Your company is developing an internal portal on Google Cloud Platform using a custom VPC. The security team has imposed strict requirements: VMs must not have internet access and should only use private IP addresses. However, your application needs to access files stored in Google Cloud Storage within your project. How can you facilitate this access without violating the security mandates?