Security
Audit Logs
How Antei tracks and stores audit logs to maintain compliance visibility across organizations.
Audit Logs
Antei maintains structured audit logs for all critical activities within the platform — including integration setup, sync operations, and outbound actions. These logs provide visibility, support compliance reviews, and help organizations investigate changes over time.
What We Log
We track and store logs for the following actions:
- Integration setup and authorization
- Data sync initiations and completions
- Webhook events received and processed
- Background job executions (e.g., return generation, invoice rendering)
- Session creation and expiry
- Manual triggers and admin actions (if applicable)
Each log entry includes:
- Timestamp
- Organization ID
- Event type
- Actor (user, system, or integration)
- Optional metadata (status, target object, error details)
Where Logs Are Stored
- Primary Logging: Stored securely inside Xano under organization-scoped tables
- Viewable by Admins: Admin users can access audit logs from the Org Settings > Logs section in the platform
- Retention Period: Logs are retained for a minimum of 12 months and extended for enterprise plans
Access & Integrity
- Read-Only Access: No log entries can be edited or deleted by users
- Session-Scoped Views: Logs are only visible to admins within their authorized organizations
- Log Sanitization: Sensitive values (e.g. tokens, credentials) are never written to logs
Use Cases
Audit logs are used for:
- Compliance reviews
- Debugging sync errors
- Tracking integration health
- Investigating user activity across modules
Questions?
For detailed logging structures or export requests, contact security@antei.com.