Skip to main content
Auditability is built into the Midaz platform. It is not a separate plugin or product you install: the platform records an append-only trail of the actions that change or govern your data, so Organizations can demonstrate integrity, support compliance, and investigate what happened.

Why auditability matters


An immutable record of system activity lets you:
  • Preserve the integrity of data across all touchpoints.
  • Support internal and external audits with a verifiable trail.
  • Increase transparency and reduce the risk of undetected fraud.
  • Meet the record-keeping requirements of regulatory frameworks.

What Midaz records


Audit data lives inside the Midaz platform, alongside the data it describes — there is no separate audit product to install.
  • Audit events capture each recorded action: what happened, who performed it (the actor), the outcome, and when, together with a request identifier that ties the event back to the originating call.
  • Transaction audit logs capture ledger activity. When audit logging is enabled, each operation in a transaction is recorded to the audit log for downstream retention and processing.

How audit records behave

  • Append-only and immutable: audit records are only ever added, never updated or deleted, so the historical trail cannot be rewritten.
  • Metadata, not secrets: records capture the metadata of an action, not its sensitive payload. Credentials, keys, and similar secrets are never written to an audit record.

Querying audit records


Audit events are read through the Midaz API, scoped to an Organization. You can filter by action, actor, outcome, and time range, and page through large result sets — enough to reconstruct the sequence of actions for a period, or to investigate a specific actor or outcome.
For more information about auditability in Midaz, contact us.