# Audit trail {% hint style="info" %} This feature is currently available to enterprise tiers only. {% endhint %} ### What is Audit? Audit gives governance teams a single place to see who did what, when, and where inside your NLX workspace. It captures every write and delete event across applications, flows, integrations, guardrails, and workspace settings. This helps you to reconstruct change history and quickly spot misconfigurations or suspicious activity. Use audit to: * Trace configuration changes that affect production behavior or SLAs * Confirm who created, updated, or removed a specific resource (and when) * Demonstrate control and accountability for internal and external audits * Support security investigations by reviewing activity around sensitive assets * Monitor adherence to change-management processes and approval workflows * Provide evidence for compliance frameworks (e.g., SOC 2, HIPAA, GDPR) by showing a tamper-resistant log of changes #### How to access audit logs {% @arcade/embed flowId="q3nWWwF49xnZ7gMNabbU" url="" %} 1. Slick your username in the workspace menu 2. Select *Workspace settings* 3. Click the *Audit* tab #### What you’ll see Each row in the Audit table includes: * *Event*: Short description of the change (for example, “Updated flow,” “Deleted integration”). * *Event source*: The system component that reported the change (such as Canvas, Integrations, or Workspace settings). * *Event type*: Whether the action was a Write (create/update) or Delete. * *Time + User*: When the event occurred and which user performed it. Hover over the user’s initial to see their email address. #### Filtering audit events Use filters at the top of the Audit page to narrow the log to the activity you care about: * *Start / End time*: Limit results to a specific date and time range * *Principal email*: View events performed by a specific user * *Event type*: Filter by Write or Delete actions * *Event name*: Focus on a particular kind of change (for example, “Deployment created”) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.nlx.ai/platform/nlx-platform-guide/governance/audit-trail.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.