diff --git a/polisplexity/settings.py b/polisplexity/settings.py
index 732d18f..073ae2e 100644
--- a/polisplexity/settings.py
+++ b/polisplexity/settings.py
@@ -123,3 +123,11 @@ NEO4J_PASSWORD = os.getenv("NEO4J_PASSWORD")
 
 # OpenAI
 OPENAI_API_KEY = os.getenv("OPENAI_API_KEY")
+
+# CSRF protection for production
+CSRF_TRUSTED_ORIGINS = [
+    "https://app.polisplexity.tech",
+]
+
+# Support for secure reverse proxy (e.g., Nginx or Hostinger HTTPS proxy)
+SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")