Audit Log

Audit logging is a foundational compliance requirement for organizations processing sensitive personal data under GDPR and Norwegian sector-specific regulations. Blindeforbundet and NHF handle health-adjacent data and encrypted assignments that require verifiable access trails. The audit log enables organizations to respond to data subject access requests, demonstrate accountability to Bufdir and other funding bodies, and conduct internal investigations when data incidents occur. For Norse Digital Products, providing a robust audit trail reduces liability exposure and strengthens the platform's position as a compliant, enterprise-grade solution suitable for publicly funded health and welfare organizations.

Audit log entries are written to the audit_logs PostgreSQL table, which references users and organizations for tenant-scoped queries. Log writes must be non-blocking and resilient - use a fire-and-forget pattern with a dedicated write queue to avoid impacting primary operation latency. The schema captures event_type (enum), entity_type, entity_id, old_value (JSONB), new_value (JSONB), ip_address, user_agent, and created_at. The admin UI provides filterable, paginated log views with date range, user, and event type filters. Log retention policy and export functionality (CSV/JSON) should be configurable. Logs must never be deletable via the UI - only via scheduled retention jobs with admin approval.