access controls
* Document changes over time
* Support regulatory audits

### Investigation

Investigate issues:

* Determine who made a change
* Understand when something happened
* Trace actions leading to an issue

### Monitoring

Monitor for unusual activity:

* Unexpected access patterns
* Unusual configuration changes
* Suspicious behavior

## Retention

Audit logs are retained per:

* Regulatory requirements
* Organization policies
* System configuration

<Note>
  Contact your administrator for specific retention periods.
</Note>

## Best Practices

<AccordionGroup>
  <Accordion title="Regular Review">
    Review audit logs periodically for unusual activity.
  </Accordion>

  <Accordion title="Export for Retention">
    Export logs for long-term retention if needed.
  </Accordion>

  <Accordion title="Document Reviews">
    Keep records of audit log reviews.
  </Accordion>

  <Accordion title="Investigate Anomalies">
    Follow up on any unusual events.
  </Accordion>
</AccordionGroup>

## Related

<CardGroup cols={2}>
  <Card title="Audit Trails" icon="clock-rotate-left" href="/security-compliance/audit-trails">
    Study-level audit trails.
  </Card>

  <Card title="Members" icon="users" href="/organization-admin/members">
    Member management.
  </Card>
</CardGroup>
