All Products
Search

This Product

    Data Management:Sensitive data audit

    Document Center

    Data Management:Sensitive data audit

    Last Updated:Mar 28, 2026

    The sensitive data audit feature in Data Management (DMS) records every access to sensitive data across your databases, helping you detect abnormal use and investigate data leakages.

    How it works

    DMS generates an audit log entry whenever a user performs any of the following operations:

    • Data query or data change in SQLConsole

    • Data result set export

    • Database export

    • Regular data change

    Each audit log entry captures the operator, the involved feature, the time the operation was performed, the database name, the source IP address, and the ticket or task number.

    Which entry point to use

    DMS provides two places to review sensitive data audit logs:

    • Sensitive Data Audit page — use this when you want to search and filter audit logs by criteria such as database, table, column, or user.

    • Operation Logs tab — use this when you are already reviewing general operation logs and want to identify which tickets or tasks involved sensitive data.

    View audit logs on the Sensitive Data Audit page

    1. Log on to the DMS console V5.0.

    2. Move the pointer over the 2023-01-28_15-57-17.png icon in the upper-left corner and choose All Features > Security and disaster recovery (DBS) > Sensitive Data > Sensitive Data Audit.

      Note

      If you use the DMS console in normal mode, choose Security and disaster recovery (DBS) > Sensitive Data > Sensitive Data Audit in the top navigation bar.

    3. On the Sensitive Data Audit page, set one or more of the following filter parameters and click Search:

      Note

      By default, DMS displays audit logs from the last day.

      ParameterDescription
      FunctionThe DMS feature that accessed the sensitive data
      User nameThe operator who performed the action
      TimeThe time range for the audit logs
      Database NameThe database containing the sensitive data
      Table nameThe table containing the sensitive data
      Column nameThe column identified as sensitive

    4. Optional: Click the 加 icon before a ticket or task to view its details, including:

      • Names of tables containing sensitive data

      • Names of sensitive fields

      • Sensitivity levels

      • User permissions

      • Configured de-identification algorithms

    View audit logs on the Operation Logs tab

    1. Log on to the DMS console V5.0.

    2. Move the pointer over the 2023-01-28_15-57-17.png icon in the upper-left corner and choose All Features > Security and Disaster Recovery (former DBS) > Operation Audit.

      Note

      If you use the DMS console in normal mode, choose Security and Disaster Recovery (former DBS) > Operation Audit in the top navigation bar.

    3. Click the Operation Logs tab.

    4. In the Ticket/Task column, tickets and tasks that involve sensitive data are labeled Sensitive.

    5. Hover over Sensitive in the Ticket/Task column, then click here in the tooltip that appears. The Details dialog box shows the full breakdown of that ticket or task, including:

      • Names of tables containing sensitive data

      • Names of sensitive fields

      • Sensitivity levels

      • User permissions

      • Configured de-identification algorithms