diff --git a/opentech/settings/base.py b/opentech/settings/base.py
index 6f69720503e51617b7f9ec97f539129301d8cbe1..b0a799c12edd91fd9e5cfebacff031a8165d91da 100644
--- a/opentech/settings/base.py
+++ b/opentech/settings/base.py
@@ -139,6 +139,7 @@ MIDDLEWARE = [
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'django_referrer_policy.middleware.ReferrerPolicyMiddleware',
 
     'opentech.apply.users.middleware.SocialAuthExceptionMiddleware',
 
diff --git a/requirements.txt b/requirements.txt
index 8c45f1d0b3a7c7864ecaf882d5ff22ffc69d40fc..1493824a688710ae27f7c0c31c6b8fb1e175e654 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -32,6 +32,7 @@ dj-database-url==0.5.0
 django-basic-auth-ip-whitelist==0.2.1
 django-heroku==0.3.1
 django-redis==4.9.0
+django-referrer-policy==1.0
 whitenoise==4.0
 gunicorn==19.9.0
 ConcurrentLogHandler==0.9.1