A retail company stores data files in an Amazon S3 bucket under Account A and needs to grant access to these files to a business partner. The partner's IAM user, User_DataProcessor, is in Account B. What must be done to enable User_DataProcessor to access the S3 bucket successfully? (Select two actions.)