Your team is developing an application for a financial institution. The frontend runs on Compute Engine, while the data is stored in Cloud SQL and a Cloud Storage bucket. The application will handle PII data, which will reside in both Cloud SQL and Cloud Storage. How should you secure this PII data?