As a owner of project, I can create service account and attach to a vm instance to manage read from one bucket and extract some data and write to another . However, I too have access to to these by default. Normally, with a group, some users manage to create or use these service accounts. How am I going to achieve that? I don’t find much information on single human projects. All tend to be organization based projects. I really like some explanation from those who use this platform often. This is my first exposure and I understand my project but not gcp.