Pinkerton AI
Compliance Infrastructure
AUDITTRAILS.

Immutable, SOC 2-compliant audit logging for every action in the platform. Every actor identified. Every change captured. Every trail preserved for seven years.

Capabilities

BUILT FOR PROOF.

Immutable Logging

Every action in the platform is recorded to an append-only audit stream. Entries cannot be modified, deleted, or back-dated. Tamper-evident hashing ensures integrity from ingestion to export.

Full Attribution

Every event captures who performed the action, what changed, when it happened, and where the request originated. Actor identity, role, IP address, and user agent recorded on every entry.

Before/After Snapshots

Every state change includes a complete diff of the previous and new values. Review exactly what changed in any employee record, payroll run, tax filing, or benefits enrollment.

7-Year Retention

Compliance-grade retention policy stores all audit events for seven years. Cold storage tiering keeps costs manageable. On-demand retrieval for any historical event within minutes.

Coverage

NOTHING ESCAPES THE LOG.

Tracked Entities

Payroll runs and disbursements
Federal, state, and local tax filings
Employee record modifications
Benefits enrollment and plan changes
Integration syncs and webhook events
Compliance decisions and approvals
Policy gate evaluations
Document uploads and access events

Tracked Metadata

Actor ID, role, and sovereignty level
IP address and user agent string
Timestamp with timezone and monotonic clock
Entity type, ID, and tenant scope
Before/after state snapshots
Request correlation ID and trace ID
Idempotency key for replay detection
Session ID and authentication method
Compliance

AUDIT-READY BY DEFAULT.

SOC 2 Alignment

Audit trails satisfy SOC 2 CC6.1 (logical access), CC7.2 (system monitoring), and CC8.1 (change management) control requirements. Export compliance packages on demand for your auditors.

HIPAA Alignment

Immutable access logs for protected health information meet HIPAA audit control requirements under 45 CFR 164.312(b). PHI access events are flagged and isolated in the audit stream.

Regulatory Alignment

State-specific payroll and tax regulations require retention of employment records, pay data, and tax filings. Audit trails provide the evidentiary chain for DOL, IRS, and state agency inquiries.

EVERY ACTION.
EVERY ACTOR.
EVERY CHANGE.

Immutable audit trails for payroll, HR, benefits, insurance, and every integration that touches your workforce data. Seven years of proof, always exportable.