Add audit logging for compliance

[jenniferjiangkells]

Description

Implement structured audit logging to track all data access (who accessed what patient data, when). Meet HIPAA audit trail requirements for production healthcare deployments.

• Audit logging middleware
• Postgres schema for audit events
• Log user identity, resource accessed, timestamp, outcome
• Query interface for audit reports
• HIPAA compliance documentation