Data Retention and Log Management with Trunc

Step 1: Overview

DNS filtering generates valuable data about network activity — what domains are being queried, what's being blocked, and usage patterns over time. Managing this data is important for:

• Compliance — Schools (CIPA), healthcare (HIPAA), and enterprises may need audit trails
• Troubleshooting — Historical logs help diagnose issues that aren't happening right now
• Reporting — Understand usage patterns, identify threats, and justify filtering policies
• Accountability — Provide evidence of filtering for auditors, boards, or parents

Step 2: Default Log Retention in CleanBrowsing

CleanBrowsing's built-in dashboard provides DNS activity monitoring with the following defaults:

• Free accounts: No log retention (real-time only)
• Paid accounts: Up to 30 days of DNS query logs viewable in the dashboard

For most home users, 30 days is sufficient. But organizations that need longer retention — 90 days, 1 year, or more — need an external log management solution.

For details on the built-in activity monitoring, see How to Monitor DNS Activity.

Step 3: What Is Trunc?

Trunc is a log management and data retention platform built by the same team behind CleanBrowsing. It's designed specifically for DNS and security log data.

Key capabilities:

• Extended retention — Store DNS logs for months or years
• Search and filter — Query historical logs by domain, category, date range, or action
• Compliance reports — Generate reports for CIPA, E-Rate, and organizational audits
• Trend analysis — Identify patterns in DNS activity over time
• Export — Download log data in standard formats for external analysis

Step 4: Connecting CleanBrowsing to Trunc

To enable extended log retention:

1. Create a Trunc account if you don't have one
2. Log into your CleanBrowsing dashboard
3. Navigate to Settings → Integrations
4. Connect your Trunc account using the provided API key
5. Configure your retention period and which data to forward

Once connected, CleanBrowsing automatically forwards DNS query logs to Trunc for long-term storage. The data appears in both dashboards — CleanBrowsing for real-time monitoring and Trunc for historical analysis.

Step 5: Compliance Use Cases

Schools (CIPA / E-Rate)

The Children's Internet Protection Act (CIPA) requires schools receiving E-Rate funding to implement internet filtering. While CIPA doesn't specify log retention periods, many districts maintain 1+ year of logs for audits. Trunc makes this straightforward with automated retention and compliance-ready reports.

See our CIPA compliance guide for more details.

MSPs and Managed Networks

Managed Service Providers managing DNS filtering for multiple clients can use Trunc to maintain per-client log archives, generate monthly reports, and demonstrate filtering effectiveness.

Enterprise

Organizations with internal security policies or regulatory requirements can use Trunc to maintain audit trails of DNS activity, track security incidents, and generate compliance documentation.

Step 6: Privacy and Data Handling

Both CleanBrowsing and Trunc take data privacy seriously:

• DNS logs contain domain queries only — not page content, URLs, or personal data
• Data is encrypted in transit and at rest
• You control your retention period — data is automatically purged after your configured timeframe
• No data is sold or shared with third parties
• You can delete your data at any time from the Trunc dashboard

For details, see the CleanBrowsing Privacy Policy.