Compliance and Security
Audit Logs
Vilulia logs every action taken on the platform — case creation and updates, document access, AI tool usage, user logins, and settings changes — in tenant-isolated audit records. Audit logs are used for security monitoring, compliance reporting, and investigating access incidents. Retention periods vary by plan tier and HIPAA add-on.
What you'll learn
- What types of actions are captured in audit logs
- How long logs are retained on each plan tier
- How audit logs are tenant-isolated for security
- How to access logs from Settings → Audit Logs
What is logged
Vilulia maintains several audit log categories. The core audit log captures all platform actions including user logins, case and document access, AI tool invocations, settings changes, and user management actions. Specialized logs exist for mediation agreement events, pricing changes, arbitration award events, and PHI access. Each log entry records the tenant, the action type, the resource affected, and the timestamp.
Retention by plan tier
| Plan | Audit log retention |
|---|---|
| Starter | 90 days |
| Professional | 365 days (1 year) |
| Enterprise | 7 years (2,555 days) |
| HIPAA Basic add-on | 6 years |
| HIPAA Enhanced add-on | 7 years |
Tenant isolation
All audit log records are indexed by tenant_id, so each organization's audit history is completely isolated from other organizations on the platform. Vilulia staff with support access can view logs within a tenant only when investigating a reported issue, and those accesses are themselves logged.
Accessing audit logs
Tenant admins can access audit logs from Settings → Audit Logs. Logs can be filtered by date range, action type, user, and resource. Exporting logs requires the Professional or Enterprise plan.
Related articles
Can't find what you're looking for? Contact Support