Savant provides a comprehensive, exportable audit and activity logging system that captures how data, workflows and users interact across the platform. These logs are designed for teams that need deeper visibility than what’s available in the standard Admin usage dashboard – whether for compliance, operational governance or advanced usage analytics.
Advanced audit and activity logs are available on Savant’s Enterprise tier for teams that require expanded operational visibility and governance capabilities.
At a high level, Savant logs answer three core questions:
Who did what
When it happened
What changed as a result
All logs are stored centrally, timestamped in UTC, immutable, and scoped by role and workspace for secure access.
How Customers Use Audit Logs
Customers use Savant’s audit logs for SOX and regulatory compliance, as well as to understand how teams adopt, use and operationalize analytics across the organization. By analyzing detailed event-level data, teams gain visibility into real user behavior – what’s being built, how it’s changing and how reliably it’s running.
Common use cases include:
SOX compliance and audit readiness
Maintain a complete, timestamped record of user activity, changes and execution history to support SOX, SOC and other regulatory requirements without additional instrumentation.
Internal security, access and governance reviews
Review how access evolves over time, validate least-privilege controls and ensure proper separation of duties as teams grow.
Guiding user adoption and enablement
Understand which workflows, tools and features are being used, where users get stuck and how teams progress from initial builds to production-ready workflows. Audit logs help identify training gaps, successful usage patterns and opportunities to standardize best practices.
Usage and consumption monitoring
Track how frequently workflows run, which users and teams are driving activity, and how usage evolves over time. This supports capacity planning, cost attribution and informed decisions about scaling adoption across teams.
Investigating integration or data issues
Trace failures to specific runs, nodes or configuration changes, with full before-and-after context. This supports faster debugging and more reliable operations as usage scales.
For teams that want to move beyond “how much the platform is used” and instead understand how it’s adopted, governed and trusted, Savant’s audit logs provide a durable, query-able source of truth.
What Gets Logged
Savant captures events across the full lifecycle of platform activity. Logs are grouped into clear categories so teams can filter, analyze, and export exactly what they need.
Authentication & Sessions
Tracks user access and session activity:
Successful and failed logins
MFA verification
Password changes
Logouts and session expirations
Useful for security reviews, access audits, and reconciling late user deprovisioning.
Users, Roles & Permissions (RBAC)
Tracks how access is granted, changed, or revoked:
User creation, deactivation, and removal
Role assignments and revocations
Permission grants and revokes
Each event records the actor, the affected user, and a timestamp — making it easy to reconstruct access history or validate least-privilege controls.
System & Data Management
Tracks structural and system-level changes:
Workspace and folder creation, deletion, and movement
Dataset creation
Connected data systems and secrets
This provides a durable record of how environments and data connections evolve over time.
Workflow Governance & Lifecycle
Tracks how workflows move from creation to production:
Creation, modification, cloning, and deletion
Submission, approval, rejection, publishing, and unpublishing
Scheduling and exports
These events form a complete governance trail for workflows, including who built them, who approved them, and when they were deployed.
Workflow Execution & Reliability
Tracks how workflows actually run:
Run starts, completions, failures, and cancellations
Trigger type (manual, scheduled, system)
Node-level execution events with runtime metrics
Error codes and failure context
This makes it possible to analyze reliability, debug failures, and build custom monitoring or alerting workflows.
Workflow Building & Change Details
Tracks how workflows are edited at a granular level:
Nodes added, removed, or renamed
Connections created or removed
Configuration changes with before/after diffs
Only the changed fields are logged, keeping events lightweight while preserving full traceability across versions.
Sample Audit Log Events
Below is an example of how audit log data can be structured and analyzed in Savant. Each row represents a single, immutable event captured by the platform.
Timestamp (UTC) | Event Category | Event Type | User | Role | Workspace | Workflow | Details |
2025-03-12 14:02:11 | Auth | login_success | sarah.chen | Analyst | Finance Analytics | – | Successful login with MFA |
2025-03-12 14:05:34 | Workflow | workflow.created | sarah.chen | Analyst | Finance Analytics | Q4 Revenue Model | New workflow created |
2025-03-12 14:18:09 | Canvas | node_config_changed | sarah.chen | Analyst | Finance Analytics | Q4 Revenue Model | Transform formula updated (before/after diff) |
2025-03-12 14:30:22 | Workflow | workflow.submitted | sarah.chen | Analyst | Finance Analytics | Q4 Revenue Model | Submitted for approval |
2025-03-12 15:01:47 | Workflow | workflow.approved | james.kumar | Approver | Finance Analytics | Q4 Revenue Model | Approved for production |
2025-03-13 02:00:03 | Execution | workflow.run_started | system | System | Finance Analytics | Q4 Revenue Model | Scheduled run triggered |
2025-03-13 02:00:41 | Execution | workflow.run_completed | system | System | Finance Analytics | Q4 Revenue Model | 2,847 records processed |
2025-03-13 09:12:18 | System | data_exported | sarah.chen | Analyst | Finance Analytics | Q4 Revenue Model | Exported to Excel |
Reporting, Access & Export
Audit logs in Savant are fully query-able and can be analyzed using customizable flows for deep operational insight and advanced reporting. Teams can filter logs by date range, user, role, workspace, workflow and event type, then blend and transform them alongside any other business data.
Customers can:
Download logs as CSV for audit or review
Stream logs to external systems such as cloud file storage
Build custom reports and dashboards on raw audit data
Publish logs in batch or mini-batch to databases, BI tools and downstream applications
Logs are retained for six months by default. For regulatory or internal governance needs, extended retention is supported through integration with the customer’s storage platform of choice.
How These Logs Complement the Admin Usage Dashboard
The Admin usage dashboard is optimized for quick, high-level visibility – ex: active users, workflow runs, and overall platform usage.
Audit logs go several layers deeper:
Full event-level history, not summaries
Exact before-and-after changes to workflows and configurations
Node-level execution details and failures
Precise user, role, and permission changes over time
Exportable datasets for downstream analysis, audits, or warehousing
For teams that need to investigate, prove, or analyze behavior over time, audit logs provide a much richer foundation.
Getting Started
Savant includes several out-of-the-box templates to help teams get started quickly with common audit, usage and adoption reporting needs. These templates provide a starting point for analyzing activity across users, workflows and workspaces, and can be customized or extended using Savant’s flow builder.
If you’re interested in using advanced audit and activity logs or want guidance on the best templates for your use case, reach out to your Customer Success Manager for more information. They can help you identify the right starting point and tailor reporting to your organization’s needs.