diff --git a/.docker/Dockerfile-alpine b/.docker/Dockerfile-alpine
index 91174b9d19a..1c5bd3c14ff 100644
--- a/.docker/Dockerfile-alpine
+++ b/.docker/Dockerfile-alpine
@@ -20,6 +20,7 @@ HEREDOC
 
 COPY hydra /usr/bin/hydra
 
+USER ory
+
 ENTRYPOINT ["hydra"]
 CMD ["serve", "all"]
-USER ory
diff --git a/.docker/Dockerfile-build b/.docker/Dockerfile-build
index 0c858feaeb3..18cc454fba9 100644
--- a/.docker/Dockerfile-build
+++ b/.docker/Dockerfile-build
@@ -23,6 +23,8 @@ FROM gcr.io/distroless/static-debian12:nonroot AS runner
 COPY --from=builder --chown=nonroot:nonroot /var/lib/sqlite /var/lib/sqlite
 COPY --from=builder /usr/bin/hydra /usr/bin/hydra
 
+VOLUME /var/lib/sqlite
+
 # Declare the standard ports used by hydra (4444 for public service endpoint, 4445 for admin service endpoint)
 EXPOSE 4444 4445
 
diff --git a/.docker/Dockerfile-hsm b/.docker/Dockerfile-hsm
index 8c51e3fcdac..f2c1c3130a7 100644
--- a/.docker/Dockerfile-hsm
+++ b/.docker/Dockerfile-hsm
@@ -80,6 +80,11 @@ HEREDOC
 
 COPY --from=build-hydra /usr/bin/hydra /usr/bin/hydra
 
+VOLUME /var/lib/sqlite
+
+# Exposing the ory home directory
+VOLUME /home/ory
+
 # Declare the standard ports used by hydra (4444 for public service endpoint, 4445 for admin service endpoint)
 EXPOSE 4444 4445
 
diff --git a/.docker/Dockerfile-sqlite b/.docker/Dockerfile-sqlite
index 82d678bb9ed..dbfb1399d82 100644
--- a/.docker/Dockerfile-sqlite
+++ b/.docker/Dockerfile-sqlite
@@ -25,8 +25,15 @@ RUN <<HEREDOC
     install --owner ory --group ory --directory /var/lib/sqlite
 HEREDOC
 
+WORKDIR /home/ory
+
 COPY hydra /usr/bin/hydra
 
+VOLUME /var/lib/sqlite
+
+# Exposing the ory home directory
+VOLUME /home/ory
+
 # Declare the standard ports used by Hydra (4444 for public service endpoint, 4445 for admin service endpoint)
 EXPOSE 4444 4445