Tracking all activities relating to the personal data you hold is vital for both GDPR and HIPAA. This includes tracking of consents, data accesses and tracking of changes. This becomes especially important if you suffer any form of data breach. In that situation, the relevant Data Protection Authority (DPA) can ask to see details of all these actions. The best way to track these is using a secure audit log. This log should be immutable. That is, you should be able to write to the log, but not delete or modify entries.
To help developers with this task, Chino.io offers an extremely simple API that enables secure, immutable audit logging and eliminates all risks in less than 5 minutes.