diff --git a/app/controllers/super_admin/themes_controller.rb b/app/controllers/super_admin/themes_controller.rb
index 6fbf25d..94e2e7a 100644
--- a/app/controllers/super_admin/themes_controller.rb
+++ b/app/controllers/super_admin/themes_controller.rb
@@ -66,6 +66,8 @@
     end
 
     def extract
+      authorize(Theme)
+
       @theme = Theme.find(extract_params[:id])
       @answers = @theme.answers
 
diff --git a/app/policies/theme_policy.rb b/app/policies/theme_policy.rb
index 3767696..5c4e2ff 100644
--- a/app/policies/theme_policy.rb
+++ b/app/policies/theme_policy.rb
@@ -1,7 +1,7 @@
 class ThemePolicy < ApplicationPolicy
   def initialize(user, *args)
     raise Pundit::NotAuthorizedError, _("must be logged in") unless user
-    @user = user 
+    @user = user
   end
   def index?
     @user.can_super_admin?
@@ -21,4 +21,7 @@
   def destroy?
     @user.can_super_admin?
   end
+  def extract?
+    @user.can_super_admin?
+  end
 end