diff --git a/src/lib/middleware/secure-headers.ts b/src/lib/middleware/secure-headers.ts
index 5eaa8926f3..98323dfbe5 100644
--- a/src/lib/middleware/secure-headers.ts
+++ b/src/lib/middleware/secure-headers.ts
@@ -126,8 +126,7 @@ const secureHeaders: (config: IUnleashConfig) => RequestHandler = (config) => {
             if (req.method === 'OPTIONS') {
                 return next();
             } else if (
-                req.path.startsWith(`${config.server.baseUriPath}/api/`) &&
-                config.flagResolver.isEnabled('stripHeadersOnAPI')
+                req.path.startsWith(`${config.server.baseUriPath}/api/`)
             ) {
                 apiHelmet(req, res, next);
             } else {
diff --git a/src/lib/types/experimental.ts b/src/lib/types/experimental.ts
index 4ea7e2369e..d1b77a8832 100644
--- a/src/lib/types/experimental.ts
+++ b/src/lib/types/experimental.ts
@@ -25,7 +25,6 @@ export type IFlagKey =
     | 'advancedPlayground'
     | 'filterInvalidClientMetrics'
     | 'disableMetrics'
-    | 'stripHeadersOnAPI'
     | 'signals'
     | 'automatedActions'
     | 'celebrateUnleash'
diff --git a/src/server-dev.ts b/src/server-dev.ts
index e38f98ee78..bd52ea379c 100644
--- a/src/server-dev.ts
+++ b/src/server-dev.ts
@@ -40,7 +40,6 @@ process.nextTick(async () => {
                         embedProxyFrontend: true,
                         anonymiseEventLog: false,
                         responseTimeWithAppNameKillSwitch: false,
-                        stripHeadersOnAPI: true,
                         celebrateUnleash: true,
                         featureSearchFeedbackPosting: true,
                         userAccessUIEnabled: true,