List audit retention policies
Returns every per-event-type retention rule configured for the calling organization. The special event_type * is the org-wide default applied when no event-type-specific rule matches. Admin-only.
List audit retention policies › Responses
Wrapped in data envelope
created_atevent_typeidorganization_idretention_daysupdated_atUpsert an audit retention policy
Sets or updates a single (event_type → retention_days) rule. Use * for the org-wide default. Retention is applied by the periodic GDPR sweep - rows older than retention_days get their payload nulled out (the row envelope stays so an integrity audit can prove no row was deleted). Admin-only.
Upsert an audit retention policy › Responses
Wrapped in data envelope
created_atevent_typeidorganization_idretention_daysupdated_atDelete an audit retention policy
Removes the retention rule for the given event_type. Idempotent - returns 204 even if no rule existed. After deletion, the org-wide * default applies (or rows are kept indefinitely if no default is set). Admin-only.
path Parameters
eventTypeEvent type key (use '*' for the org-wide default)
Delete an audit retention policy › Responses
No Content
Redact a customer's audit trail (GDPR)
Triggers a GDPR right-to-be-forgotten erasure for the given customer. Nulls payload, customer_payload, and actor PII on every audit row tied to the customer; the row envelope (id, occurred_at, event_type) stays so an integrity audit can still prove no row was deleted. Returns the count of redacted rows. Admin-only.
path Parameters
idCustomer UUID
Redact a customer's audit trail (GDPR) › Responses
Object with customer_id and rows_redacted