banner-desktop banner-mobile

The Latest News From the IAA

Notification of erroneous permission given to registered drone users

06 Apr 2016

The Irish Aviation Authority (IAA) confirms that a technical problem with its drone register, which inadvertently allowed registered drone owners on the system to access the names and contact details of all those registered, has been corrected.

At approximately 23:00 on Sunday 3rd April, the IAA became aware of an error with the IAA ASSET system used to register drones. It has become evident that registered users were unintentionally given access permission rights to the ASSET system, which allowed them to download information on other registered users (via a .CSV file). This data included names, addresses, email addresses and phone numbers. No other information was accessible and it must be highlighted that no financial data was included.

The system was not hacked and no unauthorised access was gained by the general public (only registered users).

Upon notification of the erroneous permission the IAA worked with its system supplier, CGH to quickly resolve the matter. The system was taken offline, fixed, tested and restored within 2 hours.

We have advised the Office of the Data Protection Commissioners of this error.

If you (or anyone you know) has inadvertently downloaded this file, please be aware that you are obliged to destroy the material in accordance with the Data Protection Act 1988.

Data privacy is of the utmost importance to our organisation. We have swiftly taken measures to address the issue and to ensure that the data integrity of the ASSET system is maintained.

The IAA wishes to sincerely apologise for the concern or any inconvenience as a result of this event.

For further information please contact drones@iaa.ie 

Yours sincerely,

Irish Aviation Authority


Back