diff --git a/modules/sops/default.nix b/modules/sops/default.nix
index b339f19..718aebd 100644
--- a/modules/sops/default.nix
+++ b/modules/sops/default.nix
@@ -37,7 +37,7 @@ let
         };
       format = mkOption {
         type = types.enum ["yaml" "json" "binary"];
-        default = "yaml";
+        default = cfg.defaultSopsFormat;
         description = ''
           File format used to decrypt the sops secret.
           Binary files are written to the target file as is.
@@ -104,6 +104,14 @@ in {
       '';
     };
 
+    defaultSopsFormat = mkOption {
+      type = types.str;
+      default = "yaml";
+      description = ''
+        Default sops format used for all secrets.
+      '';
+    };
+
     validateSopsFiles = mkOption {
       type = types.bool;
       default = true;