Ceum keeps two kinds of "who did what" in two places: the MCP events page records changes made by your connected tools, and your signed-in devices are managed under Account settings. This article covers what's on each and when to use which.
MCP events
The MCP events page is a read-only log of every change made through a connected external tool — that is, every change made by something using one of your MCP tokens.
Each entry shows:
- Action — what was done (e.g. creating a task, updating an invoice).
- Token — the friendly name of the token that did it.
- Record — the affected record's ID, when applicable.
- When — the time, in your timezone and date format.
You can filter by action, by token name, and by date range, and sort by action, token name, or time.
Only changes are logged — read-only operations don't appear. If you want a complete history of what changed, this is the single place to look.
Sessions
The devices currently signed in to your account live on the Account page. From there you can:
- See active sessions with device info and when each was last active.
- Sign out any single device remotely.
- Review recent login history.
When to use which
- "Who edited this client?" — start with the record's own history (Entity changelog). If a connected tool made the change, jump to the MCP events page and filter to the date.
- Forgot to sign out somewhere — open your session list on the Account page and sign that device out.
- Suspect a leaked token — open Integrations, revoke the token, then review recent MCP events here.
- Checking one tool's behavior — filter by action to see every time it happened, across all tokens.
Tips and edge cases
- Read-only operations aren't here. A token that only reads data leaves no entry; its Last used timestamp on the integrations page is the only signal.
- MCP events are kept for as long as your account exists.
- Token names stick around. Entries keep showing a token's original name even after you revoke it, so you can still recognize "the old Cursor token" months later.
- This is a power-user surface. Read it when you have a reason, not as a daily check.
On mobile
- Sessions are there. A Sessions screen (reached from mobile Account → Security) lists your active devices and lets you sign out a single device or all other devices. A separate Security screen handles password changes.
- The MCP events log is web-only. Review what connected tools have changed from the web app's MCP events page.