diff --git a/s3.tf b/s3.tf
index 5e4a1f8..d9d5f07 100644
--- a/s3.tf
+++ b/s3.tf
@@ -34,3 +34,12 @@ resource "aws_s3_bucket" "bucket" {
     Name = "${upper(var.project_name)} Inventory Report"
   }
 }
+
+resource "aws_s3_bucket_public_access_block" "bucket" {
+  bucket = aws_s3_bucket.bucket.id
+
+  block_public_acls       = true
+  ignore_public_acls      = true
+  block_public_policy     = true
+  restrict_public_buckets = true
+}