EVERYTHING GETS LOGGED
Compliance Audit Trail
Who approved what. When. With what context. Immutable records for SOC 2, HIPAA, and regulated workflows.
AI Agent Traceability
AI agent acts. Human reviews. Both get the same structured record. The evidence chain enterprises need before trusting AI in production.
Activity Feed
A timeline of everything that happened in a document. Comments, edits, status changes, agent actions. Scoped to permissions.
Query & Filter
getAllActivities() for org-wide or per-document. Filter by feature, user, agent, or time. Real-time or REST.
Immutable Mode
On by default. Records can't be changed or deleted. SOC 2, HIPAA, EU AI Act ready. Turn off when you need flexibility.
REST API
Create, query, and manage records from your backend. The SDK captures. The API gives you control.
Activity Logs PRD
10 Weeks
Week 1 - 3
#01
Event schema for comments, edits, reactions, agent actions, and custom events
#02
User attribution across sessions, devices, and API keys
#03
Agent attribution that distinguishes AI from human in the same schema
#04
Debouncing that turns rapid edits into meaningful records
#05
Real-time subscriptions so feeds update without polling
Week 3 - 5
#06
Filtering by org, document, feature, user, agent, time
#07
Immutability that actually prevents tampering
#08
Permission scoping so users only see what they should
Week 6 - 8
#09
REST API for backend access and exports
#10
Compliance formatting for SOC 2, HIPAA, and audits
