As part of the security team, you aim to restrict access to a Cloud Storage bucket within Project A so that it can only be read from Project B. Additionally, you want to prevent any data in the bucket from being accessed or copied to Cloud Storage buckets outside the network, regardless of user credentials. What actions should be taken to achieve this?