Audit Logs

Practice OwnerExecutive Administrator·3 min read·Updated May 2026

CareIncite maintains audit logs for data access and modification events. These logs support HIPAA compliance requirements and give practice owners visibility into who accessed or changed data within their organization.

What is logged

User login/logout — Timestamp, user ID, IP address, success/failure

Data import — Upload timestamp, file name, row count, user who imported

Client record access — Which user viewed which client record and when

Settings changes — Configuration changes with before/after values

Role changes — User role assignments and modifications

Report generation — Report type, date range, who generated it

Integration events — Sync triggers, connection changes, API errors

Retention

Audit logs are retained for 7 years, consistent with HIPAA record retention requirements. Logs are immutable — they cannot be edited or deleted by any user, including practice owners.

Was this helpful?

Next Steps

Security & HIPAA→Data Retention→