diff --git a/systems/palatine-hill/configuration.nix b/systems/palatine-hill/configuration.nix
index e9d9f15..425d2a1 100644
--- a/systems/palatine-hill/configuration.nix
+++ b/systems/palatine-hill/configuration.nix
@@ -6,6 +6,7 @@
 }:
 {
   imports = [
+    ./docker.nix
     ./hydra.nix
     ./networking.nix
     ./nextcloud.nix
@@ -47,8 +48,6 @@
     };
   };
 
-  virtualisation.docker.daemon.settings.data-root = "/var/lib/docker2";
-
   environment.systemPackages = with pkgs; [
     attic-client
     attic
diff --git a/systems/palatine-hill/docker.nix b/systems/palatine-hill/docker.nix
new file mode 100644
index 0000000..b91ed53
--- /dev/null
+++ b/systems/palatine-hill/docker.nix
@@ -0,0 +1,11 @@
+{ ... }:
+
+{
+  virtualisation.docker.daemon.settings.data-root = "/var/lib/docker2";
+
+  users.users.docker-service = {
+    isSystemUser = true;
+    extraGroups = [ "docker" ];
+    uid = 600;
+  };
+}