Do not remove your NEXT_DATA. It's important to keep it intact for SSR and hydration. Try encrypting sensitive data before uploading it to the server. Or you can encrypt session data within getServerSideProps before returning it to the client. This adds an extra layer of security while preserving your SSR and client-side hydration functionality.