Direct Answer
The Safety Assurance System (SAS) is the FAA's oversight system for 14 CFR part 121 and 135 air carriers and part 145 repair stations — the people, processes, and software the FAA uses to plan and conduct surveillance. It was built by the FAA's System Approach for Safety Oversight (SASO) program and is documented in FAA Order 8900.1, Volume 10. SAS is FAA guidance, not a section of the CFR, and per the FAA's own overview it "is not a separate safety standard and does not impose additional requirements on certificate holders."
The most important distinction: SAS is not your SMS. SAS is how the FAA assures itself that you comply; your Safety Management System under 14 CFR Part 5 is the program you run — and which every Part 135 operator must declare compliant by May 28, 2027. They share the words "safety assurance" because the FAA describes SAS as the safety-assurance component of its own internal management system, but one is the inspector's toolkit and the other is your obligation.
In practice, SAS inspectors use Data Collection Tools (DCTs) built around six safety attributes to assess both the design of your systems (are the right procedures written down?) and their performance (do they actually happen?). Because both are anchored in documentation, what SAS surveillance really examines is, to a large degree, your records — your manuals, authorizations, training files, and maintenance entries.
SAS, in One Sentence
If you have ever wondered what the FAA is actually doing when it certificates and then keeps an eye on a Part 135 operator, the answer has a name: the Safety Assurance System. SAS is the standardized framework Flight Standards uses to decide what to look at, build an oversight plan, collect data, and act on what it finds. It replaced the older oversight approaches with a risk-based, data-supported model — the idea being to point finite inspector resources where the data suggests they are most warranted.
Two clarifications upfront, because both are easy to get wrong. First, SAS is not a regulation. You will not find "SAS" as a section of 14 CFR. It is FAA guidance and internal policy — principally FAA Order 8900.1, Volume 10. The rules SAS helps the FAA oversee live in the CFR (Part 5, Part 119, the Part 135 operating rules). Second, SAS is not your SMS; that distinction gets its own section below, because conflating the two is the most common SAS misunderstanding among operators.
You can't "violate SAS" — but a SAS tool can find a CFR violation
Because SAS imposes no new requirements, there is no such thing as a citation for "violating SAS." What can happen is that an inspector, using a SAS Data Collection Tool, finds that you are out of compliance with a requirement that already exists in 14 CFR. Treat SAS as the lens and the CFR as the standard. How the FAA then chooses to handle a finding — cooperatively or through enforcement — is a separate question covered in our compliance action vs. enforcement guide.
What SAS Actually Is
The FAA describes SAS as the combination of people, processes, and technology that constitutes Flight Standards' safety-assurance capability. It is the oversight system for 14 CFR parts 121 and 135 air operators and parts 141, 142, 145, and 147 agencies. It was developed by the FAA's System Approach for Safety Oversight (SASO) program, and its policy and procedures are documented in FAA Order 8900.1, Volume 10. None of that is a regulation — it is how the agency organizes itself to conduct the oversight the regulations authorize.
The single most useful line in the FAA's own SAS overview is this one: "SAS is not a separate safety standard and does not impose additional requirements on certificate holders." That is the whole philosophy in a sentence. SAS does not add to the rulebook; it standardizes how inspectors evaluate whether you are meeting the rulebook you already have. The FAA frames the larger goal as enhancing the risk-based, data-supported approach to oversight — concentrating attention where the data points.
The pieces of SAS
- People: Aviation Safety Inspectors (ASIs) and your assigned principal inspectors — the principal operations, maintenance, and avionics inspectors who oversee your certificate.
- Processes: the standardized oversight workflow — planning what to look at, collecting data, analyzing it, and taking action where needed.
- Technology: the SAS software and Data Collection Tools (DCTs) — the structured question sets inspectors use to capture what they observe.
For Part 135 operators, the FAA notes a wrinkle worth knowing: some of the data collection is done by the operator, much like a compliance statement — you identify where in your manual system a required procedure or record is located, and your principal inspectors verify it. That is why a clean, cross-referenced documentation system is not just nice to have under SAS; it is part of how data collection actually happens.
SAS Is Not Your SMS (This Trips Up Everyone)
Here is the confusion in plain terms. Your Safety Management System (SMS) under 14 CFR Part 5 has four pillars: safety policy, safety risk management, safety assurance, and safety promotion (the safety-assurance pillar lives in Subpart D, §§5.71–5.75). The FAA's oversight system is called the Safety Assurance System. Same two words — completely different owners.
The reason the names overlap is genuine, not coincidental: the FAA describes SAS as the safety-assurance component of the FAA's own internal management system. In other words, the FAA applies SMS thinking to itself, and SAS is how the agency "assures" the safety of the system it oversees. So both you and your regulator have a "safety assurance" function — yours is one pillar of your Part 5 SMS, and the FAA's is the SAS surveillance it runs on you.
| SAS (the FAA's oversight system) | Your SMS (14 CFR Part 5) | |
|---|---|---|
| Whose system is it? | The FAA's — it is how Flight Standards assures itself that you comply. | Yours — it is the Safety Management System you build and run under Part 5. |
| What kind of thing is it? | FAA guidance and internal policy (Order 8900.1, Vol 10). Not a CFR section. | A regulatory requirement (14 CFR Part 5) you must implement and declare compliant. |
| Who uses it day to day? | Aviation Safety Inspectors / your principal inspectors, via Data Collection Tools. | Your accountable executive, safety personnel, and everyone in the operation. |
| The deadline that matters | No single deadline — it is an ongoing oversight framework. | All Part 135 operators must submit a Declaration of Compliance by May 28, 2027. |
| Why "safety assurance" is in both names | The FAA describes SAS as the safety-assurance component of its own internal management system. | Safety assurance is one of the four SMS pillars (Subpart D, §§5.71–5.75) inside your program. |
Why this matters for you right now: the Part 5 SMS mandate is the big near-term obligation. The FAA's 2024 final rule extended SMS to all Part 135 operators — regardless of size, including single- and two-aircraft operations — with a single compliance deadline of May 28, 2027, by which each operator must submit a Declaration of Compliance under 14 CFR 5.9. That is your system. SAS is the lens the FAA will use to look at it — and at everything else you do. For the SMS obligation itself, see Part 135 SMS requirements and the May 28, 2027 SMS deadline. The accountable-executive role that anchors both — 14 CFR 5.25 — is covered in the Part 135 accountable executive, and the emergency response plan under 14 CFR 5.27 in our Part 135 emergency response plan guide.
SAS surveillance and your SMS both run on the same records. Want to know whether yours would hold up? Check your FAA readiness in two minutes.
How SAS Surveillance Works: Data Collection Tools
The engine of SAS is data collection. An Aviation Safety Inspector collects information while conducting oversight of your processes — both how they are designed and how they perform — so your principal inspectors can make informed decisions about your operating systems, both before approving or accepting them when regulations require, and during ongoing assessments. The structured questionnaires inspectors use to do this are called Data Collection Tools (DCTs).
DCTs come in a few flavors. A useful way to think about them is design-versus-performance: some tools ask whether a process is properly designed (is the procedure written into your manuals, are responsibilities clear?), and others observe whether it actually performs as designed in the real operation. Here are the main types in plain terms — and, more usefully for you, the records each one tends to land on.
Element Design DCT
What it does
Examines how a process is designed — is the required procedure written into your manual system, and are responsibilities and authorities clear?
The records it lands on
Your manuals, operations specifications, and the written procedures that define each element.
Element Performance DCT
What it does
Observes whether the process actually performs as designed — does the procedure happen in practice, and is it producing the intended result?
The records it lands on
Training and qualification records, maintenance entries, and the operational records that evidence the procedure running.
System / Subsystem Performance DCT
What it does
Looks at performance at a broader, system level rather than a single element — how the pieces fit and perform together.
The records it lands on
The cross-cutting record set: how authorizations, procedures, and outputs connect across your operation.
The historical names for the underlying inspection types — Safety Attribute Inspections (SAIs) for design and Element Performance Inspections (EPIs) for performance — predate SAS and carried over from the older oversight system; the DCT questions descend directly from them. You do not need to memorize the acronyms. The takeaway is structural: every DCT question is testing whether a safety attribute (covered next) is present and working in some part of your operation, and the evidence the inspector weighs is almost always a document.
A note on what we will not claim
We deliberately do not publish specific surveillance intervals, frequencies, percentages, or "triggers" for SAS. Those are internal FAA matters, they vary, and inventing them would do you a disservice. What we can say with confidence — and what is actionable — is that SAS assessments are documentation-anchored, so the reliable preparation is keeping your records current and producible. For getting ready in practice, see our Part 135 surveillance audit prep guide and what triggers an FAA audit.
The Six Safety Attributes SAS Questions Are Built On
The FAA defines safety attributes as the qualities present in a well-designed, safety-centered system and process — the things that help ensure repeatable safety performance. SAS Data Collection Tools are organized around six of them. Read them as a checklist the inspector is mentally running against each part of your operation: is there someone responsible, someone with authority, a written procedure, a control, a way to measure it, and managed interfaces?
Responsibility
A clearly identified individual who is accountable for the financial and human resources needed to ensure quality and safety performance.
Authority
A clearly identifiable, qualified person who can plan, direct, and control resources, change procedures, and make key determinations including safety-risk acceptance.
Procedures
The methods or practices — written or unwritten, regulatory or not — designed into a process to achieve a desired result.
Controls
The checks and restraints within a process that ensure the potential effects of risks are reduced to an acceptable level.
Process Measurement
A method to monitor and measure a process's outputs and performance, identify problems or potential problems, and take corrective action.
Interfaces
The interactions between processes that must be managed to ensure the desired outcomes are achieved.
Notice how directly the first two map to your management structure. Responsibility and Authority are, in effect, asking whether the right people are named, qualified, and actually empowered — which is exactly what the Part 119 required-management-personnel rules and your Part 5 SMS roles establish. If you want to see how that side of the house is built, our guides on required management personnel qualifications and the director of safety role under the SMS rule walk through the designations and the records that prove them.
SAS surveillance inspects your records. FileFlo keeps them ready.
FileFlo classifies and indexes the documents SAS data collection actually examines — OpSpecs and manuals, pilot and training records, maintenance and airworthiness entries, and your management-personnel and SMS files — ties them to aircraft and dates, alerts on expirations, and assembles an audit-ready binder on demand. 600+ document types. Starter at $89/mo, Professional at $299/mo. 5-day free trial, no credit card required.
What SAS Surveillance Really Examines: Your Records
Strip SAS down to what an inspector physically does, and a pattern emerges: the design questions are answered by your documents, and the performance questions are answered by your records. Is the procedure written into the manual? That is a document. Did the training actually happen, was the recurring inspection done on time, is the airworthiness directive complied with? Those are records. SAS is, in the day-to-day, a structured examination of your documentation — which is precisely why the operators who fare best under it are the ones whose records are continuously organized, dated, and producible, not the ones who scramble before an inspection.
That is a document-management capability, and it is exactly the layer FileFlo is built for. Below is the record set SAS data collection typically draws on, what each one proves, and where a compliance document intelligence platform helps. None of these documents is exotic — they are the same records a Part 135 operator is already required to keep.
The SAS-relevant record set
Operations specifications and manuals
14 CFR Part 119 / Part 135Why SAS lands on it
Design-side SAS data collection looks first at what your OpSpecs and manuals say. Whether a procedure is "designed in" — and what authorization was in force on a given date — is read straight from these documents and their revision history.
How FileFlo helps
FileFlo indexes OpSpecs and manual revisions as distinct document classes and version-controls amendments, so the authorization and procedure in force on any date is retrievable rather than reassembled.
Pilot qualification, currency, and training records
14 CFR Part 135 Subparts E/GWhy SAS lands on it
Performance-side data collection tests whether training and currency actually happened. A lapsed checkride or an undocumented recurrent item is exactly the kind of gap a DCT surfaces — and the answer is the record, on a date, not a recollection.
How FileFlo helps
FileFlo tracks pilot records with expiration alerting, so a lapsing checkride or medical surfaces before it becomes a finding, and the historical record is on file when an inspector asks.
Maintenance and airworthiness records
14 CFR §§43.9, 43.11; Part 39 (ADs)Why SAS lands on it
A large share of SAS performance assessment lives in the maintenance world — recurring inspections, airworthiness directive compliance, return-to-service entries. Continuity and dating are everything: a continuous, in-sequence record reads very differently than a reconstructed one.
How FileFlo helps
FileFlo classifies maintenance entries and airworthiness documents, dates them, and tracks recurring inspection and AD deadlines, so the maintenance picture an inspector examines is continuous and producible.
Required-personnel and SMS records
14 CFR Part 5; Part 119.65/.69Why SAS lands on it
The Responsibility and Authority attributes map directly to your management personnel and your Part 5 SMS roles. SAS examines whether the right person is named, qualified, and actually exercising authority — and your records are what demonstrate it.
How FileFlo helps
FileFlo stores management-personnel qualifications, designation letters, and SMS program documents as indexed, dated records, so the "who is responsible" question has a documented answer.
The compliance-statement / cross-reference file
FAA Order 8900.1, Vol 10 (guidance)Why SAS lands on it
For Part 135, part of SAS data collection is performed by the operator — much like a compliance statement that points to where in the manual system each required procedure or record lives. Building and maintaining that cross-reference is itself a documentation discipline.
How FileFlo helps
FileFlo keeps the underlying documents organized and findable so populating and updating a compliance cross-reference is fast — you can point to the actual record behind every line.
The same records discipline carries you through the adjacent oversight situations in this cluster. SAS sits behind a routine Part 135 surveillance audit, it informs what triggers an FAA audit, and it is the framework against which grey-area operations get scrutinized in the FAA illegal-charter crackdown — itself a question of whether you are operating under Part 91 or Part 135 (compensation or hire), and where the flight department company trap and business-jet ownership structure come into play. The broader oversight context — and how SAS fits the agency's overall framework — is laid out in this guide and the related Part 91 vs. Part 121 vs. Part 135 comparison.
Specific authorizations carry their own SAS-examined paperwork too. International operations bring a dedicated document set — see international operations documents and records and the Part 135 international operations requirements — and RVSM authorization is anchored in inspection records covered in RVSM altimeter and transponder inspection records and how to get RVSM authorization. And if an oversight finding ever moves toward action, the difference between a letter of correction, a warning, and an investigation — and how voluntary programs like ASAP, VDRP, and ASRS (including the NASA ASRS enforcement protection) fit — is worth understanding before, not during, the event.
FileFlo is the records SAS inspects — not your SMS, your inspector, or your attorney
FileFlo is a compliance document intelligence platform. It classifies the records SAS surveillance examines, indexes them by aircraft and date, version-controls your manuals and authorizations, tracks expirations on the time-sensitive ones, and keeps the whole set retrievable so you can produce and prove it on demand. It does not run your Part 5 SMS, author your manuals, conduct or respond to FAA surveillance, decide how a finding should be handled, interact with the FAA on your behalf, or give legal advice. What it does is make sure that when an inspector — or your own SMS — needs the proof, your records are organized, current, and ready.
Frequently Asked Questions
What is the FAA Safety Assurance System (SAS)?
The Safety Assurance System (SAS) is the FAA Flight Standards Service's oversight system for certain certificate holders — it is the people, processes, and software the FAA uses to plan and conduct surveillance of 14 CFR part 121 and 135 air carriers and part 145 repair stations. It was built by the FAA's System Approach for Safety Oversight (SASO) program and is documented in FAA Order 8900.1, Volume 10. SAS is FAA guidance and internal policy, not a section of the Code of Federal Regulations. Critically, per the FAA's own SAS overview, 'SAS is not a separate safety standard and does not impose additional requirements on certificate holders' — it is how the agency structures the inspections it already conducts against the rules that already apply to you.
Is SAS the same as my SMS?
No — and this is the single most common confusion. SAS is the FAA's oversight system; your SMS is your Safety Management System under 14 CFR Part 5. They share the phrase 'safety assurance' because both borrow from the same four-pillar SMS framework (safety policy, safety risk management, safety assurance, and safety promotion), and the FAA describes SAS as the safety-assurance component of the FAA's own internal management system. But they belong to different parties: SAS is how the FAA assures itself that you comply, while your Part 5 SMS — which all Part 135 operators must declare compliant by May 28, 2027 — is the program you run internally. One is the inspector's toolkit; the other is your obligation. They interact, but they are not the same thing.
What is a SAS data collection tool (DCT)?
A Data Collection Tool (DCT) is the structured questionnaire an Aviation Safety Inspector uses to gather information when assessing a certificate holder. FAA guidance describes several DCT types — for example an Element Design DCT (ED DCT) that examines how a process is designed in your manuals, an Element Performance DCT (EP DCT) used to observe whether the process performs as designed, and System/Subsystem Performance DCTs used at a broader level. The questions in these tools are built around the FAA's safety attributes (Responsibility, Authority, Procedures, Controls, Process Measurement, and Interfaces). For Part 135 operators in particular, FAA guidance notes that part of the data collection is performed by the operator, much like a compliance statement — you identify where in your manual system a required procedure or record lives — and your principal inspector then verifies it.
What are the six FAA safety attributes SAS looks for?
SAS questions are organized around six safety attributes the FAA considers the marks of a well-designed, safety-centered process. They are: Responsibility (a clearly identified person accountable for quality and safety performance), Authority (a qualified person who can direct resources and make risk-acceptance decisions), Procedures (the written or unwritten methods used to achieve a result), Controls (the checks within a process that keep risk at an acceptable level), Process Measurement (a way to monitor a process's outputs and catch problems), and Interfaces (the interactions between processes that have to be managed). When an inspector asks a DCT question, they are essentially testing whether one of these attributes is present and working in a given part of your operation.
Does SAS apply to Part 135 operators?
Yes. SAS is the FAA's oversight system for parts 121 and 135 air operators and for parts 141, 142, 145, and 147 agencies, so a Part 135 air carrier's certification and ongoing surveillance are conducted through SAS. What that means in practice is that the design of your manuals and procedures, and how they actually perform in the field, are assessed using SAS data collection tools by your principal inspectors. It does not mean SAS adds new rules — the underlying requirements still come from 14 CFR (Part 119 applicability, Part 135 operating rules, Part 5 SMS, and so on). SAS is simply the standardized framework the FAA uses to look at how well you meet them.
How does SAS surveillance work?
At a high level, SAS organizes oversight into planning and then data collection: inspectors scope what to look at, build a plan, and use Data Collection Tools to examine both the design of your systems (are the right procedures written down and are responsibilities clear?) and their performance (do those procedures actually happen on the ramp, in the hangar, and in the records?). The data feeds analysis and, where needed, action. The FAA describes the goal as a risk-based, data-supported approach — concentrating oversight where the data suggests it is most warranted. Because so much of SAS is documentation-anchored — manuals, authorizations, training records, maintenance entries — what an inspector actually evaluates is, to a large degree, your records. We do not publish specific surveillance intervals or triggers here because those are internal FAA matters that vary; for how to get ready, see our surveillance-audit and audit-prep guides.
Is SAS a regulation or FAA guidance?
SAS is FAA guidance and internal policy, not a regulation. It is documented in FAA Order 8900.1 (Flight Standards Information Management System), Volume 10, and supported by FAA notices and the agency's SAS reference library. The regulations that SAS helps the FAA oversee live in 14 CFR — for example Part 5 (Safety Management Systems), Part 119 (certification applicability), and the Part 135 operating rules. This distinction matters: you cannot be cited for 'violating SAS,' but you can be found out of compliance with a CFR requirement that an inspector examined using a SAS data collection tool. Treat SAS as the lens, and the CFR as the standard.
How do I prepare for SAS oversight?
Because SAS assessments are anchored in design and performance evidence, preparation is overwhelmingly a records and documentation exercise: keep your manuals and operations specifications current and version-controlled, make sure required procedures are actually written where the DCT expects to find them, keep training and qualification records complete and dated, keep maintenance and airworthiness records continuous, and be able to produce any of it quickly. The operators who do well under SAS are not the ones who scramble before an inspection — they are the ones whose records are continuously organized and retrievable. A compliance document intelligence platform like FileFlo helps with exactly that layer: it classifies, indexes, version-controls, and tracks expirations on the records SAS surveillance examines, so the proof is ready on demand. It does not run your SMS or interact with the FAA for you.
More on FAA Oversight, Surveillance & Part 135
SAS surveillance is, in practice, a records inspection. Make sure yours are ready.
FileFlo classifies and indexes the documents SAS data collection examines — OpSpecs and manuals, pilot and training records, maintenance and airworthiness entries, and your management-personnel and SMS files — with AI classification across 600+ document types, version control, expiration tracking, and an audit-ready binder on demand. Starter at $89/mo, Professional at $299/mo. No credit card required for the 5-day free trial.
5-day free trial · No credit card required · Cancel anytime
Reviewed by Chad Griffith, Founder, FileFlo — compliance document intelligence — June 15, 2026. The Safety Assurance System (SAS) is an FAA oversight system documented in FAA Order 8900.1, Volume 10, and supported by the FAA's SAS reference library; it is FAA guidance and internal policy, not a section of the Code of Federal Regulations, and per the FAA it "is not a separate safety standard and does not impose additional requirements on certificate holders." The regulations SAS helps the FAA oversee — including 14 CFR Part 5 (Safety Management Systems), §5.25 (accountable executive), §5.27 (emergency response plan), §5.9 (Declaration of Compliance), and Part 119 (certification applicability) — were verified against the Code of Federal Regulations (Cornell LII) as of publication date. The May 28, 2027 SMS compliance deadline applies to all Part 135 operators under the FAA's 2024 SMS final rule. This article is general compliance-document information, not legal advice; how SAS oversight applies to a specific operator is fact-specific — consult an aviation attorney for any surveillance, certificate, or enforcement question.