diff --git a/.forgejo/workflows/cleanup.yaml b/.forgejo/workflows/cleanup.yaml
new file mode 100644
index 0000000..9491e1e
--- /dev/null
+++ b/.forgejo/workflows/cleanup.yaml
@@ -0,0 +1,23 @@
+on:
+  pull_request:
+    types:
+      - closed
+
+jobs:
+  cleanup-staging:
+    runs-on: docker
+    container:
+      image: code.forgejo.org/oci/node:20-bookworm
+    steps:
+      - name: Pipeline info PR
+        run: |
+          echo "Run triggered by ${{ github.event_name }} (${{ github.event.action }}) on ref ${{ github.ref_name }}"
+
+      - name: Staging Deployment - Prepare keys
+        run: |
+          echo "${{ secrets.SSH_DEPLOY_KEY }}" > deploykey.priv
+          chmod 400 deploykey.priv
+          echo "${{ secrets.SSH_KNOWN_HOSTS_FILE }}" > ./known_hosts
+      - name: Staging Deployment - Remove PR from staging
+        run: |
+          ssh -i deploykey.priv -o 'UserKnownHostsFile ./known_hosts' ht-ccchh-website-deploy@public-web-static-intern.hamburg.ccc.de -t "rm -r /var/www/staging.hackertours.hamburg.ccc.de/pr${{ github.event.pull_request.number }}/"
diff --git a/.forgejo/workflows/deploy.yaml b/.forgejo/workflows/deploy.yaml
new file mode 100644
index 0000000..6cba4d2
--- /dev/null
+++ b/.forgejo/workflows/deploy.yaml
@@ -0,0 +1,74 @@
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+
+env:
+  TZ: Europe/Berlin
+
+jobs:
+  build:
+    runs-on: docker
+    container:
+      image: docker.io/hugomods/hugo:latest
+    steps:
+      - name: Pipeline info
+        run: |
+          echo "Run triggered by ${{ github.event_name }} (${{ github.event.action }}) on ref ${{ github.ref_name }}"
+
+      - name: Install packages
+        run: |
+          apk update
+          # For CI actions.
+          apk add nodejs-current
+          # For website build.
+          apk add tzdata coreutils curl jq git
+          # For uploading.
+          apk add rsync openssh
+
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0 # pull full history for page lastmod by git commit date
+          submodules: recursive
+
+      - name: Patch baseURL (staging only)
+        if: github.ref_name != 'main'
+        run: |
+          sed -i "s#baseURL: 'https://hackertours.hamburg.ccc.de/'#baseURL: 'https://staging.hackertours.hamburg.ccc.de/pr${{ github.event.pull_request.number }}/'#" hugo.yaml
+      - name: Build website
+        run: |
+          hugo
+
+      - name: Deploy - Prepare keys
+        if: github.event_name == 'push' || github.event_name == 'pull_request' || github.event_name == 'schedule'
+        run: |
+          echo "${{ secrets.SSH_DEPLOY_KEY }}" > deploykey.priv
+          chmod 400 deploykey.priv
+          echo "${{ secrets.SSH_KNOWN_HOSTS_FILE }}" > ./known_hosts
+
+      - name: Deploy - Upload PR to staging
+        if: github.event_name == 'pull_request'
+        run: |
+          echo "Deploying to staging.hamburg.ccc.de/pr${{ github.event.pull_request.number }}"
+          rsync -v -r --delete -e "ssh -i deploykey.priv -o 'UserKnownHostsFile ./known_hosts'" public/ ht-ccchh-website-deploy@public-web-static-intern.hamburg.ccc.de:/var/www/staging.hacker.tours/pr${{ github.event.pull_request.number }}/
+      - name: Deploy - Add comment to PR with staging URL
+        if: github.event_name == 'pull_request' && github.event.action == 'opened'
+        run: |
+          curl \
+            -X POST \
+            ${{ github.event.pull_request.base.repo.url }}/issues/${{ github.event.pull_request.number }}/comments \
+            -H "Content-Type: application/json" \
+            -H "Authorization: token $GITHUB_TOKEN" \
+            --data '{ "body": "You can view your changes at https://staging.hackertours.hamburg.ccc.de/pr${{ github.event.pull_request.number }}/" }'
+
+      - name: Deploy - Upload to prod
+        if: (github.event_name == 'push' || github.event_name == 'schedule') && github.ref_name == 'main'
+        run: |
+          rsync -v -r --delete -e "ssh -i deploykey.priv -o 'UserKnownHostsFile ./known_hosts'" public/ hackertours-website-deploy@public-web-static-intern.hamburg.ccc.de:/var/www/hackertours.hamburg.ccc.de/
+
+      - uses: actions/upload-artifact@v3
+        if: github.event_name == 'pull_request'
+        with:
+          name: website-build
+          path: public/
diff --git a/.forgejo/workflows/image.yaml b/.forgejo/workflows/image.yaml
deleted file mode 100644
index 1a5913b..0000000
--- a/.forgejo/workflows/image.yaml
+++ /dev/null
@@ -1,36 +0,0 @@
-on:
-  push:
-    branches:
-      - main
-
-jobs:
-  build:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout project
-        uses: actions/checkout@v4
-        with:
-          submodules: recursive
-      - name: Run hugo
-        run: docker run --rm -it -v ${{ github.workspace }}:/src docker.io/hugomods/hugo:latest hugo
-      - name: Compute Image Metadata
-        uses: docker/metadata-action@v5
-        id: metadata
-        with:
-          images: git.hamburg.ccc.de/${{ github.repository }}/hackertours
-          tags: |
-            type=raw,value=latest,enable={{is_default_branch}}
-      - name: Log in to Image Registry
-        uses: docker/login-action@v3
-        with:
-          registry: git.hamburg.ccc.de
-          username: ${{ github.actor }}
-          password: ${{ secrets.REPO_TOKEN }}
-      - name: Build image with kaniko
-        uses: https://github.com/int128/kaniko-action@v1
-        with:
-          push: true
-          tags: ${{ steps.metadata.outputs.tags }}
-          labels: ${{ steps.metadata.outputs.labels }}
-          cache: true
-          cache-repository: git.hamburg.ccc.de/${{ github.repository }}/cache
\ No newline at end of file