Skip to main content
DefenceFile
Help centre

Evidence workflow · 5 min

Use audit trail and CSV exports

How to filter workspace audit events, download CSV exports, and read formula-safe CSV metadata without exposing token values.

Help baseline: 2026-06-15

audit trailCSV exportformula-safe CSVaudit:viewmetadata

Filter the tenant audit trail

The audit trail is an internal tenant log for workspace events and exports. Viewing it requires audit:view permission, and the page supports search, event type, actor, and resource-hash filters.

  • Summary counts include total events, board-pack events, downloads, exports, review events, risk events, and latest event date.
  • Known labels include adviser share created, adviser share accessed, adviser share downloaded, attestation submitted, evidence reviewed, and board-pack signed off.
  • Search matches event labels, actions, actors, resource identifiers, and metadata rows.

Download a formula-safe CSV

CSV export keeps the active audit filters and returns createdAt, label, action, actorId, resourceType, resourceId, and metadata columns.

  • Metadata rows are sorted by key and joined into key=value pairs.
  • Formula-like values starting with =, +, -, or @ are prefixed before export to reduce spreadsheet formula risk.
  • Audit CSVs should show hashed or derived token metadata where needed, not raw attestation or adviser-share tokens.

Boundary

DefenceFile help explains workflow operation. It does not provide legal advice, create privilege, certify scope, certify reasonable procedures, or guarantee that a statutory defence will succeed.

Request pilot review