Is sufficient detail contained in Operating System and application logs to support security incident investigations?

Yes. We offer comprehensive logs for our user- and admin-accounts, and also keep logs for all access attempts to our web servers for two weeks, including all IP addresses used.

All login attempts (successful or not), instances of forgotten passwords and logouts can be viewed by account administrators.

Every action taken by any user can be viewed by account administrators, e.g. deleted QR Codes.