Trust & security
AirSync runs on Google Cloud and Firebase with the same authentication and data-isolation primitives that secure apps used by millions of pilots and businesses.
Sign in with email/password or Google. Sessions are short-lived, server-verified httpOnly cookies — never tokens sitting in the browser.
Everything is served over HTTPS, and data is stored on Google Cloud’s managed infrastructure.
Your fleet, roster, reservations, and books are scoped to your workspace. Security rules enforce that members only read and write their own org’s data.
Owners, admins, instructors, and students each see only what their role allows — managing the fleet, grading, or just their own schedule.
Ownership and airworthiness are enforced on the booking itself, not just hidden in the UI — a grounded aircraft can’t be dispatched.
No lock-in. Export your data and leave whenever you want — we’ll never hold it hostage behind a contract.
Have a security question or want to report an issue? Reach out at security@airsync.app.