diff --git a/infrastructure/kustomization-secrets.yaml b/infrastructure/kustomization-secrets.yaml
index e76a009..04756c4 100644
--- a/infrastructure/kustomization-secrets.yaml
+++ b/infrastructure/kustomization-secrets.yaml
@@ -9,7 +9,7 @@ spec:
   sourceRef:
     kind: GitRepository
     name: platform
-  path: ./infrastructure/secrets
+  path: ./infrastructure/secret-stores
   dependsOn:
     - name: addon-external-secrets
   wait: true
diff --git a/infrastructure/secret-stores/clustersecretstore-doppler-hetznerterra.yaml b/infrastructure/secret-stores/clustersecretstore-doppler-hetznerterra.yaml
new file mode 100644
index 0000000..dcb6068
--- /dev/null
+++ b/infrastructure/secret-stores/clustersecretstore-doppler-hetznerterra.yaml
@@ -0,0 +1,13 @@
+apiVersion: external-secrets.io/v1
+kind: ClusterSecretStore
+metadata:
+  name: doppler-hetznerterra
+spec:
+  provider:
+    doppler:
+      auth:
+        secretRef:
+          dopplerToken:
+            name: doppler-hetznerterra-service-token
+            key: dopplerToken
+            namespace: external-secrets
diff --git a/infrastructure/secret-stores/kustomization.yaml b/infrastructure/secret-stores/kustomization.yaml
new file mode 100644
index 0000000..15238f5
--- /dev/null
+++ b/infrastructure/secret-stores/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - clustersecretstore-doppler-hetznerterra.yaml