diff --git a/.nginx/nginx.conf b/.nginx/nginx.conf
index 4bbb4b49..3fd8a3bf 100644
--- a/.nginx/nginx.conf
+++ b/.nginx/nginx.conf
@@ -5,6 +5,9 @@ server {
     index index.html;
 
     location / {
+        # Security header
+        add_header Referrer-Policy "no-referrer-when-downgrade";
+        add_header X-Frame-Options "DENY" always;
         #if ($request_method = 'OPTIONS') {
         #    add_header 'Access-Control-Allow-Origin' '*' always;
         #    add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always;
@@ -34,4 +37,4 @@ server {
         #}
         try_files $uri $uri/ /index.html;
     }
-}
\ No newline at end of file
+}