AzureIR requires read-only access to Azure AD sign-in logs and audit logs through Microsoft Graph API.
We need AuditLog.Read.All, Directory.Read.All, and Reports.Read.All permissions. We never modify any data in your tenant.
When connecting a customer tenant, a Global Administrator from that tenant must grant consent for AzureIR
to access their Azure AD logs. This is done through Microsoft's secure OAuth 2.0 admin consent flow.
Yes! All data is encrypted at rest and in transit. We use industry-standard security practices and comply with
SOC 2 Type II requirements. Your data is never shared with third parties.
Yes, you can cancel your subscription at any time. There are no long-term contracts or cancellation fees.
Your data will be retained for 30 days after cancellation.