diff --git a/ansible/roles/doppler-bootstrap/tasks/main.yml b/ansible/roles/doppler-bootstrap/tasks/main.yml
index d52c063..a85775d 100644
--- a/ansible/roles/doppler-bootstrap/tasks/main.yml
+++ b/ansible/roles/doppler-bootstrap/tasks/main.yml
@@ -15,3 +15,22 @@
     --from-literal=dopplerToken='{{ doppler_hetznerterra_service_token }}'
     --dry-run=client -o yaml | kubectl apply -f -
   changed_when: true
+
+- name: Apply Doppler ClusterSecretStore
+  shell: |
+    cat <<'EOF' | kubectl apply -f -
+    apiVersion: external-secrets.io/v1
+    kind: ClusterSecretStore
+    metadata:
+      name: doppler-hetznerterra
+    spec:
+      provider:
+        doppler:
+          auth:
+            secretRef:
+              dopplerToken:
+                name: doppler-hetznerterra-service-token
+                key: dopplerToken
+                namespace: external-secrets
+    EOF
+  changed_when: true
diff --git a/infrastructure/kustomization-secrets.yaml b/infrastructure/kustomization-secrets.yaml
deleted file mode 100644
index 4707d77..0000000
--- a/infrastructure/kustomization-secrets.yaml
+++ /dev/null
@@ -1,17 +0,0 @@
-apiVersion: kustomize.toolkit.fluxcd.io/v1
-kind: Kustomization
-metadata:
-  name: secrets
-  namespace: flux-system
-spec:
-  interval: 10m
-  prune: true
-  validation: none
-  sourceRef:
-    kind: GitRepository
-    name: platform
-  path: ./infrastructure/secret-stores
-  dependsOn:
-    - name: addon-external-secrets
-  wait: true
-  timeout: 5m
diff --git a/infrastructure/kustomization.yaml b/infrastructure/kustomization.yaml
index 8d10d22..05a626a 100644
--- a/infrastructure/kustomization.yaml
+++ b/infrastructure/kustomization.yaml
@@ -2,4 +2,3 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 resources:
   - addons
-  - kustomization-secrets.yaml
diff --git a/infrastructure/secret-stores/clustersecretstore-doppler-hetznerterra.yaml b/infrastructure/secret-stores/clustersecretstore-doppler-hetznerterra.yaml
deleted file mode 100644
index dcb6068..0000000
--- a/infrastructure/secret-stores/clustersecretstore-doppler-hetznerterra.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-apiVersion: external-secrets.io/v1
-kind: ClusterSecretStore
-metadata:
-  name: doppler-hetznerterra
-spec:
-  provider:
-    doppler:
-      auth:
-        secretRef:
-          dopplerToken:
-            name: doppler-hetznerterra-service-token
-            key: dopplerToken
-            namespace: external-secrets
diff --git a/infrastructure/secret-stores/kustomization.yaml b/infrastructure/secret-stores/kustomization.yaml
deleted file mode 100644
index 15238f5..0000000
--- a/infrastructure/secret-stores/kustomization.yaml
+++ /dev/null
@@ -1,4 +0,0 @@
-apiVersion: kustomize.config.k8s.io/v1beta1
-kind: Kustomization
-resources:
-  - clustersecretstore-doppler-hetznerterra.yaml