Audit Log & Compliance

Complete financial evidence trail. Every action — invoice status changes, transaction edits, client updates, settings modifications — is logged with timestamp, user ID, and before/after values. Exportable for your accountant or auditor.

What gets logged

Invoices

CREATE, UPDATE status (DRAFT→SENT→PAID→OVERDUE→CANCELLED), DELETE

Transactions

CREATE, UPDATE (amount, category, date, currency), DELETE

Clients

CREATE, UPDATE (name, email, payment terms), DELETE

Settings

UPDATE (tax rate, currency, business info, notification preferences)

Time Entries

CREATE, UPDATE (duration, rate, description), DELETE

Reminders

SENT / FAILED with delivery status and error reason

What's recorded in each log entry

  • Timestamp (UTC, to the millisecond)
  • User ID (who performed the action)
  • Action type (CREATE, UPDATE, DELETE)
  • Entity type (Invoice, Transaction, Client, etc.)
  • Entity ID (which specific record was affected)
  • Changes (JSON diff of before/after values, or summary for deletes)

Data retention & compliance

  • Active account: audit logs retained for the life of your account
  • Account deletion: logs retained for 90 days (recovery window), then permanently deleted
  • GDPR compliance: logs contain only business actions, not personal financial data — exportable on request
  • Logs are append-only: once written, entries cannot be modified or deleted by any user

Coming soon

A dedicated audit log viewer in the dashboard. Currently, audit logs are stored in your database and accessible via export. See our Roadmap for the planned timeline.

Questions about compliance? [email protected]