diff --git a/conf/passbolt.conf b/conf/passbolt.conf
index 9252cdf..c48a17a 100644
--- a/conf/passbolt.conf
+++ b/conf/passbolt.conf
@@ -72,9 +72,6 @@ server {
   # This header enables the Cross-site scripting (XSS) filter
   add_header X-XSS-Protection "1; mode=block";
 
-  # This will enforce HTTP browsing into HTTPS and avoid ssl stripping attack
-  add_header Strict-Transport-Security "max-age=31536000; includeSubdomains;";
-
   location / {
     try_files $uri $uri/ /index.php?$args;
     index index.php;