Every action the assistant takes is recorded. This is your complete, permanent record of AI activity.
The audit log answers the question "what did the assistant do, for whom, and what happened?" Every tool call, every connection, and every refused request is recorded. This is central to trust: nothing the assistant does is hidden.
What each entry records
| Field | What it captures |
|---|---|
| Action & Tool | What was done, and which tool did it. |
| User | The iVendNext user the assistant acted as. |
| Status | Success, Error, Timeout, or Permission Denied. |
| Timestamp & Duration | When it happened and how long it took. |
| Target | The document type and record involved. |
| Inputs & Outputs | What was sent and returned. Sensitive values are automatically hidden. |
| Connection details | The session and the network address of the request. |
| Errors | Any error type and message, for troubleshooting. |
What gets logged
Every tool run, whether it succeeds, errors, times out, or is refused.
Connection events, when an assistant discovers the available tools.
Security events, such as a permission being denied. Serious events are flagged at a higher severity.
Privacy and retention
Sensitive data is redacted. Passwords, keys, and tokens are automatically replaced before they are stored.
Entries are kept for 180 days by default, then cleaned up automatically each day. Administrators can change this period, or set it to zero to keep entries indefinitely.
Who can see the log
| Role | Visibility |
|---|---|
| Assistant Admin, System Manager, Auditor | All entries, across all users. |
| Assistant User | Only their own entries. |