diff --git a/hosts/hermit/configuration.nix b/hosts/hermit/configuration.nix
index 059bcd6..a56022f 100644
--- a/hosts/hermit/configuration.nix
+++ b/hosts/hermit/configuration.nix
@@ -27,9 +27,6 @@
   modules = {
     system = {
       impermanence.enable = false;
-      services = {
-        nextcloud.enable = true;
-      };
       hardware = {
         nvidia.enable = true;
         bluetooth = {
diff --git a/hosts/temperance/configuration.nix b/hosts/temperance/configuration.nix
index 36cdf94..05b7188 100644
--- a/hosts/temperance/configuration.nix
+++ b/hosts/temperance/configuration.nix
@@ -41,9 +41,6 @@ in {
   modules = {
     system = {
       impermanence.enable = true;
-      services = {
-        nextcloud.enable = true;
-      };
       programs = {
         editors = {
           emacs.enable = true;
diff --git a/modules/services/nextcloud/module.nix b/modules/services/nextcloud/module.nix
deleted file mode 100644
index 53456e5..0000000
--- a/modules/services/nextcloud/module.nix
+++ /dev/null
@@ -1,48 +0,0 @@
-{
-  config,
-  lib,
-  pkgs,
-  ...
-}: let
-  inherit (lib.meta) getExe';
-  inherit (lib.modules) mkIf;
-  cfg = config.modules.system.services.nextcloud;
-in {
-  options.modules.system.services.nextcloud.enable = lib.mkEnableOption "nextcloud";
-
-  config = {
-    systemd.user.services.nextcloud = mkIf cfg.enable {
-      description = "Nextcloud client service";
-
-      # makes the graphical session start this service when it starts
-      wantedBy = ["graphical-session.target"];
-      # when graphical session restarts or gets stopped, this also gets restarted/stopped.
-      partOf = ["graphical-session.target"];
-      # gets started only after graphical session
-      after = ["graphical-session.target"];
-
-      serviceConfig = {
-        ExecStart = "${getExe' pkgs.nextcloud-client "nextcloud"} --background";
-        Restart = "always";
-        RestartSec = 30;
-
-        # User = "cr";
-        # Group = "cr";
-
-        Keyringmode = "shared";
-        DevicePolicy = "closed";
-        PrivateDevices = true;
-        PrivateTmp = true;
-        ProtectClock = true;
-        ProtectControlGroups = true;
-        ProtectControlGroup = true;
-        ProtectKernelLogs = true;
-        ProtectKernelModules = true;
-        ProtectKernelTunables = true;
-
-        ProtectSystem = "strict";
-        SystemCallFilter = "~@clock @cpu-emulation @debug @obsolete @module @mount @raw-io @reboot @swap @privileged";
-      };
-    };
-  };
-}