Audit logs are essential for compliance, debugging, and security. But setting them up quickly raises real questions: what should we capture? Where to store them? How do we stay GDPR-compliant? How do we avoid leaking sensitive data?

In this talk, we explore how we deal with audit logs in our Symfony projects at SensioLabs: the concrete needs, the classic traps, a tour of the existing bundles, ideas to build a custom audit logger, and how to consume the logs.