Viewing Audit Trails
Vault CDMS automatically collects and records information about any data entry, change, or action taken on any data, including system-generated data. You can view the details of the updates to any electronic record. Each audit entry includes the timestamp, user name, affected object, and a description of the event. If you have the required permissions, you can view audit trail information for the following study objects:
- Casebooks (Data Entry tab only)
- Events
- Event Dates (Review tab only)
- Forms
- Items
- Form Links
- Protocol Deviations (Review tab only)
- Visit Method
Vault Coding also records an audit trail for Code Requests. Learn more about how to view the audit trail for Code Requests here
Viewing the Audit Trail
You can view the audit trail of an individual object record.
Data Entry Tab
Users with permission to access the Data Entry tab can view audit trails from there.
To view the audit trail from the Data Entry tab:
- From the Data Entry tab, use the breadcrumb menu to navigate down to a form record.
- Select the audit trail action for the type of record you want to view:
- For Casebooks, select Casebook Audit Trail from the casebook schedule’s Actions menu.
- For Events, select Event Audit Trail from the event’s More Actions menu.
- For Forms, select Form Audit Trail from form’s Actions menu.
- For Items, select Item Audit Trail from the item’s More Actions menu.
- For Form Links, select Form Link Audit Trail from the form link’s More Actions menu.
- The Audit Trail dialog opens. Click X to return to the object record page.
Review Tab
If the Review tab is enabled in your vault, users with permission to access that tab can view audit trails from there.
To view the audit trail from the Review tab:
- Use the breadcrumb menu to navigate down to the record you want to view.
- Select the audit trail action for the type of record you want to view:
- For Events, select Event Audit Trail from the event’s More Actions menu.
- For Event Dates, select Event Date Audit Trail from the event date’s More Actions menu.
- For Forms, select Form Audit Trail from the form’s More Actions menu.
- For Items, select Item Audit Trail from the item’s More Actions menu.
- For Form Links, select Form Link Audit Trail from the form link’s More Actions menu.
- For Protocol Deviations, select Protocol Deviation Audit Trail from the protocol deviation’s More Actions menu.
- For Visit Method, select Visit Method Audit Trail from the visit method’s More Actions menu.
- The Audit Trail dialog opens. Click X to return to the object record page.
Audit Trail Contents
The audit trail contains the following columns:
- Timestamp: The datetime of the change based on the timezone of the logged-in user
- Username: The username of the user making the change, or the system. For more information about the username, see Audit Trail Username
- Event Description: The change that was made
Audit Trail Username Column
The username column of the audit trail displays information about the user or system making a change, as follows:
- System: The change was initiated by the system
-
System on behalf of user: The system made a change due to user action. For example, if a signature breaks because a user changed data after the Principal Investigator signed it, the Username column for the broken signature record displays “System on behalf of [User’s name (username)]”.
- User’s name and username: The user who made the change, such as opening or answering queries or entering or editing data in a form.
Audit Events in End User Audit Trails
The following are the various actions, both system and manual, for which Vault will create an audit trail entry that is visible in the Data Entry and Review tabs. Vault audits all data changes in the Audit Logs (Admin > Logs).
Query-Level
- Query Opened
- Query Answered
- Query Closed
Item-Level
- Item Creation
- Item Level Autosave
- Item Value Change
- Codelist Item Definition
- SDV Applied
- SDV Broken
- SDV Required
- DMR Applied
- DMR Broken
- DMR Required
- eSignature Applied
- eSignature Invalidated
- eSignature Removed
- Data Locked
- Data Unlocked
- Data Frozen
- Data Unfrozen
- Item Intentionally Left Blank
- Change Reason (migrated Items)
Form-Level
- Form Creation
- Form Status
- Form Submission
Event-Level
- Event Creation
- Event Deletion
- Event Inactivation
- Event Status
- Event Date Added
- Planned Date Added
- Overdue Date Added
Event Date-Level
- Event Date Changed
- SDV Applied
- SDV Broken
- DMR Applied
- DMR Broken
- eSignature Applied
- eSignature Invalidated
- eSignature Removed
- Event Date Locked
- Event Date Unlocked
- Event Date Frozen
- Event Date Unfrozen
Visit Method-level
- Visit Method Changed
- SDV Applied
- SDV Broken
- DMR Applied
- DMR Broken
- eSignature Applied
- eSignature Invalidated
- eSignature Removed
- Visit Method Locked
- Visit Method Unlocked
- Visit Method Frozen
- Visit Method Unfrozen
Casebook-Level
- Casebook Creation
- Casebook Version Updated
Subject-Level
- Subject Creation
- Subject Status Updated
Example Event Descriptions
Query Audit Trail Examples
When a query is opened or answered on an item, the audit record includes the query message.
Query Opened
Mary Mustard enters data that triggers a system query:
Query Answered
Mary Mustard answers a query:
Query Closed
Mary Mustard makes a change that causes a query to autoclose:
SDV Audit Trail Examples
SDV Mode Required
The SDV Mode of an object changes to “Required” due to a change to the casebook version:
SDV Performed
Mary Mustard performs SDV on an Item:
SDV Broken
Mary Mustard updates item data after SDV has been performed, causing the SDV to break:
Item Data Entry Audit Trail Examples
Value Entered
Mary Mustard enters data in an Item on a Form. Form changes, including changes made prior to submission, are recorded in the audit trail:
Value Changed
Mary Mustard changes the value of an Item:
EDC Tools: Audit Trail Export
Lead data managers and users with permission to run jobs in Vault CDMS can export all audit trails for an entire Study from EDC Tools > Jobs, using the Audit Trail Export job. That export includes audit trails for deleted records, which are not exposed in any of the areas detailed above.
Learn more about the Audit Trail Export job.