Audit Logs
A complete, searchable record of every action taken in your account — built for compliance, security, and accountability.
Overview
LinkTime's audit log records every significant action in your account — bookings created, settings changed, team members added, integrations connected, and more. This gives you a tamper-proof timeline of who did what and when, which is essential for:
- •Compliance reporting — SOC 2, GDPR, and internal audit requirements
- •Security investigations — trace suspicious activity back to a specific action and IP address
- •Team accountability — see which admin changed a setting or removed a member
- •Debugging — understand the sequence of events leading to unexpected behavior
Zero impact on performance — Audit logging is fire-and-forget. It never blocks or slows down your bookings, API calls, or other operations. If the logging system has a transient error, your business logic continues unaffected.
Accessing Your Audit Log
Your audit log is available in the dashboard under Settings → Audit Log:
- 1Go to your Dashboard
- 2In the left sidebar, look under the Settings section
- 3Click Audit Log (shield icon)
The audit log page shows a chronological table of all actions, with the most recent events at the top. You can filter, search, and export the data from this page.
What Gets Logged
Every auditable action is logged with a timestamp, the acting user, and relevant context. Here is the complete list of tracked actions:
| Category | Action | Display Label |
|---|---|---|
| Bookings | booking.created | Booking Created |
booking.cancelled | Booking Cancelled | |
booking.rescheduled | Booking Rescheduled | |
| Event Types | event_type.created | Event Type Created |
event_type.updated | Event Type Updated | |
event_type.deleted | Event Type Deleted | |
| Team & Organization | team.created | Team Created |
team.member_added | Team Member Added | |
team.member_removed | Team Member Removed | |
org.member_invited | Member Invited | |
org.member_removed | Member Removed | |
org.role_changed | Role Changed | |
| Integrations | integration.connected | Integration Connected |
integration.disconnected | Integration Disconnected | |
api_key.created | API Key Created | |
api_key.deleted | API Key Deleted | |
| Workflows | workflow.created | Workflow Created |
workflow.updated | Workflow Updated | |
workflow.deleted | Workflow Deleted | |
| Voice Agents | voice_agent.created | Voice Agent Created |
voice_agent.updated | Voice Agent Updated | |
voice_agent.deleted | Voice Agent Deleted | |
| Payments | payment.received | Payment Received |
payment.refunded | Payment Refunded | |
| Settings | settings.updated | Settings Updated |
| Authentication | auth.login | Signed In |
Understanding Log Details
Each audit log entry contains structured details depending on the action type. This makes entries easy to read and search:
Booking Actions
Shows the invitee's email, event type name, and start time:
Integration Actions
Shows which service was connected or disconnected:
Team & Organization Actions
Shows the affected member, their role, and any role changes:
Settings Actions
Shows which setting was changed, with before/after values:
Resource Actions (Events, Workflows, Voice Agents)
Shows the resource name:
Filtering & Searching
The audit log supports two ways to narrow down entries:
Category Filter
Use the dropdown at the top of the audit log page to filter by category. Available categories:
Text Search
Type in the search box and press Enter to find entries matching a keyword. Search looks across the action name, resource type, and resource ID. For example, searching “zoom” would find integration connect/disconnect events for Zoom.
CSV Export
Click the Export CSV button to download your audit log as a CSV file. The export includes all entries matching your current filters (category and search). The CSV contains:
- ✓Time — ISO 8601 timestamp of the action
- ✓Action — Human-readable action label (e.g., “Booking Created”)
- ✓Resource — The type of resource affected (e.g., “booking”, “event_type”)
- ✓Resource ID — The unique identifier of the affected resource
- ✓Details — JSON-encoded context (invitee email, service name, etc.)
- ✓IP Address — Masked or full depending on your plan
The filename is auto-generated with the current date, e.g., audit-log-2026-02-12.csv.
Retention by Plan
Audit log retention varies by plan. You'll only see entries within your plan's retention window:
| Plan | Retention | Use Case |
|---|---|---|
| Free | 7 days | Recent activity awareness |
| Pro | 90 days | Quarterly review and basic compliance |
| Business | 365 days | Full annual audit trail for enterprise compliance |
Note: Entries older than your retention window are not deleted immediately — they are simply hidden from view. A daily cleanup process permanently removes entries older than 365 days (the maximum retention for any plan).
IP Address & Privacy
LinkTime records the IP address associated with each action for security purposes. How the IP is displayed depends on your plan:
| Plan | IP Display | Example |
|---|---|---|
| Free / Pro | Masked (last octet hidden) | 192.168.1.xxx |
| Business | Full IP address | 192.168.1.42 |
This aligns with the GDPR data minimization principle — IP addresses are only fully visible when the plan specifically calls for full audit capabilities. For IPv6 addresses, the last segment is masked (e.g., 2001:db8::1234:xxxx).
Organization Audit Log
If you're part of an organization, admins have access to a separate organization-wide audit log that shows actions from all members. This is essential for team oversight and compliance.
API Access
You can query the audit log programmatically via the REST API. Authentication is required.
Personal Audit Log
Response Format
Query Parameters
| Parameter | Type | Default | Description |
|---|---|---|---|
page | number | 1 | Page number (1-indexed) |
limit | number | 50 | Results per page (max 100) |
category | string | all | Filter: all, bookings, events, team, settings, integrations, workflows, payments, voice |
search | string | — | Text search across action, resource, and resource ID |
export | string | — | Set to “csv” to download as CSV file |
Organization Audit Log API
Same query parameters as the personal audit log. Response includes an additional user object (name, email, image) on each log entry.
Data Cleanup
A daily automated process permanently deletes audit log entries older than 365 days. This provides defense-in-depth — even if the API-level retention filter has an issue, the cleanup ensures no data persists beyond the maximum retention window.
Each audit log entry stores the user's plan at the time the action occurred (planAtTime). This is a defense-in-depth measure — it allows verification even if a user's plan changes later.
FAQ
Can audit logging slow down my bookings?
No. Audit logging is fire-and-forget — it runs in the background and never blocks or delays your business logic. Even if the audit system experiences a transient error, your bookings, API calls, and other operations continue normally.
Can I delete specific audit log entries?
No. Audit logs are append-only and cannot be selectively deleted. This is by design — a tamper-proof audit trail is essential for compliance. Entries are automatically cleaned up after they exceed the maximum retention period (365 days).
What happens when I upgrade or downgrade my plan?
Your retention window adjusts immediately. Upgrading from Free to Pro instantly reveals up to 90 days of history (if entries exist). Downgrading hides older entries from view but does not delete them — if you upgrade again, they reappear.
Are webhook deliveries logged?
Webhook deliveries themselves are not in the audit log — they have their own delivery tracking in the Webhooks system. However, the actions that trigger webhooks (booking created, cancelled, etc.) are fully logged.