diff --git a/roles/unicorns_website/tasks/main.yml b/roles/unicorns_website/tasks/main.yml
index 66b3103..114be59 100644
--- a/roles/unicorns_website/tasks/main.yml
+++ b/roles/unicorns_website/tasks/main.yml
@@ -34,12 +34,15 @@
   file:
     path: "{{ item }}"
     state: directory
+    mode: '0700'
+    owner: 'root'
+    group: 'root'
   with_items:
     - "{{ unicorns_website_install_location }}"
   become: true
 
 - name: Create data directory
-  file:
+  file: # noqa 208 # Container manages permissions on its own
     path: "{{ item }}"
     state: directory
     setype: "container_file_t"