Please can you answer the following questions which are related to the logging and storing of audit log files and user activity logs within Alloy.
- How long is the log data stored for?
- Is the log data separated and centralised?
- Is the log data backed up? If so, how long is the log data backed up for?
- Is the log data aggregated and consolidated?
- Does the logging system use end to end logging?
- Do you have any alerts configured for log data? If so, what type of events trigger these alerts?
How long is the log data stored for?
This is configurable by the user for both audit and auth logs. By default it is indefinite, or it can be configured to be any number of days
Is the log data separated and centralised?
The log data is stored within the customer database.
Is the log data backed up?If so, how long is the log data backed up for?
Same backups policies as the rest of the customer data apply
Is the log data aggregated and consolidated?
Logs are stored as transactions (differential transaction for audit change logs) and are not aggregated or consolidated
Does the logging system use end to end logging?
Yes
Do you have any alerts configured for log data?
If so, what type of events trigger these alerts? We log failed login attempts for admins to review via log extracts but no alerts are set up for auth logs. Alerts are however configured in our end-to-end monitoring tool to notify us of performance degradation events.