diff --git a/README.md b/README.md
index 56dafe2..c8f5468 100644
--- a/README.md
+++ b/README.md
@@ -97,7 +97,7 @@ resources that lack official modules.
| [location](#input\_location) | n/a | `string` | n/a | yes |
| [namespace](#input\_namespace) | String used for prefix resources. | `string` | n/a | yes |
| [node\_max\_pods](#input\_node\_max\_pods) | Maximum number of pods per node | `number` | `30` | no |
-| [node\_pool\_zones](#input\_node\_pool\_zones) | Availability zones for the node pool | `list(string)` | [
"1",
"2"
]
| no |
+| [node\_pool\_zones](#input\_node\_pool\_zones) | Availability zones for the node pool | `list(string)` | [
"1",
"2"
]
| no |
| [oidc\_auth\_method](#input\_oidc\_auth\_method) | OIDC auth method | `string` | `"implicit"` | no |
| [oidc\_client\_id](#input\_oidc\_client\_id) | The Client ID of application in your identity provider | `string` | `""` | no |
| [oidc\_issuer](#input\_oidc\_issuer) | A url to your Open ID Connect identity provider, i.e. https://cognito-idp.us-east-1.amazonaws.com/us-east-1_uiIFNdacd | `string` | `""` | no |
diff --git a/modules/secure_storage_connector/main.tf b/modules/secure_storage_connector/main.tf
index 75c259d..571d06d 100644
--- a/modules/secure_storage_connector/main.tf
+++ b/modules/secure_storage_connector/main.tf
@@ -36,6 +36,18 @@ module "storage" {
blob_container_name = var.namespace
deletion_protection = var.deletion_protection
+
+ blob_properties = {
+ delete_retention_policy = {
+ enabled = var.deletion_protection
+ days = 365
+ }
+
+ container_delete_retention_policy = {
+ enabled = var.deletion_protection
+ days = 7
+ }
+ }
}
resource "azurerm_role_assignment" "account" {