When an event (for example, an e-mail message) is received at a server it is saved into a log file (or a summary is saved). The log entry for each message includes a set of groups within an organization to which the message is considered to belong. An administrator who has authority over any one of those groups is allowed to view this message. When an administrator logs onto the system it is determined which group or groups the administrator owns, i.e., for which groups the administrator has the authority to view their e-mail messages. For each e-mail log entry it is determined whether there is a group in common between the set of groups stored in the log entry and the groups that the administrator owns. A group in common indicates that the administrator is allowed to view that particular e-mail message.