The workspace audit log records account, team, and security activity across your Zenovay workspace. You can search and filter the trail in the dashboard and export it to CSV for compliance reviews and investigations.
Where to find it
Open Settings → Security → Audit log. The audit log is workspace-wide: it shows activity for every member of the team, not just your own. To review your personal sign-in activity instead, see Settings → Account → Security.
The log is read-only. Entries are written automatically as actions happen, and they cannot be edited or removed from the UI.
What gets logged
Each entry records the actor (member email), the action, the affected resource (its module type), a timestamp, and any action-specific details. If an action failed, the error message is shown inline. The audit log covers categories like:
| Category | Example actions |
|---|---|
| Authentication | Password changed, password reset requested, login attempt, sign-out |
| Team & members | Member invited, member joined, member removed, role changed, invitation accepted or revoked |
| Websites & settings | Website added, website settings updated, website removed, tracking code regenerated, domain or timezone changed |
| Billing | Subscription changed, created, updated, cancelled, or reactivated, checkout started |
| API keys | API key created, deleted, or regenerated |
| Data | Data exported, account deleted |
| Agency & white-label | Client added, updated, or removed, websites assigned, white-label settings updated or reset |
Info
Source IPs are stored as a salted SHA-256 hash, never in plaintext. Where an IP appears (for example, in the CSV export), it is the hash, not a raw IP address.
Search and filter
The log is shown as a sortable table with columns for the action, module, actor (member email), details, and date. You can:
- Search across the action, member email, module, and details.
- Filter by action to narrow the list to a single event type.
- Filter by date range (all time, last 7, 30, or 90 days).
- Sort by action, module, actor, or date by clicking a column header.
When an action fails, its error message appears beneath the details in that row.
Export
CSV export of the audit log is available on Pro and higher. On the Free plan the Export button prompts you to upgrade. Use the export option in the audit log to download the trail as a CSV file. You pick a date range, and the maximum lookback window depends on your plan:
| Plan | CSV export | Maximum export window |
|---|---|---|
| Free | Not available | — |
| Pro | Available | 90 days |
| Scale | Available | 180 days |
| Enterprise | Available | 365 days |
The CSV includes the date, time, action, member email, status, details, and hashed IP for each entry, so you can analyze it in a spreadsheet or hand it to auditors.
Retention
Audit logs are kept for 24 months as your administrative trail, then purged automatically. Analytics event retention is separate and tiered by plan (Free 1 year, Pro 2 years, Scale 4 years, Enterprise custom).
Best practices
- Review security-relevant events (failed logins, role changes, API key creation) regularly.
- Export a CSV before any access change you want to document for compliance.
- Cross-reference the audit log with your billing and member changes when investigating unexpected activity.
Troubleshooting
An action is missing. Confirm the date range covers when it happened, clear any search text or action filter, and allow a short processing delay for very recent events.
I can't see the audit log. The audit log lives under Settings → Security and requires the appropriate workspace role. Team owners and admins have full access.
Export is shorter than expected. The export window is capped by your plan (see the table above). Upgrade for a longer lookback, or export in segments.