Overview Consumer Enterprise Bug Bounty Resources

You Control Your Data

No flight logs, images or videos are synced with DJI servers
unless you choose to do so

Transparent Controls

We believe that users should have control over their data, and as such continue to expand the privacy controls built into our drones. You decide how and where your data is stored.

Data Transparency

To activate your DJI drone, you only need to provide an email address, a password and your drone’s serial number. Everything else is optional.

Learn More

Fly Offline

Activate "Local Data Mode" to disconnect the flight app from the internet.

Learn More

Quick & Easy Data Deletion

Easily delete information on your drone at any time through the "Reset All" feature.

Learn More

Privacy Settings

Amend your privacy preferences at any time by simply toggling options in your flight app’s “Settings”.

Learn More

Security Best Practices

We remain open and transparent about our security and data practices and will continue to make our data management and system security information easily accessible to our users.

DJI drones adopt technologies that raise the bar on security so you can focus on flight

We invite you to read our latest Drone Security White Paper to learn more about DJI’s security and privacy protocols.

Learn More

TEE Technology

DJI employs Trusted Execution Environment (TEE) technology which secures authentication, key management, firmware decryption and verification throughout use of the drone.

Data Encryption

Drone data (if shared with DJI) is TLS-protected, and any personal data shared by users (i.e. name or email address) is further secured with AES-256 encryption in storage.

Data Storage

Drone data shared by users with DJI is stored in
ISO 27001-compliant servers based in the United States.

Independent Validations

Independent third parties regularly assess our drone security and data privacy practices.
Findings continue to validate our alignment with industry best practices and ability to protect user data.

2022

NIST FIPS 140-2: DJI Core Crypto Engine

The DJI Core Crypto Engine, which serves as the secure engine of DJI drones, obtained NIST FIPS 140-2 certification, formally validated by the U.S. and Canada Governments.

2022

TÜV SÜD

The German testing and certification firm found that cybersecurity capabilities & privacy protections of DJI drones covered by the test meet NIST IR8259 & ETSI EN 303645 standards.

2020

FTI Consulting

The global cybersecurity firm validated Local Data Mode and noted DJI’s employment of security best practices.

2018

KIVU

The global technology and consultancy firm’s audit found DJI did not access photos, videos or flight logs generated by the drones unless drone operators voluntarily chose to share them.

The following information on this page does not apply to users in China:

• Local Data Mode

• Reset All functions

In addition, data from Chinese users is stored in China-based servers.

Please contact datasecurity@dji.com email if you have any questions.