Does Plum log and time-stamp individual user activity? - Xoxoday

Xoxoday Plum captures a complete, time-stamped activity log for every user action on the platform, tying each transaction to an individual user profile to support auditability, compliance, and administrative accountability.

Every action taken within Xoxoday Plum — from redeeming a reward to approving a budget allocation — is recorded in a detailed activity log with a precise time-stamp. This creates a full, immutable record of platform usage that is permanently linked to the individual user who performed each action. User-Level Activity Tracking Xoxoday Plum ties every transaction and configuration change to a unique user profile. Whether a manager distributes points, an employee claims a voucher, or an administrator updates a reward catalog, each event is recorded with the user’s identity, the action performed, and the exact date and time it occurred. This granular attribution eliminates ambiguity in multi-user environments where several administrators or approvers share access to the same programs. Auditability for Compliance Frameworks For organizations operating under compliance standards such as ISO 27001 or SOC 2 Type II, maintaining a verifiable audit trail is a non-negotiable requirement. Xoxoday Plum’s activity logs satisfy these standards by providing time-stamped records that can be reviewed by internal auditors or external compliance teams at any point in the program lifecycle. A company running performance-linked incentives through an integration with Workday or SAP SuccessFactors, for example, can trace every reward disbursement back to the originating approval event, the approving manager’s user ID, and the exact moment the transaction was completed. This level of detail supports both financial reconciliation and HR governance without requiring manual record-keeping. Administrative Control and Accountability Platform administrators gain direct visibility into who changed what and when. This is especially valuable in large organizations where multiple admin roles manage reward programs across departments or geographies. If a reward catalog entry is modified or a budget threshold is adjusted in Xoxoday Plum, the log captures the responsible user and the time-stamp, making accountability clear and auditable. Teams using Slack or Microsoft Teams integrations for recognition programs will find that actions triggered through those channels are attributed back to the initiating user in Xoxoday Plum’s central log. Financial Transparency at Scale Because each reward transaction carries a user identity and a time-stamp, finance teams can reconcile reward spend against individual approvals with confidence. This removes the risk of unattributed disbursements and provides the financial transparency that procurement and legal teams expect during vendor reviews or internal audits. Xoxoday Plum’s activity logging is active by default and requires no additional configuration to begin capturing standard user actions across the platform. Learn more: Xoxoday Plum Help Centre — System requirement

Role-Based Access Control in Xoxoday Plum

Learn how Xoxoday Plum enforces user permissions and restricts access to sensitive administrative functions based on defined roles.

Security Certifications and Data Compliance

Understand how Xoxoday Plum meets ISO 27001, SOC 2 Type II, and other security standards to protect your organization’s data.