diff --git a/.circleci/config.yml b/.circleci/config.yml
index 10654b21..32a17e82 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -287,13 +287,13 @@ jobs:
             sleep 3
             sops -e -p $FP \
               --encrypted-suffix='Templates' \
-              config/samples/isindir_v1alpha2_sopssecret.yaml \
-              > config/samples/isindir_v1alpha2_sopssecret.enc.yaml
-            file config/samples/isindir_v1alpha2_sopssecret.enc.yaml
+              config/samples/isindir_v1alpha3_sopssecret.yaml \
+              > config/samples/isindir_v1alpha3_sopssecret.enc.yaml
+            file config/samples/isindir_v1alpha3_sopssecret.enc.yaml
             echo "====================================="
-            cat config/samples/isindir_v1alpha2_sopssecret.enc.yaml
+            cat config/samples/isindir_v1alpha3_sopssecret.enc.yaml
             echo "====================================="
-            kubectl apply -f config/samples/isindir_v1alpha2_sopssecret.enc.yaml --namespace sops
+            kubectl apply -f config/samples/isindir_v1alpha3_sopssecret.enc.yaml --namespace sops
             sleep 3
             nohup make run &
             sleep 150
@@ -301,16 +301,41 @@ jobs:
             echo
             kubectl get secrets --namespace sops
             echo
-            export SECRETS_NUMBER=$( kubectl get secrets --namespace sops \
-              | awk '$0!~/default-token/ && $0!~/NAME/ { print $1; }' \
+            export SECRETS_NUMBER=$( kubectl get secrets --namespace sops --no-headers \
+              | awk '$0 !~ /default-token/ { print $1; }' \
               | wc -l )
-            if [[ $SECRETS_NUMBER -ne 4 ]]; then
-              echo "Expected number of secrets in sops namespace is 4 - Failed"
+            if [[ $SECRETS_NUMBER -ne 5 ]]; then
+              echo "Expected number of secrets in sops namespace is 5 - Failed"
+              tail -40 nohup.out
+              exit 1
+            fi
+            # Check specific k8s for amount of data entries
+            ## my-secret-name-0
+            export DATA_ENTRIES=$( kubectl get secrets my-secret-name-0 --namespace sops --no-headers \
+              | awk '{print $3}' )
+            if [[ $DATA_ENTRIES -ne 2 ]]; then
+              echo "Expected number of data entries in my-secret-name-0 is 2 - Failed"
+              tail -40 nohup.out
+              exit 1
+            fi
+            ## my-secret-name-1
+            export DATA_ENTRIES=$( kubectl get secrets my-secret-name-1 --namespace sops --no-headers \
+              | awk '{print $3}' )
+            if [[ $DATA_ENTRIES -ne 3 ]]; then
+              echo "Expected number of data entries in my-secret-name-1 is 3 - Failed"
+              tail -40 nohup.out
+              exit 1
+            fi
+            ## my-secret-name-2
+            export DATA_ENTRIES=$( kubectl get secrets my-secret-name-2 --namespace sops --no-headers \
+              | awk '{print $3}' )
+            if [[ $DATA_ENTRIES -ne 2 ]]; then
+              echo "Expected number of data entries in my-secret-name-2 is 2 - Failed"
               tail -40 nohup.out
               exit 1
             fi
             # Delete to check GC works
-            kubectl delete -f config/samples/isindir_v1alpha2_sopssecret.enc.yaml --namespace sops
+            kubectl delete -f config/samples/isindir_v1alpha3_sopssecret.enc.yaml --namespace sops
             sleep 15
             kubectl get sops --namespace sops
             echo
diff --git a/Makefile b/Makefile
index 154dd20a..9040499a 100644
--- a/Makefile
+++ b/Makefile
@@ -1,5 +1,5 @@
 GO := GOPROXY=https://proxy.golang.org go
-SOPS_SEC_OPERATOR_VERSION := 0.2.2
+SOPS_SEC_OPERATOR_VERSION := 0.3.0
 
 # https://github.com/kubernetes-sigs/controller-tools/releases
 CONTROLLER_GEN_VERSION := "v0.4.1"
diff --git a/PROJECT b/PROJECT
index d75e7650..bbd3945e 100644
--- a/PROJECT
+++ b/PROJECT
@@ -11,6 +11,6 @@ resources:
   domain: github.com
   group: isindir
   kind: SopsSecret
-  path: github.com/isindir/sops-secrets-operator/api/v1alpha2
-  version: v1alpha2
+  path: github.com/isindir/sops-secrets-operator/api/v1alpha3
+  version: v1alpha3
 version: "3"
diff --git a/README.md b/README.md
index 29896e0f..917cd5dd 100644
--- a/README.md
+++ b/README.md
@@ -142,26 +142,37 @@ helm upgrade --install sops chart/helm3/sops-secrets-operator/ \
 
 ```yaml
 cat >jenkins-secrets.yaml <<EOF
-apiVersion: isindir.github.com/v1alpha2
+apiVersion: isindir.github.com/v1alpha3
 kind: SopsSecret
 metadata:
   name: example-sopssecret
 spec:
+  # suspend reconciliation of the sops secret object
+  suspend: false
   secretTemplates:
+    - name: my-secret-name-1
+      labels:
+        label1: value1
+      annotations:
+        key1: value1
+      stringData:
+        data-name0: data-value0
+      data:
+        data-name1: ZGF0YS12YWx1ZTE=
     - name: jenkins-secret
       labels:
         "jenkins.io/credentials-type": "usernamePassword"
       annotations:
         "jenkins.io/credentials-description" : "credentials from Kubernetes"
-      data:
+      stingData:
         username: myUsername
         password: 'Pa$$word'
     - name: some-token
-      data:
+      stringData:
         token: Wb4ziZdELkdUf6m6KtNd7iRjjQRvSeJno5meH4NAGHFmpqJyEsekZ2WjX232s4Gj
     - name: docker-login
       type: 'kubernetes.io/dockerconfigjson'
-      data:
+      stringData:
         .dockerconfigjson: '{"auths":{"index.docker.io":{"username":"imyuser","password":"mypass","email":"myuser@abc.com","auth":"aW15dXNlcjpteXBhc3M="}}}'
 EOF
 ```
diff --git a/api/v1alpha2/groupversion_info.go b/api/v1alpha3/groupversion_info.go
similarity index 62%
rename from api/v1alpha2/groupversion_info.go
rename to api/v1alpha3/groupversion_info.go
index 44be9d09..d5e188d8 100644
--- a/api/v1alpha2/groupversion_info.go
+++ b/api/v1alpha3/groupversion_info.go
@@ -1,11 +1,7 @@
-/* This Source Code Form is subject to the terms of the Mozilla Public
- * License, v. 2.0. If a copy of the MPL was not distributed with this
- * file, You can obtain one at https://mozilla.org/MPL/2.0/. */
-
-// Package v1alpha2 contains API Schema definitions for the isindir v1alpha2 API group
+// Package v1alpha3 contains API Schema definitions for the isindir v1alpha3 API group
 //+kubebuilder:object:generate=true
 //+groupName=isindir.github.com
-package v1alpha2
+package v1alpha3
 
 import (
 	"k8s.io/apimachinery/pkg/runtime/schema"
@@ -14,7 +10,7 @@ import (
 
 var (
 	// GroupVersion is group version used to register these objects
-	GroupVersion = schema.GroupVersion{Group: "isindir.github.com", Version: "v1alpha2"}
+	GroupVersion = schema.GroupVersion{Group: "isindir.github.com", Version: "v1alpha3"}
 
 	// SchemeBuilder is used to add go types to the GroupVersionKind scheme
 	SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion}
diff --git a/api/v1alpha2/sopssecret_types.go b/api/v1alpha3/sopssecret_types.go
similarity index 91%
rename from api/v1alpha2/sopssecret_types.go
rename to api/v1alpha3/sopssecret_types.go
index fa1255c7..e965f3f3 100644
--- a/api/v1alpha2/sopssecret_types.go
+++ b/api/v1alpha3/sopssecret_types.go
@@ -2,7 +2,7 @@
  * License, v. 2.0. If a copy of the MPL was not distributed with this
  * file, You can obtain one at https://mozilla.org/MPL/2.0/. */
 
-package v1alpha2
+package v1alpha3
 
 import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -11,9 +11,22 @@ import (
 // NOTE: json tags are required.  Any new fields you add must have json tags for the fields to be serialized.
 // For upstream reference, see https://github.com/mozilla/sops/blob/master/stores/stores.go
 
+// SopsSecretSpec defines the desired state of SopsSecret
+type SopsSecretSpec struct {
+	// Secrets template is a list of definitions to create Kubernetes Secrets
+	// +kubebuilder:validation:MinItems=1
+	// +required
+	SecretsTemplate []SopsSecretTemplate `json:"secretTemplates"`
+
+	// This flag tells the controller to suspend the reconciliation of this source.
+	// +optional
+	Suspend bool `json:"suspend,omitempty"`
+}
+
 // SopsSecretTemplate defines the map of secrets to create
 type SopsSecretTemplate struct {
 	// Name of the Kubernetes secret to create
+	// +required
 	Name string `json:"name"`
 
 	// Annotations to apply to Kubernetes secret
@@ -31,19 +44,15 @@ type SopsSecretTemplate struct {
 	// +optional
 	Type string `json:"type,omitempty"`
 
-	// Data map to use in Kubernetes secret (equivalent to Kubernetes Secret object stringData, please see for more
+	// Data map to use in Kubernetes secret (equivalent to Kubernetes Secret object data, please see for more
 	// information: https://kubernetes.io/docs/concepts/configuration/secret/#overview-of-secrets)
-	Data map[string]string `json:"data"`
-}
-
-// SopsSecretSpec defines the desired state of SopsSecret
-type SopsSecretSpec struct {
-	// INSERT ADDITIONAL SPEC FIELDS - desired state of cluster
-	// Important: Run "make" to regenerate code after modifying this file
+	// +optional
+	Data map[string]string `json:"data,omitempty"`
 
-	// Secrets template is a list of definitions to create Kubernetes Secrets
-	//+kubebuilder:validation:MinItems=1
-	SecretsTemplate []SopsSecretTemplate `json:"secretTemplates"`
+	// stringData map to use in Kubernetes secret (equivalent to Kubernetes Secret object stringData, please see for more
+	// information: https://kubernetes.io/docs/concepts/configuration/secret/#overview-of-secrets)
+	// +optional
+	StringData map[string]string `json:"stringData,omitempty"`
 }
 
 // KmsDataItem defines AWS KMS specific encryption details
diff --git a/api/v1alpha2/zz_generated.deepcopy.go b/api/v1alpha3/zz_generated.deepcopy.go
similarity index 97%
rename from api/v1alpha2/zz_generated.deepcopy.go
rename to api/v1alpha3/zz_generated.deepcopy.go
index 52dbd7ff..e512ed2c 100644
--- a/api/v1alpha2/zz_generated.deepcopy.go
+++ b/api/v1alpha3/zz_generated.deepcopy.go
@@ -2,7 +2,7 @@
 
 // Code generated by controller-gen. DO NOT EDIT.
 
-package v1alpha2
+package v1alpha3
 
 import (
 	runtime "k8s.io/apimachinery/pkg/runtime"
@@ -264,6 +264,13 @@ func (in *SopsSecretTemplate) DeepCopyInto(out *SopsSecretTemplate) {
 			(*out)[key] = val
 		}
 	}
+	if in.StringData != nil {
+		in, out := &in.StringData, &out.StringData
+		*out = make(map[string]string, len(*in))
+		for key, val := range *in {
+			(*out)[key] = val
+		}
+	}
 }
 
 // DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SopsSecretTemplate.
diff --git a/chart/helm3/sops-secrets-operator/Chart.yaml b/chart/helm3/sops-secrets-operator/Chart.yaml
index f6c0c476..b09c6839 100644
--- a/chart/helm3/sops-secrets-operator/Chart.yaml
+++ b/chart/helm3/sops-secrets-operator/Chart.yaml
@@ -1,6 +1,6 @@
 apiVersion: v2
-version: 0.8.4
-appVersion: 0.2.2
+version: 0.9.0
+appVersion: 0.3.0
 type: application
 description: Helm chart deploys sops-secrets-operator
 name: sops-secrets-operator
@@ -23,7 +23,7 @@ metadata:
     artifacthub.io/operatorCapabilities: "Full Lifecycle"
     artifacthub.io/crds:
     - kind: SopsSecret
-      version: isindir.github.com/v1alpha2
+      version: isindir.github.com/v1alpha3
       name: sopssecret
       displayName: SopsSecret
       description: SopsSecret - encapsulates sops encrypted kubernetes secrets definitions
diff --git a/chart/helm3/sops-secrets-operator/README.md b/chart/helm3/sops-secrets-operator/README.md
index 89deb2c7..480b447d 100644
--- a/chart/helm3/sops-secrets-operator/README.md
+++ b/chart/helm3/sops-secrets-operator/README.md
@@ -131,7 +131,7 @@ The following table lists the configurable parameters of the Sops-secrets-operat
 | healthProbes.readiness | object | `{"initialDelaySeconds":5,"periodSeconds":10}` | Readiness probe configuration |
 | image.pullPolicy | string | `"Always"` | Operator image pull policy |
 | image.repository | string | `"isindir/sops-secrets-operator"` | Operator image name |
-| image.tag | string | `"0.2.2"` | Operator image tag |
+| image.tag | string | `"0.3.0"` | Operator image tag |
 | imagePullSecrets | list | `[]` | Secrets to pull image from private docker repository |
 | kubeconfig | object | `{"enabled":false,"path":null}` | Paths to a kubeconfig. Only required if out-of-cluster. |
 | logging | object | `{"encoder":"json","level":"info","stacktraceLevel":"error"}` | Logging configuration section suggested values Development Mode (encoder=consoleEncoder,logLevel=Debug,stackTraceLevel=Warn). Production Mode (encoder=jsonEncoder,logLevel=Info,stackTraceLevel=Error) (default) |
diff --git a/chart/helm3/sops-secrets-operator/tests/operator_test.yaml b/chart/helm3/sops-secrets-operator/tests/operator_test.yaml
index 80bf2de8..90140f01 100644
--- a/chart/helm3/sops-secrets-operator/tests/operator_test.yaml
+++ b/chart/helm3/sops-secrets-operator/tests/operator_test.yaml
@@ -30,8 +30,8 @@ tests:
             app.kubernetes.io/instance: sops
             app.kubernetes.io/managed-by: Helm
             app.kubernetes.io/name: sops-secrets-operator
-            app.kubernetes.io/version: 0.2.2
-            helm.sh/chart: sops-secrets-operator-0.8.4
+            app.kubernetes.io/version: 0.3.0
+            helm.sh/chart: sops-secrets-operator-0.9.0
 
   # template metadata and spec selector
   - it: should correctly render template metadata and spec selector
@@ -140,7 +140,7 @@ tests:
     asserts:
       - equal:
           path: spec.template.spec.containers[0].image
-          value: isindir/sops-secrets-operator:0.2.2
+          value: isindir/sops-secrets-operator:0.3.0
       - equal:
           path: spec.template.spec.containers[0].imagePullPolicy
           value: Always
diff --git a/chart/helm3/sops-secrets-operator/values.yaml b/chart/helm3/sops-secrets-operator/values.yaml
index f5ef1fe1..4d91ffcf 100644
--- a/chart/helm3/sops-secrets-operator/values.yaml
+++ b/chart/helm3/sops-secrets-operator/values.yaml
@@ -12,7 +12,7 @@ image:
   # -- Operator image name
   repository: isindir/sops-secrets-operator
   # -- Operator image tag
-  tag: 0.2.2
+  tag: 0.3.0
   # -- Operator image pull policy
   pullPolicy: Always
 
diff --git a/config/crd/bases/isindir.github.com_sopssecrets.yaml b/config/crd/bases/isindir.github.com_sopssecrets.yaml
index 08403700..33421b62 100644
--- a/config/crd/bases/isindir.github.com_sopssecrets.yaml
+++ b/config/crd/bases/isindir.github.com_sopssecrets.yaml
@@ -22,7 +22,7 @@ spec:
     - jsonPath: .status.message
       name: Status
       type: string
-    name: v1alpha2
+    name: v1alpha3
     schema:
       openAPIV3Schema:
         description: SopsSecret is the Schema for the sopssecrets API
@@ -178,8 +178,8 @@ spec:
                       additionalProperties:
                         type: string
                       description: 'Data map to use in Kubernetes secret (equivalent
-                        to Kubernetes Secret object stringData, please see for more
-                        information: https://kubernetes.io/docs/concepts/configuration/secret/#overview-of-secrets)'
+                        to Kubernetes Secret object data, please see for more information:
+                        https://kubernetes.io/docs/concepts/configuration/secret/#overview-of-secrets)'
                       type: object
                     labels:
                       additionalProperties:
@@ -189,6 +189,13 @@ spec:
                     name:
                       description: Name of the Kubernetes secret to create
                       type: string
+                    stringData:
+                      additionalProperties:
+                        type: string
+                      description: 'stringData map to use in Kubernetes secret (equivalent
+                        to Kubernetes Secret object stringData, please see for more
+                        information: https://kubernetes.io/docs/concepts/configuration/secret/#overview-of-secrets)'
+                      type: object
                     type:
                       description: 'Kubernetes secret type. Default: Opauqe. Possible
                         values: Opauqe, kubernetes.io/service-account-token, kubernetes.io/dockercfg,
@@ -196,11 +203,14 @@ spec:
                         kubernetes.io/ssh-auth, kubernetes.io/tls, bootstrap.kubernetes.io/token'
                       type: string
                   required:
-                  - data
                   - name
                   type: object
                 minItems: 1
                 type: array
+              suspend:
+                description: This flag tells the controller to suspend the reconciliation
+                  of this source.
+                type: boolean
             required:
             - secretTemplates
             type: object
diff --git a/config/samples/isindir_v1alpha2_sopssecret.yaml b/config/samples/isindir_v1alpha3_sopssecret.yaml
similarity index 64%
rename from config/samples/isindir_v1alpha2_sopssecret.yaml
rename to config/samples/isindir_v1alpha3_sopssecret.yaml
index b68af7c2..e5608fcf 100644
--- a/config/samples/isindir_v1alpha2_sopssecret.yaml
+++ b/config/samples/isindir_v1alpha3_sopssecret.yaml
@@ -1,7 +1,7 @@
-apiVersion: isindir.github.com/v1alpha2
+apiVersion: isindir.github.com/v1alpha3
 kind: SopsSecret
 metadata:
-  name: example-sopssecret
+  name: sopssecret-sample
 spec:
   secretTemplates:
     - name: my-secret-name-0
@@ -11,28 +11,36 @@ spec:
       annotations:
         key0: value0
         keyN: valueN
-      data:
+      stringData:
         data-name0: data-value0
         data-nameL: data-valueL
-    - name: my-secret-name-z
+    - name: my-secret-name-1
       labels:
-        label0: value0
-        labelK: valueK
+        label1: value1
       annotations:
-        key0: value0
-        keyN: valueN
+        key1: value1
       data:
+        data-name1: ZGF0YS12YWx1ZTE=
+        data-nameM: ZGF0YS12YWx1ZU0=
+      stringData:
         data-name0: data-value0
-        data-nameL: data-valueL
+    - name: my-secret-name-2
+      labels:
+        label1: value1
+      annotations:
+        key1: value1
+      data:
+        data-name1: ZGF0YS12YWx1ZTE=
+        data-nameM: ZGF0YS12YWx1ZU0=
     - name: jenkins-secret
       labels:
         "jenkins.io/credentials-type": "usernamePassword"
       annotations:
         "jenkins.io/credentials-description" : "credentials from Kubernetes"
-      data:
+      stringData:
         username: myUsername
         password: 'Pa$$word'
     - name: docker-login
       type: 'kubernetes.io/dockerconfigjson'
-      data:
+      stringData:
         .dockerconfigjson: '{"auths":{"index.docker.io":{"username":"imyuser","password":"mypass","email":"myuser@abc.com","auth":"aW15dXNlcjpteXBhc3M="}}}'
diff --git a/controllers/sopssecret_controller.go b/controllers/sopssecret_controller.go
index 59f805f1..bc7b934f 100644
--- a/controllers/sopssecret_controller.go
+++ b/controllers/sopssecret_controller.go
@@ -6,6 +6,7 @@ package controllers
 
 import (
 	"context"
+	"encoding/base64"
 	"encoding/json"
 	"fmt"
 	"io/ioutil"
@@ -24,7 +25,7 @@ import (
 	"sigs.k8s.io/controller-runtime/pkg/controller/controllerutil"
 	"sigs.k8s.io/controller-runtime/pkg/reconcile"
 
-	isindirv1alpha2 "github.com/isindir/sops-secrets-operator/api/v1alpha2"
+	isindirv1alpha3 "github.com/isindir/sops-secrets-operator/api/v1alpha3"
 
 	"go.mozilla.org/sops/v3"
 	sopsaes "go.mozilla.org/sops/v3/aes"
@@ -57,8 +58,8 @@ func (r *SopsSecretReconciler) Reconcile(ctx context.Context, req ctrl.Request)
 
 	r.Log.Info("Reconciling", "sopssecret", req.NamespacedName)
 
-	instanceEncrypted := &isindirv1alpha2.SopsSecret{}
-	err := r.Get(context.TODO(), req.NamespacedName, instanceEncrypted)
+	instanceEncrypted := &isindirv1alpha3.SopsSecret{}
+	err := r.Get(ctx, req.NamespacedName, instanceEncrypted)
 	if err != nil {
 		if errors.IsNotFound(err) {
 			// Request object not found, could have been deleted after reconcile request.
@@ -71,15 +72,30 @@ func (r *SopsSecretReconciler) Reconcile(ctx context.Context, req ctrl.Request)
 			)
 			return reconcile.Result{}, nil
 		}
+
 		// Error reading the object - requeue the request.
 		r.Log.Info(
-			"Error reading the object - requeue the request",
+			"Error reading the object",
 			"sopssecret",
 			req.NamespacedName,
 		)
 		return reconcile.Result{}, err
 	}
 
+	// Return early if the object is suspended.
+	if instanceEncrypted.Spec.Suspend {
+		r.Log.Info(
+			"Reconciliation is suspended for this object",
+			"sopssecret",
+			req.NamespacedName,
+		)
+
+		instanceEncrypted.Status.Message = "Reconciliation is suspended"
+		r.Status().Update(context.Background(), instanceEncrypted)
+
+		return reconcile.Result{}, nil
+	}
+
 	instance, err := decryptSopsSecretInstance(instanceEncrypted, r.Log)
 	if err != nil {
 		//instance.Status.SecretsTotal = len(instance.Spec.SecretsTemplate)
@@ -133,7 +149,7 @@ func (r *SopsSecretReconciler) Reconcile(ctx context.Context, req ctrl.Request)
 		// Check if this Secret already exists
 		foundSecret := &corev1.Secret{}
 		err = r.Get(
-			context.TODO(),
+			ctx,
 			types.NamespacedName{
 				Name:      newSecret.Name,
 				Namespace: newSecret.Namespace,
@@ -148,7 +164,7 @@ func (r *SopsSecretReconciler) Reconcile(ctx context.Context, req ctrl.Request)
 				"message",
 				err,
 			)
-			err = r.Create(context.TODO(), newSecret)
+			err = r.Create(ctx, newSecret)
 			foundSecret = newSecret.DeepCopy()
 		}
 		if err != nil {
@@ -196,7 +212,7 @@ func (r *SopsSecretReconciler) Reconcile(ctx context.Context, req ctrl.Request)
 				"namespace",
 				foundSecret.Namespace,
 			)
-			if err = r.Update(context.TODO(), foundSecret); err != nil {
+			if err = r.Update(ctx, foundSecret); err != nil {
 				instanceEncrypted.Status.Message = "Child secret update error"
 				r.Status().Update(context.Background(), instanceEncrypted)
 
@@ -242,15 +258,15 @@ func (r *SopsSecretReconciler) SetupWithManager(mgr ctrl.Manager) error {
 	}
 
 	return ctrl.NewControllerManagedBy(mgr).
-		For(&isindirv1alpha2.SopsSecret{}).
+		For(&isindirv1alpha3.SopsSecret{}).
 		Owns(&corev1.Secret{}).
 		Complete(r)
 }
 
 // newSecretForCR returns a secret with the same namespace as the cr
 func newSecretForCR(
-	cr *isindirv1alpha2.SopsSecret,
-	secretTpl *isindirv1alpha2.SopsSecretTemplate,
+	cr *isindirv1alpha3.SopsSecret,
+	secretTpl *isindirv1alpha3.SopsSecretTemplate,
 	reqLogger logr.Logger,
 ) (*corev1.Secret, error) {
 	labels := make(map[string]string)
@@ -264,10 +280,18 @@ func newSecretForCR(
 		annotations[key] = value
 	}
 
-	// Construct Data for the secret
-	data := make(map[string]string)
+	// Construct stringData for the secret
+	strData := make(map[string]string)
+	for key, value := range secretTpl.StringData {
+		strData[key] = value
+	}
+	// add data to stringData
 	for key, value := range secretTpl.Data {
-		data[key] = value
+		decoded, err := base64.StdEncoding.DecodeString(value)
+		if err != nil {
+			return nil, fmt.Errorf("newSecretForCR(): data[%v] is not a valid base65 string", key)
+		}
+		strData[key] = string(decoded)
 	}
 
 	if secretTpl.Name == "" {
@@ -299,7 +323,7 @@ func newSecretForCR(
 			Annotations: annotations,
 		},
 		Type:       kubeSecretType,
-		StringData: data,
+		StringData: strData,
 	}
 	return secret, nil
 }
@@ -333,10 +357,10 @@ func getSecretType(paramType string) corev1.SecretType {
 
 // decryptSopsSecretInstance decrypts spec.secretTemplates
 func decryptSopsSecretInstance(
-	instanceEncrypted *isindirv1alpha2.SopsSecret,
+	instanceEncrypted *isindirv1alpha3.SopsSecret,
 	reqLogger logr.Logger,
-) (*isindirv1alpha2.SopsSecret, error) {
-	instance := &isindirv1alpha2.SopsSecret{}
+) (*isindirv1alpha3.SopsSecret, error) {
+	instance := &isindirv1alpha3.SopsSecret{}
 	reqBodyBytes, err := json.Marshal(instanceEncrypted)
 	if err != nil {
 		reqLogger.Info(
diff --git a/controllers/suite_test.go b/controllers/suite_test.go
index cf597c9a..661d60d6 100644
--- a/controllers/suite_test.go
+++ b/controllers/suite_test.go
@@ -18,7 +18,7 @@ import (
 	logf "sigs.k8s.io/controller-runtime/pkg/log"
 	"sigs.k8s.io/controller-runtime/pkg/log/zap"
 
-	isindirv1alpha2 "github.com/isindir/sops-secrets-operator/api/v1alpha2"
+	isindirv1alpha3 "github.com/isindir/sops-secrets-operator/api/v1alpha3"
 	//+kubebuilder:scaffold:imports
 )
 
@@ -50,7 +50,7 @@ var _ = BeforeSuite(func() {
 	Expect(err).NotTo(HaveOccurred())
 	Expect(cfg).NotTo(BeNil())
 
-	err = isindirv1alpha2.AddToScheme(scheme.Scheme)
+	err = isindirv1alpha3.AddToScheme(scheme.Scheme)
 	Expect(err).NotTo(HaveOccurred())
 
 	//+kubebuilder:scaffold:scheme
diff --git a/docs/age/README.md b/docs/age/README.md
index bb092cf0..d191e1b7 100644
--- a/docs/age/README.md
+++ b/docs/age/README.md
@@ -6,7 +6,7 @@ export SOPS_AGE_KEY=$( age-keygen -o qqq.key.txt 2>&1 | awk '{ print $3 }' )
 export SOPS_AGE_KEY_FILE=$PWD/qqq.key.txt
 
 cat >qqq.jenkins-secrets.yaml <<EOF
-apiVersion: isindir.github.com/v1alpha2
+apiVersion: isindir.github.com/v1alpha3
 kind: SopsSecret
 metadata:
   name: example-sopssecret
@@ -17,15 +17,15 @@ spec:
         "jenkins.io/credentials-type": "usernamePassword"
       annotations:
         "jenkins.io/credentials-description" : "credentials from Kubernetes"
-      data:
+      stringData:
         username: myUsername
         password: 'Pa$$word'
     - name: some-token
-      data:
+      stringData:
         token: Wb4ziZdELkdUf6m6KtNd7iRjjQRvSeJno5meH4NAGHFmpqJyEsekZ2WjX232s4Gj
     - name: docker-login
       type: 'kubernetes.io/dockerconfigjson'
-      data:
+      stringData:
         .dockerconfigjson: '{"auths":{"index.docker.io":{"username":"imyuser","password":"mypass","email":"myuser@abc.com","auth":"aW15dXNlcjpteXBhc3M="}}}'
 EOF
 
diff --git a/docs/gpg/README.md b/docs/gpg/README.md
index ae82dedb..3441fade 100644
--- a/docs/gpg/README.md
+++ b/docs/gpg/README.md
@@ -36,7 +36,7 @@ source ./keys-env
 After sourcing sops can be used to encrypt data, for example:
 
 ```bash
-sops -e -p $FP --encrypted-suffix='Templates' ../../config/samples/isindir_v1alpha2_sopssecret.yaml > example-secrets.enc.yaml
+sops -e -p $FP --encrypted-suffix='Templates' ../../config/samples/isindir_v1alpha3_sopssecret.yaml > example-secrets.enc.yaml
 ```
 
 Then `example-secrets.enc.yaml` can be applied to the cluster to create secrets using
diff --git a/docs/index.yaml b/docs/index.yaml
index 327c4768..db14d40a 100644
--- a/docs/index.yaml
+++ b/docs/index.yaml
@@ -1,9 +1,29 @@
 apiVersion: v1
 entries:
   sops-secrets-operator:
+  - apiVersion: v2
+    appVersion: 0.3.0
+    created: "2021-05-29T18:01:47.055559+01:00"
+    description: Helm chart deploys sops-secrets-operator
+    digest: b7f077f8acac1b6ec60d0c0eb6326ab33cf3e4b9fb1ee8d94b1fa21f96aa7383
+    keywords:
+    - gitops
+    - sops
+    - kms
+    - encryption
+    maintainers:
+    - email: isindir@users.sf.net
+      name: isindir
+    name: sops-secrets-operator
+    sources:
+    - https://github.com/isindir/sops-secrets-operator.git
+    type: application
+    urls:
+    - https://isindir.github.io/sops-secrets-operator/sops-secrets-operator-0.9.0.tgz
+    version: 0.9.0
   - apiVersion: v2
     appVersion: 0.2.2
-    created: "2021-05-27T09:26:25.074618+01:00"
+    created: "2021-05-29T18:01:47.054563+01:00"
     description: Helm chart deploys sops-secrets-operator
     digest: 39d3d35a28a405e7baf82d507fa642966c2705ac3ca2f10077186a7fec5de1f6
     keywords:
@@ -23,7 +43,7 @@ entries:
     version: 0.8.4
   - apiVersion: v2
     appVersion: 0.2.1
-    created: "2021-05-27T09:26:25.073739+01:00"
+    created: "2021-05-29T18:01:47.052996+01:00"
     description: Helm chart deploys sops-secrets-operator
     digest: 4a1a3299532a4ec61acb61db45d763385bc3c2bd50c9c1707e3ba258498b5ee5
     keywords:
@@ -43,7 +63,7 @@ entries:
     version: 0.8.3
   - apiVersion: v2
     appVersion: 0.2.1
-    created: "2021-05-27T09:26:25.072487+01:00"
+    created: "2021-05-29T18:01:47.04894+01:00"
     description: Helm chart deploys sops-secrets-operator
     digest: d328b4e165c3945430e196a853836dcee9982929fe24455021ddb885099d5334
     keywords:
@@ -63,7 +83,7 @@ entries:
     version: 0.8.2
   - apiVersion: v2
     appVersion: 0.2.0
-    created: "2021-05-27T09:26:25.071122+01:00"
+    created: "2021-05-29T18:01:47.044543+01:00"
     description: Helm chart deploys sops-secrets-operator
     digest: d0ac8b738d0f10d64b2fb78c4386efe91de39aa88a4b107fdf9d93a82d18573c
     keywords:
@@ -83,7 +103,7 @@ entries:
     version: 0.8.1
   - apiVersion: v2
     appVersion: 0.2.0
-    created: "2021-05-27T09:26:25.069858+01:00"
+    created: "2021-05-29T18:01:47.040062+01:00"
     description: Helm chart deploys sops-secrets-operator
     digest: 289d7c6c96f858fe15427b1858fbfcdec373fc345acf52e667df4ca5ee729c10
     keywords:
@@ -103,7 +123,7 @@ entries:
     version: 0.8.0
   - apiVersion: v2
     appVersion: 0.1.17
-    created: "2021-05-27T09:26:25.067806+01:00"
+    created: "2021-05-29T18:01:47.038736+01:00"
     description: sops secrets operator
     digest: 1c3c4bba7d66a7621beced04856d9904260558fe10369513743bc322d69482c1
     keywords:
@@ -123,7 +143,7 @@ entries:
     version: 0.7.6
   - apiVersion: v2
     appVersion: 0.1.16
-    created: "2021-05-27T09:26:25.066632+01:00"
+    created: "2021-05-29T18:01:47.037488+01:00"
     description: sops secrets operator
     digest: c526d5d4b9c7c2cce1d9da2c75b4e9be7a994f24dce159a659189414a8725eae
     keywords:
@@ -143,7 +163,7 @@ entries:
     version: 0.7.5
   - apiVersion: v2
     appVersion: 0.1.16
-    created: "2021-05-27T09:26:25.065199+01:00"
+    created: "2021-05-29T18:01:47.036313+01:00"
     description: sops secrets operator
     digest: 572c9015988b76869b58997e02a0c64152283e559721e4883d54f1258a57e8b7
     keywords:
@@ -163,7 +183,7 @@ entries:
     version: 0.7.4
   - apiVersion: v2
     appVersion: 0.1.15
-    created: "2021-05-27T09:26:25.0635+01:00"
+    created: "2021-05-29T18:01:47.033939+01:00"
     description: sops secrets operator
     digest: 84365f8e919ba9d3a00cfa50435cce6c63a8383357b2fde062b7aab8baeca6eb
     keywords:
@@ -183,7 +203,7 @@ entries:
     version: 0.7.3
   - apiVersion: v2
     appVersion: 0.1.14
-    created: "2021-05-27T09:26:25.06215+01:00"
+    created: "2021-05-29T18:01:47.032602+01:00"
     description: sops secrets operator
     digest: a1f2375080df20421701a33179b8e947ee682a70084d83d85da707889871ad64
     keywords:
@@ -203,7 +223,7 @@ entries:
     version: 0.7.2
   - apiVersion: v2
     appVersion: 0.1.13
-    created: "2021-05-27T09:26:25.060716+01:00"
+    created: "2021-05-29T18:01:47.031197+01:00"
     description: sops secrets operator
     digest: 2e81dc4e4d49d9cd802aff263f005e04fb57df07f33b3ce8643ab287dfd3a7fb
     keywords:
@@ -223,7 +243,7 @@ entries:
     version: 0.7.1
   - apiVersion: v2
     appVersion: 0.1.12
-    created: "2021-05-27T09:26:25.059721+01:00"
+    created: "2021-05-29T18:01:47.030069+01:00"
     description: sops secrets operator
     digest: 81f59ed60bfa8204ed285476f9ed96a45a6f4e7cc6940a5d246c9241573d93d5
     keywords:
@@ -243,7 +263,7 @@ entries:
     version: 0.7.0
   - apiVersion: v2
     appVersion: 0.1.12
-    created: "2021-05-27T09:26:25.058545+01:00"
+    created: "2021-05-29T18:01:47.028988+01:00"
     description: sops secrets operator
     digest: 91c3fbda73ba2d860bdaa21e37bf9afbc260ff767b377a144d0181d116a7ee34
     keywords:
@@ -263,7 +283,7 @@ entries:
     version: 0.6.8
   - apiVersion: v2
     appVersion: 0.1.12
-    created: "2021-05-27T09:26:25.056789+01:00"
+    created: "2021-05-29T18:01:47.027987+01:00"
     description: sops secrets operator
     digest: 89d9d41d70d4dafcfb957bd48776ad779d0cef7dbb1ab2daf0b745a53dd6e3c6
     maintainers:
@@ -278,7 +298,7 @@ entries:
     version: 0.6.7
   - apiVersion: v2
     appVersion: 0.1.11
-    created: "2021-05-27T09:26:25.055767+01:00"
+    created: "2021-05-29T18:01:47.026968+01:00"
     description: sops secrets operator
     digest: 7b0a65fd6fa9bafa3fd11bfef1a5f91f1e17d8cb8ad65b6377ffdc4d12495d01
     maintainers:
@@ -293,7 +313,7 @@ entries:
     version: 0.6.6
   - apiVersion: v2
     appVersion: 0.1.10
-    created: "2021-05-27T09:26:25.054762+01:00"
+    created: "2021-05-29T18:01:47.025862+01:00"
     description: sops secrets operator
     digest: fac31d6cc862cb7b9a81aee52ba1fc4183d70bdcb7424c3dbdd087fb53246b30
     maintainers:
@@ -308,7 +328,7 @@ entries:
     version: 0.6.5
   - apiVersion: v2
     appVersion: 0.1.9
-    created: "2021-05-27T09:26:25.053724+01:00"
+    created: "2021-05-29T18:01:47.024385+01:00"
     description: sops secrets operator
     digest: 01347c27e37dfff999ebcee12aae6d0aafa092d7c3b221d566cdf0abe71f4d5a
     maintainers:
@@ -323,7 +343,7 @@ entries:
     version: 0.6.4
   - apiVersion: v2
     appVersion: 0.1.8
-    created: "2021-05-27T09:26:25.052484+01:00"
+    created: "2021-05-29T18:01:47.022604+01:00"
     description: sops secrets operator
     digest: 6348b1b1b0e8d3df3926e437b2c0f4ad63268d26e2cb54cbecbb564102e6b19c
     maintainers:
@@ -338,7 +358,7 @@ entries:
     version: 0.6.3
   - apiVersion: v2
     appVersion: 0.1.7
-    created: "2021-05-27T09:26:25.051309+01:00"
+    created: "2021-05-29T18:01:47.02114+01:00"
     description: sops secrets operator
     digest: 710c1c9fa73a2ebf791fda4a608b5e29072d42c0b68c803c7bbeed54a582fd7f
     maintainers:
@@ -353,7 +373,7 @@ entries:
     version: 0.6.2
   - apiVersion: v2
     appVersion: 0.1.7
-    created: "2021-05-27T09:26:25.048962+01:00"
+    created: "2021-05-29T18:01:47.020028+01:00"
     description: sops secrets operator
     digest: f2a606c3837843241bb9d59adc02c38e1cca98753c602b9f758cc61d735ca7cd
     maintainers:
@@ -368,7 +388,7 @@ entries:
     version: 0.6.1
   - apiVersion: v2
     appVersion: 0.1.6
-    created: "2021-05-27T09:26:25.047863+01:00"
+    created: "2021-05-29T18:01:47.018963+01:00"
     description: sops secrets operator
     digest: a2bbf9b39ec5f5b82965037f8f245fb3122adbe31b1c7d336fa1f4cddb228b88
     maintainers:
@@ -383,7 +403,7 @@ entries:
     version: 0.6.0
   - apiVersion: v1
     appVersion: 0.1.8
-    created: "2021-05-27T09:26:25.046506+01:00"
+    created: "2021-05-29T18:01:47.017692+01:00"
     description: sops secrets operator
     digest: b89986787f33bb6ed9fb0c658431be8646302e9c1a24537c26269c62249fa071
     maintainers:
@@ -397,7 +417,7 @@ entries:
     version: 0.5.3
   - apiVersion: v1
     appVersion: 0.1.7
-    created: "2021-05-27T09:26:25.045479+01:00"
+    created: "2021-05-29T18:01:47.016535+01:00"
     description: sops secrets operator
     digest: 9467709cf6fbe8d9d779cedf15fe388af172b609f3ca452ef3d8894f39d999df
     maintainers:
@@ -411,7 +431,7 @@ entries:
     version: 0.5.2
   - apiVersion: v1
     appVersion: 0.1.7
-    created: "2021-05-27T09:26:25.044633+01:00"
+    created: "2021-05-29T18:01:47.015303+01:00"
     description: sops secrets operator
     digest: b54b5d8497564ddc04bd6d8b105eb0a3559e82ae1f6aab2f59ed3e426f119287
     maintainers:
@@ -425,7 +445,7 @@ entries:
     version: 0.5.1
   - apiVersion: v1
     appVersion: 0.1.6
-    created: "2021-05-27T09:26:25.04379+01:00"
+    created: "2021-05-29T18:01:47.014445+01:00"
     description: sops secrets operator
     digest: 177f1ed214d6e72eda589a6ab155a417c1a4229bfda11e87f24af125a3542ad1
     maintainers:
@@ -439,7 +459,7 @@ entries:
     version: 0.5.0
   - apiVersion: v2
     appVersion: 0.1.5
-    created: "2021-05-27T09:26:25.042949+01:00"
+    created: "2021-05-29T18:01:47.013605+01:00"
     description: sops secrets operator
     digest: 1535e130357afa883db0b3d30735c817d3b7d412fe5bdfd71534d0c08defa7d1
     maintainers:
@@ -454,7 +474,7 @@ entries:
     version: 0.4.8
   - apiVersion: v2
     appVersion: 0.1.5
-    created: "2021-05-27T09:26:25.041868+01:00"
+    created: "2021-05-29T18:01:47.012552+01:00"
     description: sops secrets operator
     digest: 19b11dc2d1945f3c436a7d03763b4391d4a382fc13ea515d25422827d859d6d0
     maintainers:
@@ -469,7 +489,7 @@ entries:
     version: 0.4.7
   - apiVersion: v2
     appVersion: 0.1.5
-    created: "2021-05-27T09:26:25.040957+01:00"
+    created: "2021-05-29T18:01:47.011724+01:00"
     description: sops secrets operator
     digest: c839e5d3374b948d27ad49643411f4891fdec44d179dea06423bb0d6e29d5e32
     maintainers:
@@ -484,7 +504,7 @@ entries:
     version: 0.4.6
   - apiVersion: v2
     appVersion: 0.1.4
-    created: "2021-05-27T09:26:25.03961+01:00"
+    created: "2021-05-29T18:01:47.010645+01:00"
     description: sops secrets operator
     digest: c71f9f66be32f8b9d3c8d780b09b2455a40fd9755314004efd2bb8d379dafe3c
     maintainers:
@@ -499,7 +519,7 @@ entries:
     version: 0.4.5
   - apiVersion: v2
     appVersion: 0.1.3
-    created: "2021-05-27T09:26:25.038707+01:00"
+    created: "2021-05-29T18:01:47.009804+01:00"
     description: sops secrets operator
     digest: f3f2f89d4ef6018776df0a12a63dd2f9c9519b9d1ac03a9a405e31d0fd902ba0
     maintainers:
@@ -514,7 +534,7 @@ entries:
     version: 0.4.4
   - apiVersion: v2
     appVersion: 0.1.2
-    created: "2021-05-27T09:26:25.037871+01:00"
+    created: "2021-05-29T18:01:47.008993+01:00"
     description: sops secrets operator
     digest: 1fd5eed318627f5ed0656f4e8ce4a25729568a1626ae313bcbe21050f5f26240
     maintainers:
@@ -529,7 +549,7 @@ entries:
     version: 0.4.3
   - apiVersion: v2
     appVersion: 0.1.2
-    created: "2021-05-27T09:26:25.036776+01:00"
+    created: "2021-05-29T18:01:47.007968+01:00"
     description: sops secrets operator
     digest: 1f4f9869c75f0922e83ba5d530e101bd4252d5c1c31365800cc9d1425680cf18
     maintainers:
@@ -544,7 +564,7 @@ entries:
     version: 0.4.2
   - apiVersion: v2
     appVersion: 0.1.1
-    created: "2021-05-27T09:26:25.035787+01:00"
+    created: "2021-05-29T18:01:47.007034+01:00"
     description: sops secrets operator
     digest: 6b054a4e9f261eea3cb84ee2e70b87b24780f1703e2c218ea5f69b7f82d1876f
     maintainers:
@@ -559,7 +579,7 @@ entries:
     version: 0.4.1
   - apiVersion: v2
     appVersion: 0.1.0
-    created: "2021-05-27T09:26:25.034854+01:00"
+    created: "2021-05-29T18:01:47.00575+01:00"
     description: sops secrets operator
     digest: 78b62ab37eac1b45f0a68a9752a3615c5d3f1c960bb4057e665923ce104931cf
     maintainers:
@@ -574,7 +594,7 @@ entries:
     version: 0.4.0
   - apiVersion: v1
     appVersion: 0.1.5
-    created: "2021-05-27T09:26:25.033989+01:00"
+    created: "2021-05-29T18:01:47.003405+01:00"
     description: sops secrets operator
     digest: 41baa3c580cb9d8951c18513a4f04c4dbbfad99de9c62f53de2450c0c7b76725
     maintainers:
@@ -588,7 +608,7 @@ entries:
     version: 0.3.7
   - apiVersion: v1
     appVersion: 0.1.5
-    created: "2021-05-27T09:26:25.032377+01:00"
+    created: "2021-05-29T18:01:47.001835+01:00"
     description: sops secrets operator
     digest: 1103b1f7bf7af3f400c172227cd5a3659f3a03e5e8158b19ba0b25f7ed45208b
     maintainers:
@@ -602,7 +622,7 @@ entries:
     version: 0.3.6
   - apiVersion: v1
     appVersion: 0.1.5
-    created: "2021-05-27T09:26:25.030419+01:00"
+    created: "2021-05-29T18:01:47.000715+01:00"
     description: sops secrets operator
     digest: 15c72ba7fb09d0e980ec32fd94f56893c439c05c435281a9ab9c8bc94bd20063
     maintainers:
@@ -616,7 +636,7 @@ entries:
     version: 0.3.5
   - apiVersion: v1
     appVersion: 0.1.4
-    created: "2021-05-27T09:26:25.0294+01:00"
+    created: "2021-05-29T18:01:46.999698+01:00"
     description: sops secrets operator
     digest: 025a6a6381b75286756ef55105ace6e911e5a5818b495ede6356cc8ec572aeac
     maintainers:
@@ -630,7 +650,7 @@ entries:
     version: 0.3.4
   - apiVersion: v1
     appVersion: 0.1.3
-    created: "2021-05-27T09:26:25.027817+01:00"
+    created: "2021-05-29T18:01:46.998541+01:00"
     description: sops secrets operator
     digest: f61b070b640169439cf4ab500047c1e356748a85871f7aeefde46d63d87d453a
     maintainers:
@@ -644,7 +664,7 @@ entries:
     version: 0.3.3
   - apiVersion: v1
     appVersion: 0.1.2
-    created: "2021-05-27T09:26:25.02676+01:00"
+    created: "2021-05-29T18:01:46.997197+01:00"
     description: sops secrets operator
     digest: 2b37dc4e545e8a9540f6b7693079b98bf161ec5a68899defcfc9420bdcbb33e3
     maintainers:
@@ -658,7 +678,7 @@ entries:
     version: 0.3.2
   - apiVersion: v1
     appVersion: 0.1.1
-    created: "2021-05-27T09:26:25.025517+01:00"
+    created: "2021-05-29T18:01:46.995734+01:00"
     description: sops secrets operator
     digest: 2e2762b8f9d66aab0caacde225955fec8bfd5a4cc10dc6943a1de3809dda4091
     maintainers:
@@ -672,7 +692,7 @@ entries:
     version: 0.3.1
   - apiVersion: v1
     appVersion: 0.1.0
-    created: "2021-05-27T09:26:25.024478+01:00"
+    created: "2021-05-29T18:01:46.994769+01:00"
     description: sops secrets operator
     digest: ce84f5b64402a582c7689cb842ba03fb10f968c38b57dc9e05f588493128019a
     maintainers:
@@ -686,7 +706,7 @@ entries:
     version: 0.3.0
   - apiVersion: v2
     appVersion: 0.0.10
-    created: "2021-05-27T09:26:25.023166+01:00"
+    created: "2021-05-29T18:01:46.993412+01:00"
     description: sops secrets operator
     digest: 5e4c8bc37ea2c819c55b288c0a5e76ff8c9c02be591bd53776606666af45581c
     maintainers:
@@ -701,7 +721,7 @@ entries:
     version: 0.2.1
   - apiVersion: v1
     appVersion: 0.0.10
-    created: "2021-05-27T09:26:25.022101+01:00"
+    created: "2021-05-29T18:01:46.992358+01:00"
     description: sops secrets operator
     digest: 50b8ebab19008dfc43de1eaee8b0f6287f7a55134585dc6ae88df2520d779f8f
     maintainers:
@@ -713,4 +733,4 @@ entries:
     urls:
     - https://isindir.github.io/sops-secrets-operator/sops-secrets-operator-0.1.10.tgz
     version: 0.1.10
-generated: "2021-05-27T09:26:25.020611+01:00"
+generated: "2021-05-29T18:01:46.990787+01:00"
diff --git a/docs/sops-secrets-operator-0.9.0.tgz b/docs/sops-secrets-operator-0.9.0.tgz
new file mode 100644
index 00000000..cf7f0bb9
Binary files /dev/null and b/docs/sops-secrets-operator-0.9.0.tgz differ
diff --git a/hack/boilerplate.go.txt b/hack/boilerplate.go.txt
index e69de29b..daa3e889 100644
--- a/hack/boilerplate.go.txt
+++ b/hack/boilerplate.go.txt
@@ -0,0 +1,3 @@
+/* This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at https://mozilla.org/MPL/2.0/. */
diff --git a/main.go b/main.go
index 4c703016..a8d29115 100644
--- a/main.go
+++ b/main.go
@@ -21,7 +21,7 @@ import (
 	"sigs.k8s.io/controller-runtime/pkg/healthz"
 	"sigs.k8s.io/controller-runtime/pkg/log/zap"
 
-	isindirv1alpha2 "github.com/isindir/sops-secrets-operator/api/v1alpha2"
+	isindirv1alpha3 "github.com/isindir/sops-secrets-operator/api/v1alpha3"
 	"github.com/isindir/sops-secrets-operator/controllers"
 	//+kubebuilder:scaffold:imports
 )
@@ -34,7 +34,7 @@ var (
 func init() {
 	utilruntime.Must(clientgoscheme.AddToScheme(scheme))
 
-	utilruntime.Must(isindirv1alpha2.AddToScheme(scheme))
+	utilruntime.Must(isindirv1alpha3.AddToScheme(scheme))
 	//+kubebuilder:scaffold:scheme
 }