Audit Logs
Estimated reading time: 5 minutes
Audit logs record who did what and when across your clariBI organization. Use them for security monitoring, compliance, and troubleshooting.
Plan Availability
- All plans: personal activity log (your own actions)
- Professional+: organization-wide audit trail
- Enterprise: extended retention and audit log export
What Is Logged
clariBI records these event types:
- Authentication: login, logout, failed login attempts, MFA events
- User management: invitations, role changes, user removal
- Data sources: connections created, modified, deleted, sync events
- Content: dashboard/report creation, editing, deletion, sharing
- AI usage: queries run, reports generated, credits consumed
- Settings: security settings changes, billing changes, API key management
Viewing Your Activity Log
Every user can view their own personal activity log from Settings > Account. The activity log shows important account activity like logins, billing events, settings changes, and significant usage.
The log viewer supports filtering by:
- Time range: Last 7 Days, Last 30 Days, or Last 90 Days
- Event type: authentication events (login, logout, MFA), settings changes (profile, API keys), and data events (data access, exports, dashboard creation, report generation)
Log Retention
| Plan | Retention |
|---|---|
| Professional | 90 days |
| Enterprise | 1 year (extended retention) |
Exporting audit logs (Enterprise)
On Enterprise plans, you can export the full audit trail to JSON or CSV for compliance review or long-term retention. From the Audit Logs page, click Export and choose your format and date range.
Exports are also available via the REST API. The GET /api/v1/audit-logs/export/ endpoint returns a downloadable file scoped to your authenticated key.
Enterprise plans include extended audit log retention — see Subscription Plans for current retention windows.
Security Monitoring
Key events to watch for:
- Failed login attempts — multiple failures for the same user may indicate a brute-force attack
- Unusual access patterns — logins from unexpected locations or times
- Role escalation — users being promoted to higher roles
- Data source changes — unexpected new connections or credential modifications
- Public link creation — data being shared externally
Related
Ready to try clariBI?
Start your free 14-day trial. No credit card required.