Public Access Prevention Organianization Policy enforce restrictions to prevent unauthorized public access to Cloud Storage resources. By enabling this constraint, you can ensure that no storage buckets or objects in your organization are accessible publicly, enhancing your security posture.

GCP Tags can be used for giving exceptions