TL;DR: The Compliance 360 SuiteApp in NetSuite 2026.1 outlines specific limitations regarding user activity tracking and data retention. Understanding these limitations is crucial for administrators and users to ensure compliance and data management practices.
Compliance 360 SuiteApp Limitations in NetSuite 2026.1
When implementing the Compliance 360 SuiteApp in NetSuite 2026.1, it is important to understand its current tracking and data retention limitations to ensure proper compliance management and audit readiness.
Activity Tracking Scope
The Compliance 360 SuiteApp is designed to monitor and log user activities associated with customer records only. Activities performed on other NetSuite record types are not captured within the activity log.
Data Retention Policy
Compliance 360 retains activity logs for up to 12 months. Organizations that require longer retention periods for compliance or audit purposes should regularly export and archive logs to a secure external storage location before they are automatically removed.
Activities Not Captured by Compliance 360
The SuiteApp does not track user interactions involving:
- NetSuite File Cabinet
- NetSuite Mobile Application
- Third-party applications and external integrations
- Data exported from NetSuite services
As a result, organizations should consider supplementary monitoring solutions if visibility into these areas is required.
Accessing the Activity Log
Users can view recorded activities by navigating to:
Compliance 360 → Activity Log → View
By default, the log displays records from the previous month and supports up to 10,000 results per query. For improved performance and more targeted searches, administrators should use the Access Date Range filter when reviewing activity records.
Important Considerations
Independent Activity Logs Across NetSuite Environments
Compliance 360 maintains separate activity logs for each NetSuite environment. Activities performed in a sandbox account are tracked independently and do not impact logs within the production account. This separation helps maintain clear audit trails across different environments.
Customer Record Dependencies
When Activity Log tracking is enabled, NetSuite restricts the deletion of customer records and any related dependent records. Attempting to remove these records may result in dependency errors, ensuring audit data remains intact for compliance purposes.
What User Activities Does Compliance 360 Track?
Compliance 360 captures access to sensitive customer information across various NetSuite functions, including:
- Creating, viewing, and editing customer records through entry forms
- Running and accessing saved searches
- Viewing analytics workbooks and datasets
- Executing customer-related reports, such as Open Invoices and Sales by Customer
- Printing customer records and record lists
- Exporting customer data through CSV files
Who Should Be Aware of These Limitations?
NetSuite Administrators
Need to manage activity logs, retention policies, and system restrictions while maintaining compliance requirements.
Developers and Technical Teams
May need to implement additional archiving or reporting solutions when longer log retention periods are required.
Compliance and Audit Teams
Should understand the SuiteApp's tracking scope and limitations to support regulatory and internal compliance initiatives.
Key Takeaways
- Compliance 360 tracks user activity related to customer records only.
- Activity logs are retained for up to 12 months unless exported externally.
- Actions performed through third-party applications, integrations, mobile apps, and the File Cabinet are not monitored.
- Customer records cannot be deleted while Activity Log tracking is enabled.
- Sandbox and production environments maintain separate and independent activity logs.
