Uhpenry
Security Policies

Audit Log Policy

Sets forth Uhpenry's policy on the collection, retention, access, and permitted use of audit logs, to ensure transparency, traceability, and accountability.

This Audit Log Policy (“Policy”) governs Uhpenry's creation, storage, and use of audit logs.
Audit logs are a core component of the Platform's security, compliance, and dispute resolution processes. By using Uhpenry, all Users and Booth operators agree to the terms set forth herein.

1. Scope of Audit Logging

1.1 Definition
For the purposes of this Policy, “Audit Logs” refer to immutable records of user, booth, and system-level activities recorded by Uhpenry for security, operational, and compliance purposes.

1.2 Events Logged
Without limitation, Uhpenry shall log:

(a) Booth-Level Activity

  • Project creation, modification, or deletion.
  • Visibility changes (public/private).
  • Policy or license updates.
  • Snapshot creation or expiration.
  • Snapgate moderation actions.
  • Booth member role assignments or removals.

(b) Transaction and Snapgate Activity

  • Creation and timestamp of Snapgates.

  • Internal identifiers for Users and Booths.

  • Payment attempts and outcomes.

  • Refund or dispute initiation and resolution steps.

    1.3 Audit Logs are read-only records and cannot be altered or deleted by Users, Booths, or Uhpenry personnel except as required by law or this Policy.

2. Purpose and Use of Audit Logs

Audit Logs shall be used exclusively for:

  • Security Monitoring: Detection of unauthorized access or suspicious behavior.
  • Dispute Resolution: Providing authoritative records in user–booth conflicts.
  • Accountability: Ensuring that booth owners, members, and users can be held responsible for their actions.
  • Compliance: Meeting obligations under applicable laws, financial regulations, or licensing agreements.
  • Operational Diagnostics: Investigating errors, performance issues, or misconfigurations.

3. Retention and Storage

3.1 Booth-Level Organizational Logs

  • Retained for three (3) days from the date of entry.

  • After expiration, logs are irreversibly deleted and cannot be restored.

    3.2 Transaction and Snapgate Logs

  • Retained uninstall deleted.

  • May be retained longer where required by law, for fraud prevention, or for financial auditing purposes.

    3.3 All Audit Logs are stored in secure, access-controlled environments.

4. Access to Audit Logs

4.1 Platform Access
Access to Audit Logs is restricted to authorized Uhpenry personnel with a demonstrated operational, compliance, or legal need.

4.2 Booth Access
Booth owners and authorized booth members may view audit logs related to:

  • Their booth's projects, snapshots, and Snapgate activity.
  • Member activity within the booth account (including role changes and project modifications).

5. Privacy Considerations

5.1 Audit Logs may contain user identifiers (e.g., User ID, Booth ID, IP address) strictly for security, operational, and compliance purposes.

5.2 Audit Logs shall not be used for advertising, marketing, or user profiling.

5.3 Processing and retention of Audit Logs are subject to Uhpenry's Privacy Policy.

6.1 Uhpenry may disclose Audit Logs to law enforcement, regulators, or other authorized third parties:
(a) In response to a valid legal request;
(b) To comply with applicable laws or regulations; or
(c) To investigate suspected fraud, abuse, or security incidents.

7. Changes to this Policy

Uhpenry reserves the right to amend this Policy at any time.
Substantive changes will be communicated via the Platform's changelog and/or user notifications.

Uhpenry Open-Source Pledge

Uhpenry's commitment to supporting open-source projects that fuel our platform.

Uhpenry DMCA Policy

Establishes Uhpenry's policy and procedures for handling notices and counter-notices under the Digital Millennium Copyright Act, 17 U.S.C. § 512.

On this page

1. Scope of Audit Logging2. Purpose and Use of Audit Logs3. Retention and Storage4. Access to Audit Logs5. Privacy Considerations6. Legal Compliance and Disclosure7. Changes to this Policy