diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
index 3e32480d..4b1f8137 100644
--- a/.github/workflows/deploy.yml
+++ b/.github/workflows/deploy.yml
@@ -87,7 +87,8 @@ jobs:
 
     - name: Clone and prepare LangChain service
       run: |
-        git clone https://github.com/ExarLabs/academy-LangChain.git langchain-temp
+        # Clone private repository using PAT (Personal Access Token)
+        git clone https://${{ secrets.ACADEMY_DOCKER_PAT }}@github.com/ExarLabs/academy-LangChain.git langchain-temp
         
     - name: Extract metadata for LangChain image
       id: meta-langchain
diff --git a/DEPLOYMENT.md b/DEPLOYMENT.md
index 557e7176..cc03a376 100644
--- a/DEPLOYMENT.md
+++ b/DEPLOYMENT.md
@@ -53,8 +53,11 @@ This repository is configured to automatically deploy the Academy LMS stack to H
 
 Configure the following secrets in this repository:
 
-- `HETZNER_SSH_KEY`: Private SSH key for accessing the Hetzner server
 - `ACADEMY_DOCKER_PAT`: GitHub Personal Access Token with `repo` and `write:packages` permissions
+  - **IMPORTANT**: This PAT must have access to clone the private `academy-LangChain` repository
+  - Create at: https://github.com/settings/tokens/new
+  - Required scopes: `repo` (full), `write:packages`
+- `HETZNER_SSH_KEY`: Private SSH key for accessing the Hetzner server
 
 For environment variables, you can either:
 - Use a `.env` file on the server (default approach)