Skydio Principles on Transparency, Privacy, and Security
1. Customer Control: You own and control your information. We do not sell customer data, and we do not provide it to third parties unless you authorize it. We are committed to protecting your data rights. Consistent with that commitment, we will challenge overbroad or unlawful requests or subpoenas from any third party.
2. Engineered for Privacy: We build privacy safeguards directly into our hardware and software architecture. We equip you with tools to control what is captured, who accesses it, and more, enabling you to deploy products that meet your compliance requirements and community standards.
3. Responsible Innovation and Product Improvement: Customers expect world-class autonomy that constantly improves and secure, compliant data handling. When customer terms authorize it, we responsibly retain and use deidentified, anonymized aggregated and media from online systems to make your products more reliable, safe, and effective. Customers can decline at any time. Through deidentification, anonymization and aggregation, and being selective with data, we protect customer media security and privacy while ensuring your products constantly improve.
4. Transparency and Accountability: We are clear about our data practices and our commitment to customer privacy and innovation. We provide the logging, auditing, and public disclosure tools you need to demonstrate responsible use to your employees and the communities you serve.
5. Relentless Commitment to Security: We protect your data with best-in-class industry standards for encryption and access control. Our products feature rigorous third-party penetration testing, industry leading encryption at rest and in transit (FIPS 140‑3 validated), SOC 2 Type II compliance, and we continuously invest in infrastructure to stay ahead of the security curve.
Putting our Principles into Practice
Security and Data Protection: We secure your data with a defense-in-depth strategy. All customer data is protected using FIPS 140-3 validated encryption (at rest and in transit). For law enforcement customers requesting Criminal Justice Information (CJI) treatment, access is strictly monitored, limited to trained, background-checked personnel, and governed by auditable, role-based controls.
Enabling Accountability and Transparency: Our platform provides the tools you need to build trust with your community and employees. For example, public safety customers can oversee flight operations through DFR Command at a granular level using access controls, and can share mission activity with the public via our Transparency Dashboard, ensuring your community understands your work.
Protecting Privacy While Improving Product Performance: We enable continuous improvements to flight reliability, safety, and autonomous functionality (e.g,. Pathfinder, Shadow, and Obstacle Avoidance) while safeguarding security and privacy. We do this by enabling easy customer control, restricting access to the minimum data and personnel required, and then by aggregating, anonymizing, and deidentifying any data Skydio retains. More information is available upon request.
Supporting Our Customers: We are committed to helping you meet your specific regulatory and operational requirements. Beyond technology, we empower your organization with practical resources, including our program implementation guides. These materials help you navigate audits, public records requests, and community engagement with confidence.