Your team is developing a new web application that uses Amazon API Gateway and AWS Lambda for backend services. The application handles sensitive user data and requires a robust logging strategy to ensure compliance with data protection regulations. Describe how you would implement logging for both API Gateway and Lambda to ensure that all access and operations are logged, and the logs are stored securely and can be easily accessed for auditing purposes.