Compliance

MKII Aerospace is committed to meeting and exceeding applicable regulatory, contractual, and industry standards. Compliance is integrated into our engineering, security, operations, and vendor management practices.

Export Controls

We comply with U.S. export control laws and regulations including:

• ITAR (International Traffic in Arms Regulations)
• EAR (Export Administration Regulations)
• Other applicable federal regulations governing controlled technologies

Access to controlled technical data is restricted to authorized personnel. Foreign person access is governed by licensing and regulatory requirements.

Security Standards & Frameworks

We align our security program with recognized frameworks and standards:

Privacy & Data Protection

We respect global data protection requirements and implement controls consistent with:

• GDPR (EU General Data Protection Regulation)
• CCPA/CPRA (California Consumer Privacy laws)
• Other applicable data protection and breach notification laws

See our Privacy Policy for details on data collection, use, rights, and retention.

Vendor & Third-Party Compliance

We assess vendor risks and enforce contractual security and compliance obligations:

• Security questionnaires and due diligence
• Data Processing Agreements (DPAs) where applicable
• SLAs with incident notification and remediation commitments
• Periodic audits and performance reviews

Audits & Assurance

We conduct internal audits and engage independent assessors to validate our controls. Summary reports are available to customers and partners under NDA.

Policies & Governance

Our policies establish governance across security, privacy, acceptable use, access management, and incident response. Key policies are reviewed at least annually and upon significant changes.

For an overview of our security controls, visit the Security page.

Compliance Contacts

For compliance inquiries, documentation requests, or to report a concern:

Additional Resources