At a financial services company operating in the United States, data security policies prohibit storing or processing any data outside the US region. Several development teams use Google Cloud to work with the data. How can you ensure these teams do not create Google Cloud resources outside the US region?