Conversation audit log

Written by Aashiq, Founder, AskVault · Reviewed by Aashiq

Last updated: May 15, 2026 · 3 min read

TL;DR

Every conversation action logs: claim, escalate, snooze, resolve, tag, internal note. Author, timestamp, before/after state captured. Retained 365 days standard, 6 years on Enterprise. Searchable and exportable. Useful for SOC 2, GDPR, and HIPAA compliance.

What gets logged

12 event types per conversation:

1. Created. Initial message.
2. Claimed. Agent took ownership.
3. Released. Claim returned to unclaimed.
4. Reassigned. Moved to another agent.
5. Snoozed. Conversation paused.
6. Wakened. Snooze ended.
7. Tag applied / removed.
8. Priority changed.
9. Escalated. Routed to human.
10. Note added. Internal annotation.
11. Resolved. Issue closed.
12. Deleted / archived.

Plus bot-side events: skill fired, message sent, knowledge retrieved.

Where to view

Conversation detail > Timeline. Shows the audit log inline.

Conversation detail > Audit > Full Log. Detailed view with filters.

Dashboard > Audit Log. Workspace-wide audit search.

Per-event details

Each entry captures:

• Event type.
• Author (user, API key, or bot).
• Timestamp.
• Before/after state.
• Reason if provided.
• IP address and user agent.

Searching the log

Filters:

• Conversation ID.
• Author.
• Event type.
• Date range.
• Channel.
• Free-text within reasons or notes.

About 95% of compliance queries answer in under 2 minutes via the search interface.

Retention

• Standard plans. 365 days.
• Enterprise. 6 years.
• After retention. Audit entries hard-delete; not recoverable.

Some logs may persist longer for legal compliance (financial transactions, etc.).

Export

Per-conversation. Export as JSON or CSV. Useful for sharing specific cases.

Workspace-wide. Bulk export for SOC 2 / SOX audits. Filter by date range and event type.

Compliance uses

SOC 2. Access controls audit; show who accessed what when.

GDPR. Right-to-access requests; show all actions on a customer's data.

HIPAA. Audit of PHI access.

Internal compliance. Quarterly review of bot behavior, agent actions.

API access

curl https://api.askvault.co/v1/audit-log?conversation_id=conv_xxx \
  -H "Authorization: Bearer ak_xxx"

Returns paginated event list.

Limits

• Events per conversation. No hard cap.
• Retention. Plan-dependent.
• Export size. 10,000 events per single export.
• Search latency. Under 2 seconds typical.

Common pitfalls

Missing audit on conversation. Conversation pre-dates retention window. Older events not viewable.

Author shows as "Removed user". User left the team; conversation history reassigned to placeholder.

Audit log shows skill firing without obvious customer action. Some skills auto-trigger on context. Click for full reason.

FAQ

Can I edit audit entries?

No. Append-only by design. Corrections via follow-up entries.

Does the bot's reasoning log too?

Yes. The bot's retrieval and reasoning logs as part of the audit entries.

How long are bot-reasoning details retained?

Same as conversation retention.

Related guides

• Internal notes
• Conversation lifecycle
• Data handling
• Security overview

See RAG-grounded answers in action

Every AskVault answer is grounded in the source documents you upload. Never hallucinated.

Try AskVault Free → Read the API docs

Was this page helpful? Yes No