Audit Evidence
What EnforceAuth captures
Each decision log entry ties together:
- Principal identity
- Resource and action
- Policy / bundle version
- Allow or deny outcome
- Timestamp (immutable ingestion path)
Auditor workflow
- Define scope (system, time range, policy)
- Export or query decision logs in console or API
- Correlate with deployment history for policy version
Regulated industries
Financial services and insurance customers use decision logs to shorten audit prep from weeks to hours — see Decision logs.