Organization audit logs (.../audit-logs) list immutable AuditEvent records: actor, action type, workspace, metadata, timestamp.
Action types include prompt lifecycle (create, update, export, approve), policy blocks, playground runs, auth/SCIM events, and report exports.
Workspace admin audit: /api/workspaces/:workspaceId/admin/audit-logs (legacy UI at /dashboard/admin/audit-logs).
Export: Org admins with org:audit:view can export CSV for offline analysis.
Retention of audit data respects retention policy (retainAuditLogDays) unless legal hold is enabled.