Kittyhawk Has Passed a SOC2 Type II Audit

We undergo regular reliability and security verification practices.

Request our SOC2 Type II audit report

Security Throughout the Data Lifecycle

Account Access

We offer single sign-on (SSO), two factor authentication (2FA) and multi-factor authentication (MFA) for additional security layers.

In Transit

All data from operator devices to Kittyhawk servers is encrypted in transit using TLS 1.2.

Live Streams

Live audio and video streams are encrypted in compliance with the ISO 27001 standards.

UTM Traffic & Remote ID

Live aircraft telemetry and identification are encrypted in transit using TLS 1.2.

API Integrations

Airspace, mission planning, fleet management, and reporting APIs are encrypted using TLS 1.2.

storage

Storage

All data files are stored and backed up in encrypted domestic AWS servers.

monitoring

Network Monitoring

Kittyhawk uses an Intrusion Detection System (IDS) that provides real-time network traffic and infrastructure event monitoring and flagging.

Kittyhawk Keeps Data Local

Security

When operators fly using Kittyhawk mobile apps, sensitive flight data including location, authorizations, photos and videos are not transferred to aircraft OEM data repositories.

We do this through default enablement of Local Data Mode. Data stays in the Kittyhawk cloud using domestic AWS data storage.

Responsible Disclosure Policy:Reporting a Security Vulnerability

If you’ve found a vulnerability or security flaw while using Kittyhawk, let us know via email: infosec@kittyhawk.io. To help us reproduce and fix the issue, please provide screenshots and as much information as possible.

Want to know more?

The Kittyhawk InfoSec team is available to provide additional documentation, audit reports, and detail about how we secure our own infrastructure and your sensitive drone data.

Get in touch