Audit Logs & Compliance

SecurityCreds maintains comprehensive audit logs of all account activity. Track who accessed what, when, and from where for security monitoring and compliance.

Understanding Audit Logs

Every significant action in SecurityCreds is logged, including:

Credential operations (create, view, copy, edit, delete)
Vault management (create, share, delete)
Team activities (member adds, removes, role changes)
Authentication events (login, logout, failed attempts)
Account changes (password changes, 2FA setup)

Viewing Audit Logs

To access your audit logs:

Navigate to Settings > Audit Logs
View the activity timeline
Use filters to narrow results

Available Filters

Filter	Description
Date Range	Show events from specific time period
Action Type	Filter by operation (view, create, delete, etc.)
Resource Type	Filter by item type (credential, vault, team)
User	Filter by specific team member (admin only)
Status	Filter by success or failure

Logged Actions

Credential Actions

Action	Description
`credential.create`	New credential was created
`credential.view`	Credential details were viewed
`credential.copy_password`	Password was copied to clipboard
`credential.update`	Credential was modified
`credential.delete`	Credential was deleted
`credential.move`	Credential was moved to different vault

Vault Actions

Action	Description
`vault.create`	New vault was created
`vault.update`	Vault settings were changed
`vault.delete`	Vault was deleted

Sharing Actions

Action	Description
`sharing.invite`	Invitation sent to share vault
`sharing.accept`	User accepted vault invitation
`sharing.revoke`	Access was revoked from user
`sharing.permission_update`	Member permissions were changed

Authentication Actions

Action	Description
`auth.login`	Successful login
`auth.login_failed`	Failed login attempt
`auth.logout`	User logged out
`auth.password_change`	Master password was changed

Exporting Logs

Enterprise Feature

Audit log export is available on the Enterprise plan. This feature enables compliance reporting and integration with SIEM systems.

Enterprise users can export audit logs:

Go to Settings > Audit Logs
Apply any desired filters
Click Export
Choose format (CSV or JSON)
Download the export file

Export Formats

CSV - Spreadsheet-compatible format for Excel/Google Sheets analysis
JSON - Structured format for SIEM integration and programmatic processing

Compliance Features

SecurityCreds audit logs support various compliance requirements:

SOC 2

Complete activity logging for all user actions
Timestamps in ISO 8601 format
IP address and user agent tracking
Success/failure status for all operations

HIPAA

Access tracking for PHI-containing credentials
Audit trail retention
Export capability for compliance audits

GDPR

User activity transparency
Data access logging
Exportable for data subject requests

Log Retention

SecurityCreds retains audit logs based on your plan:

Basic - 30 days
Pro - 90 days
Enterprise - 1 year (with optional extended retention)
Educator - 30 days

Long-term Storage

Enterprise customers can request extended log retention for compliance purposes. Logs are archived to secure cold storage and can be retrieved on request.

Security Monitoring

Use audit logs to monitor for suspicious activity:

Signs of Compromise

Multiple failed login attempts
Logins from unusual locations
Mass credential access in short time
Unexpected permission changes
Off-hours activity

Best Practices

Review logs regularly - Weekly review catches anomalies early
Set up alerts - Enterprise users can configure automated alerts
Export for analysis - Use SIEM tools for advanced threat detection
Investigate anomalies - Follow up on unusual patterns