Log Every AI Interaction for Compliance

100% in your Salesforce org. GPTfy has no external servers, no data warehouse, no caching layer. Audit logs are written to Salesforce custom objects inside your org. The data never leaves your infrastructure. Your Salesforce admin controls retention policies, access permissions, and export rules using the same tools they already use for any other Salesforce data. GPTfy cannot access your logs remotely. There is no phone-home, no telemetry, and no external synchronization.

GPTfy creates a Security Audit Record for every AI request: User Context (User ID, Timestamp UTC + Local, IP Address, Session ID, Record ID), Full Prompt Chain (exact prompt text, unmasked data extracted from Salesforce, masked data sent to AI, masking/unmasking key), Full Response Chain (AI response without PII, de-masked response shown to user), Content Safety (AI provider screening results for hate, violence, sexual content, self-harm, jailbreak attempts, and protected material with toxicity scores normalized across AI models), Processing (AI Model, Model Version, System Fingerprint, Processing Time, Token Count, Completion Status), and User Feedback (thumbs up/down rating, feedback category, free-text detail for human-in-the-loop quality monitoring).

GPTfy audit logs are standard Salesforce records stored in custom objects in your org. System Timestamps: CreatedDate is system-generated by Salesforce and cannot be modified. Access Controls: Use Salesforce profiles and permission sets to restrict who can view, edit, or delete audit records. Field History Tracking: Enable on audit objects to log any changes. Sharing Rules: Limit audit log visibility to compliance officers and administrators. Salesforce Shield: Customers using Shield get Platform Encryption for audit fields and Event Monitoring. High-Assurance Sessions: Require step-up authentication (MFA) to access audit objects. Every platform security feature your admin already manages applies automatically.

Minutes, not months. One-click export to CSV, JSON, or Salesforce Reports. Filter by date range (Q1 2026, last 6 months, custom), user (specific rep, team, or all users), or record type (Accounts, Cases, Opportunities). Exports include all fields required for FINRA Rule 4511 and HIPAA §164.312(b). You can also build custom dashboards using native Salesforce reporting tools.

Yes. GPTfy ships with three built-in dashboards: AI Insights Dashboard (usage by object, profile, user, role, prompt, and department), Quality Insights Dashboard (user feedback ratings and average response time by object, profile, user, role, prompt, and department), and ROI Dashboard (dollars saved, time saved, and adoption patterns). Supervisors can review AI interactions and export records for compliance review. Role-Based Access: Compliance officers see all logs. Individual users see only their own interactions. Controlled by Salesforce permission sets.

All of them. GPTfy audit trails work across every Salesforce edition and industry cloud: Core clouds (Sales Cloud, Service Cloud, Experience Cloud) and Industry clouds (Financial Services Cloud, Health Cloud, Manufacturing Cloud, Automotive Cloud, Communications Cloud, Education Cloud, Nonprofit Cloud, Consumer Goods Cloud). Retention: GPTfy includes built-in automated retention - configure any period from 30 days to 6+ years, and GPTfy automatically purges older records. No third-party retention tools needed. Setting up FINRA-compliant 6-year retention takes minutes.