To see who has access to your Azure storage account, you can analyze the storage account settings. In your case, the storage account named "vattenfallnlstorageprd" had public network access enabled, which means it was accessible over the public internet. Additionally, diagnostic settings were configured to send logs to a storage analytics workspace.
However, you faced an issue where data was not archived beyond one year. This was due to the retention period for interactive queries and the total retention period being set to one year. To ensure data is archived for longer periods, you need to adjust these retention settings.
For enhanced security, especially since your storage account holds sensitive data, it is recommended to enable private endpoints. Private endpoints provide secure and private access to the storage account over a virtual network.
For more information on setting retention periods and configuring private endpoints, you can refer to these resources: - Data retention and archive in Azure Monitor Logs - Use private endpoints - Azure Storage
Hope this helps. If you have any follow-up questions, please let me know. I would be happy to help.
Please do not forget to "Accept the answer" and "up-vote" wherever the information provided helps you, as this can be beneficial to other community members.