Security and Compliance – Event Map — Architecture Catalog

7

Domain Events

9

Software Subsystems

7

Publish Links

16

Consume Links

Event Flow Diagram

Events Summary

Event	Status	Format	Publishers	Consumers
Compliance Report Generated Emitted when a scheduled compliance report (SOC 2, ISO 27001 evidence pack) has been generated and is ready for review or download by the tenant admin.	active	CloudEvents	Audit Query API	Tenant Admin PortalAudit Trail Service
Data Erasure Completed Emitted when all deletion tasks for a GDPR right-to-erasure request have completed successfully across all owning services.	active	CloudEvents	Privacy Rights API	Audit Trail ServiceTenant Admin Portal
MFA Challenge Failed Emitted when a user fails a multi-factor authentication challenge, incrementing the failed attempt counter and potentially triggering an account lockout.	active	CloudEvents	IAM API	Audit Ingest APIAccess Control Service
Privacy Request Received Emitted when a data subject submits a GDPR or CCPA privacy request (access, portability, or erasure), starting the mandatory fulfilment SLA clock.	active	CloudEvents	Privacy Rights API	Audit Ingest APITenant Admin PortalWorkflow Engine
Security Policy Updated Emitted when a tenant administrator updates a security policy such as password complexity rules, session timeout thresholds, or IP allowlists.	active	CloudEvents	Audit Ingest API	Access Control ServiceAudit Trail Service
User Access Revoked Emitted when a user's access to the platform is revoked, either by deprovisioning, suspension, or tenant removal.	active	CloudEvents	IAM API	Access Control ServiceAudit Ingest API
User Provisioned Emitted when a new user account is successfully created via SCIM provisioning or manual admin invite, granting the user access to the platform.	active	CloudEvents	IAM API	Audit Ingest APITenant Admin PortalAnalytics Pipeline