The cloud service provider MUST provide customers with the capability to record, retain, and review logs of management and data access activities related to cloud service customer data. These logs MUST enable customers to identify when access occurred, the identity associated with the request, and the relevant operational context available through the service’s logging capabilities.

The logging service MUST ensure full data flow transparency by providing real-time access via standardized open-source APIs.

The service MUST support granular filtering.