Localization audit trail: how to track, monitor, and govern translation changes

What is localization key governance?

Localization key governance is the practice of controlling, monitoring, and auditing all changes made to translation keys and their associated content within a TMS. It encompasses who can edit source strings, how changes are tracked over time, and how teams can reconstruct the full history of any translation decision.

In Lokalise, key governance is enforced through a combination of role-based access controls, project activity logs, and enterprise-level audit logs. This means every change is visible and attributable.

Together, these features give you end-to-end visibility and control over every change across your localization workflow.

Localization key governance helps you:

• Prevent errors reaching production
• Ensure accountability (who changed what)
• Support compliance and internal audits

Version control vs. audit trails in localization

Version control manages different states of a localization project over time, while an audit trail records the individual user actions and decisions that produced each state.

Both are important, but they solve different problems.

Version control focuses on the state of your content. It lets you capture snapshots of a project at a specific point in time, compare versions, and roll back if needed. In localization, this often shows up as project snapshots, branches, or tagged releases. It’s useful when you need to align translations with a specific product version or deployment.

In many teams, this model is evolving toward continuous localization, where content is updated and deployed alongside development instead of in fixed release cycles. 

An audit trail, on the other hand, focuses on actions. It tells you what actually happened inside those versions, for example:

• Who edited a string?
• When was the translation updated?
• What changed between one version and the next?

Instead of showing you the outcome, it shows you the sequence of decisions that led there.
 

How to track which user changed a localization key in Lokalise

Lokalise records every key-level change in the Project Activity log, showing the user who made the change, the exact timestamp, and the specific action taken — including edits to source strings, translation values, key names, and metadata.

The lifecycle of a key-level change looks like this:

Initial edit → Review → Approval → Logged in Project Activity → Archived in Audit Log

This flow shows how a single change moves from creation to full traceability. A translator or editor updates a string, a reviewer validates it, and once approved, the change is recorded in Project Activity. From there, it becomes part of the broader Audit Log, where it can be reviewed alongside other team-level events.

You can find the Project Activity panel in your project dashboard under the Activity tab. This view gives you a chronological record of changes across the project, so you can quickly trace what happened when a string changes unexpectedly.

To narrow down the log, use the available filters:

• User (All users) to see changes made by a specific contributor
• Activity (All activities) to isolate edits, renames, status changes, or other updates
• Language (All languages) to focus on changes in a specific locale
• Date range to focus on a release window or incident period

If you need to investigate an unexpected change, start by opening the Activity tab and setting the date range to the period when the issue likely happened.
Then filter by action type to narrow the results to the kind of change you’re looking for, such as a source string edit or key rename. If needed, add a user filter to confirm who made the update.

From there, you can review the exact timestamp and action details to understand what changed and decide on the next step.

This gives your team a faster way to troubleshoot localization issues without relying on manual notes or Slack threads. Instead of guessing where a change came from, you can trace it directly in Lokalise and move from investigation to resolution much more quickly.

How to audit the full change history of a single localization string

Lokalise's translation history feature shows every version of a translation string, including the user who submitted each version, the timestamp, and the previous value, with the ability to restore any prior version from the same panel.

To access this, open the string you want to investigate in the Lokalise editor and view its History panel.

This gives you a complete timeline of all changes made to that specific string, across all contributors.

Each entry in the timeline shows:

• The user who made the change
• The timestamp of the update
• The previous value and the new value

This makes it easy to understand how a translation evolved over time and spot exactly where something changed. If a string looks incorrect, you can quickly compare versions and identify when the issue was introduced.

If needed, you can restore a previous version directly from the same panel. This is useful when an approved translation is overwritten or when a recent change introduces an error. Restoring a version immediately makes it the active translation again, and the action is recorded in the project activity log for full traceability.

This gives you a reliable way to audit and correct changes at the string level, without relying on external notes or manual version tracking.

How to maintain a clean audit trail across all linguistic assets

Lokalise Audit Logs, available on the Enterprise plan, capture all team-level events across every project — including logins, permission changes, key creation and deletion, project snapshot creation, and workflow status updates — providing a compliance-ready record of all localization activity.

When we talk about “all linguistic assets,” this goes beyond just translation strings. It includes everything that shapes your localized content, such as:

• Translation keys and source strings
• Translations across all languages
• Translation memory entries
• Glossary terms
• Project settings and workflows
• User roles and permissions

Keeping an audit trail across all of these ensures that every change is traceable, not just at the string level, but across the entire localization system.

Project Activity helps you understand what’s happening inside a specific project. Audit Logs give you a broader view across your entire organization, which is critical when you need to monitor access or prepare reports.

Exporting audit logs for reporting

Audit Logs can be exported via the Lokalise API, which allows teams to integrate audit data into their existing reporting or compliance workflows. This is especially useful for organizations that need to centralize logs in external systems such as security monitoring or internal audit tools.

Localization key governance best practices

Strong audit trails come from consistent rules around access, visibility, and review. These practices help teams maintain accountability and keep localization workflows predictable at scale.

• Assign the Contributor role to translators to prevent them from editing source strings or deleting keys. This reduces the risk of accidental changes to source content and keeps control with the right roles.
• Lock approved source strings to create a single source of truth and prevent accidental edits by contributors. Once content is approved, locking it ensures consistency across languages and avoids unnecessary rework.
• Review Project Activity logs weekly during active localization sprints to catch unauthorized or accidental changes early. Regular reviews help you spot issues before they reach production and avoid last-minute fixes.
• Use Lokalise Audit Logs (Enterprise) to generate monthly compliance reports for regulated industries including healthcare, finance, and legal. This provides a structured record of changes that can be used for internal reviews or external audits.
• Document key-level decisions using Lokalise key comments rather than external spreadsheets, so the rationale for each change stays attached to the key. 
• Integrate Lokalise Audit Log exports with your SIEM or compliance tooling via the Lokalise API for automated change monitoring at scale.

This is how you turn localization from a reactive process into a controlled system where changes are traceable and easier to manage.

Why localization audit trails matter in compliance and regulated industries 

Lokalise Audit Logs provide the timestamped, user-attributed change records that regulated industries need to demonstrate localized content was reviewed, approved, and published by authorized personnel.

In regulated environments, it’s not enough to have the right content in place. Teams need a clear record of how that content was created and updated over time. Without that, it’s difficult to explain what changed, who approved it, and which version was active at a given moment.

• For teams working under GDPR, this often applies to localized consent messages and user-facing disclosures. An audit trail helps teams trace which version of a consent string was live at a specific point in time and how it changed.
• In healthcare, patient-facing content such as instructions, disclaimers, or treatment information needs to be reviewed and approved before publication. Audit trails help document who approved each translation and when those approvals happened.
• In financial services, localized terms, disclosures, and product information must remain consistent and traceable across languages. When updates happen, teams need a reliable way to track what changed and how it aligns with approved content.

With reliable governance, localization becomes predictable. This is what Lokalise is built for.

Lokalise uses three layers of tracking: Translation History for string-level changes, Project Activity for project-level visibility, and Audit Logs for team-wide traceability.

See why companies like Blockchain, Pleo, GoCrypto, Webgains, and Withings trust it as their localization platform: try it yourself for 14 days for free, no credit card required.