Audit & monitoring
As a tenant administrator, you can review your organization's full audit trail in the Carriyo Dashboard at any time. Carriyo also monitors that trail internally for anomalies and maintains a defined process for responding to security incidents.
Event log
| Event class | Examples |
|---|---|
| API access | Authentication events, scope checks, rate-limit denials. |
| Dashboard activity | User sign-in, role change, configuration change. |
| Data mutations | Create, update, and delete operations on tenant resources. |
Customer-visible audit trail
Tenant administrators can review their own audit trail directly from the Carriyo Dashboard. The view covers authentication events, configuration changes, and data mutations, and can be exported for archival or compliance review.
Anomaly detection
Carriyo continuously monitors traffic and authentication patterns for signals that suggest abuse: unusual request volumes, credential-stuffing, brute-force attempts, and account-takeover patterns. When a signal fires, an automated response engages immediately and a security engineer reviews the detection — so every flagged event receives both speed and judgment.
Incident response
Carriyo maintains a defined incident-response process with documented severity tiers, designated on-call ownership, and structured communication paths to affected customers. When an incident affects your tenant, Carriyo notifies you through your account contact and provides a written summary after resolution.
Sensitive data handling
Carriyo monitors application logs to detect accidental logging of sensitive data, credentials, payment details, and personally identifying information. When a match is detected, the entry is automatically redacted from the log store and Carriyo's engineering team reviews the originating code path to prevent recurrence.