The following information is applicable to those that have Admin and Risk Editor permission levels, since these are the only levels that have access to the Fraud Control tab. Risk Editors do not have permission to review the VIP Gift Card (subsection of Payments) or Device ID fields.
Confirm Variables are on VIP List
From the Transaction Details page, view the VIP Summary or the VIP Lists section. Hover over the VIP Summary entry to see the date it was added. Navigate to the Fraud Control > VIP Lists menu to see variables that have been added to your various VIP Lists. Select the VIP List in question, identify the variable in the list, and review the Data Entered column for the correlating timestamp. If the variable is not visible, expand the search by either selecting the gear icon in the upper right hand corner, or by using the pagination on the bottom right corner of the page.
Determine Who Added a Variable
Click Reports > Security > Fraud Control. Select VIP Lists from the Audit Type drop down menu, and enter in a date range. (The date range can be obtained either by hovering over the entry on the Transaction Details page or via the VIP List entry.) Next, select the Create Audit Report button. The results will display the customer email address, and name of the individual who made the addition as well as the date it was made, the VIP Type, Requested Action, VIP Value, and the New Value.