Privacy Policy

At DroneOps, we strongly believe in fundamental privacy rights, and that these rights should be consistent no matter where you live. That is why we treat any information that relates to an identified or identifiable individual, or that is linked or linkable to them, as “personal data,” regardless of location.

This includes data that directly identifies you, such as your name, email, or phone number. It also includes data that does not directly identify you but can reasonably be used to identify you, such as your country or flight plan details.

Aggregated data, which cannot be linked back to an individual, is considered non-personal data for the purposes of this Privacy Policy.

This Privacy Policy covers how DroneOps Platform collects, uses, and protects personal data when you interact with us through our web and mobile app. It does not apply to how third-party services, websites, or apps define or handle personal data. We encourage you to review their privacy policies and understand your rights before interacting with such services.

• Email Address: Used to contact users regarding flight plan submissions, updates, and account-related information.
• First Name and Last Name: Collected for identification purposes.
• Phone Number: Required so that you can be contacted during active flights or emergencies, typically via the contact details you include in documentation sent to authorities.
• Electronic Signature: Used for signing official flight-related documents (e.g., Annex forms); securely stored and linked to your account.
• Flight Data: Records of submitted flight plans for regulatory compliance, investigations, and historical reference.

All collected data is used solely for the purposes outlined in this Privacy Policy and is stored securely.

We collect your phone number to enable urgent voice communication between you and relevant authorities (for example air traffic control units) during active drone flights, in the event of an emergency or for separation purposes. This information is typically included in the documentation (such as Annex forms) that you generate and send to authorities using their official channels.

In our systems, your phone number is encrypted in transit and at rest, and access is strictly limited to authorized system administrators. We do not use your phone number for marketing or any non-safety related purposes.

The DroneOps Platform allows registered users to provide an electronic signature, which may be used to digitally sign flight-related documents (such as Annex 1 and Annex 2 forms) that you then send to the Air Traffic Control (ATC) or other competent authorities using their official communication channels (e.g. email).

Data Collected: Your electronic signature, in the form of a graphical image or digital representation provided by you, is stored securely and associated with your user account.

Purpose of Use: Your signature is used exclusively for the purpose of authenticating your identity on official documents generated by DroneOps. These documents are intended to be transmitted to aviation authorities by you. We may also be required to provide copies to competent authorities when this is mandated by law.

Storage and Security: Signature files are encrypted in transit and at rest. Access is restricted to authorized system processes involved in document generation. The signature cannot be viewed or altered by other users.

Retention: Your signature is retained for as long as your account remains active. If you delete your account or request erasure, your stored signature will be permanently deleted along with your other personal data, unless retention is required by law for compliance purposes.

User Control: You may update or remove your saved signature at any time through your account settings or by contacting our support team.

What Are Cookies?

Cookies are small files stored on your device by websites you visit. They enable websites to remember your preferences, login sessions, and other information to improve user experience.

Cookies Used by DroneOps Platform

The App uses mainly session cookies for the following purposes:

• Session Management: To maintain your logged-in status while using the App.

These cookies are essential for the operation of the App and do not store any unnecessary personal information.

The data collected is used for the following purposes:

• To facilitate the submission, planning and management of flight plans.
• To generate and sign official documents that you may send to ATC and other aviation authorities.
• To enable direct communication with users during active flights, including by authorities using the contact details you have provided.
• To comply with applicable aviation regulations and provide data to national authorities when required.
• To support investigations related to drone operations or incidents.

DroneOps Platform does not sell your personal data to third parties. We only share your data in limited circumstances:

• With third-party service providers (such as hosting, email or analytics providers) that process data on our behalf and are contractually obligated to protect it.
• To comply with legal obligations or regulatory requirements.
• For investigations involving drone operations or incidents.
• When required, signed documents containing your signature may be provided to aviation authorities (e.g., ATC) for regulatory purposes, or you may send these documents yourself using your own email client or communication tools.

Any such disclosure will comply with applicable laws and regulations.

As a user, you have the following rights under applicable data protection laws:

• Access: The right to request access to your personal data.
• Correction: The right to request corrections to inaccurate or incomplete data.
• Deletion: The right to request the deletion of your personal data, subject to regulatory requirements.
• Consent Withdrawal: The right to withdraw consent for data collection or use, where applicable.

User data is retained for as long as necessary to:

• Provide services through the App.
• Comply with regulatory obligations.
• Support investigations related to drone operations.
• Electronic signatures are retained only for the lifetime of your account or until you request deletion, unless a longer retention period is required by law.

Inactive accounts may be retained for a specified period for regulatory purposes before being securely deleted.

We implement technical and organizational measures to protect your data from unauthorized access, loss, or misuse. These measures include:

• Secure storage of data using encryption and access controls.
• Regular checks to ensure data protection measures remain effective.
• Electronic signatures are stored in encrypted form and accessible only to secure automated processes.

Despite these measures, no system is entirely secure. Users are encouraged to take their own precautions to protect their accounts (for example by using strong passwords and enabling any available security features).

We process your personal data based on the following legal grounds:

• Consent: When you have given your explicit consent for us to process your personal data for specific purposes.
• Contractual Necessity: When processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract.
• Legal Obligation: When processing is necessary for compliance with a legal obligation to which we are subject.
• Legitimate Interests: When processing is necessary for the purposes of our legitimate interests, provided that such interests are not overridden by your rights and interests.

We may share your personal data with third-party service providers who perform services on our behalf, such as:

• Cloud storage and hosting providers
• Analytics services
• Social platform providers used for login or integration features

These third-party service providers are contractually obligated to protect your data, to use it only for the purposes for which it was shared, and to comply with applicable data protection laws.

Your personal data may be transferred to and processed in countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country.

We ensure that appropriate safeguards are in place to protect your personal data when it is transferred internationally, including the use of standard contractual clauses approved by the European Commission or other adequate protection mechanisms.

Our App is not intended for children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such data without undue delay.

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. Users will be notified of significant updates via email or in-app notifications.

For privacy-related inquiries or to exercise your rights, please contact us at:

Email: contact@droneops.ro

Alternatively, you may use the contact form available within the App.