Overview
Fontana includes full observability with every workspace deployment: operational telemetry for day-to-day platform operations, and a tamper-evident security audit trail for compliance evidence. Logs, metrics, dashboards, service health checks, and append-only audit history are built into the stack and provisioned with your environment. You do not need to install, license, or configure external telemetry or log aggregation products to gain visibility across your tenant.
On the Flow canvas, each node also exposes run status, row counts, and data-quality audit items as a workflow executes. Those signals are workflow provenance on the file store. See Data lineage and Storage and processing.
Topics
Section titled “Topics”- Operational telemetry - HyperDX logs and dashboards, Gatus health checks, otel collector, and what Fontana collects for SRE and incident response
- Security audit (WORM) - append-only ImmuDB ledger, who emits security events, and how it differs from workflow lineage and chat audit
Planes at a glance
Section titled “Planes at a glance”| Plane | System of record | Typical use |
|---|---|---|
| Operational telemetry | HyperDX (search and dashboards) | SRE dashboards, incident response, browser errors, pod logs, service health |
| Security audit (WORM) | ImmuDB per workspace | Compliance evidence, tamper-evident append-only platform activity |
| Workflow lineage and port audit | Workflow file store (not ImmuDB) | How a cell was computed; validation and edit context on a run |
HyperDX may mirror security audit events for faster search. ImmuDB holds the compliance system of record. See Data retention for retention boundaries across HyperDX, ImmuDB, and the workflow file store.
Related documentation
Section titled “Related documentation”- Security - workspace isolation, retention boundaries, SOC 2 control summary
- Data retention - HyperDX vs ImmuDB vs workflow file store
- Compliance evidence - workflow lineage and immutable audit overview
- Immutable audit trail - WORM producer map and operating status
- Identity and access - Zitadel identity events in the security audit stream
- Deployment - cluster-per-workspace topology and upgrades