diff --git a/build/proxy/nginx.conf b/build/proxy/nginx.conf
index 3f71335..afd6b9c 100644
--- a/build/proxy/nginx.conf
+++ b/build/proxy/nginx.conf
@@ -29,6 +29,9 @@ http {
 		expires $expires;
 		add_header Content-Security-Policy $csp;
 		add_header Strict-Transport-Security 'max-age=604800; includeSubDomains';
+		add_header Referrer-Policy 'origin-when-cross-origin';
+		add_header X-Content-Type-Options 'nosniff';
+		add_header X-XSS-Protection '1; mode=block';
 
 		location /api/ {
 			proxy_pass http://server;