UAS Data Protection and Privacy



This standard practice provides guidance for small UAS manufacturers, original equipment manufacturers (OEM), and software developers for the protection and privacy of data throughout the lifecycle of the UAS and was developed to assist with reducing the risk of data exploitation and dissemination of private information while operating a UAS less than 55 pounds.

The document identifies 14 security controls specific to data security and privacy in accordance with NIST 800-53 Rev 5, Security and Privacy Controls for Information Systems and Organizations, including securing data-at-rest and data-in-transit, and provides UAS-specific guidance and discussion for each security control.

By implementing the guidance and security controls in this standard practice, UAS manufacturers, OEMs, and software developers can help make users aware of how their data is secured while also allowing users to make informed decisions on the security and protection of their data based on their risk tolerance and mission needs. AIA and the consortium of US government and industry stakeholders will update and maintain this standard practice as needed to meet the needs of stakeholders.

Additional Info

Author Aerospace Industries Association (AIA/NAS)
Published by NAS
Document type Standard
Edition 1
Number of pages 19