Economic Security Documentation System in Civil Aviation Enterprises: The Case of Airports

Zinaida Zhyvko; Mykhailo Zhyvko

doi:10.36690/2674-5216-2025-3-52-64

Authors

Zinaida Zhyvko Ukrainian State Aviation Academy https://orcid.org/0000-0002-4045-669X
Mykhailo Zhyvko Scientific Center of Innovative Research https://orcid.org/0000-0002-0099-3562

DOI:

https://doi.org/10.36690/2674-5216-2025-3-52-64

Keywords:

airport governance, economic security, internal documentation, enterprise risk management, revenue assurance, supplier risk, safety management system, incident-to-impact costing, EU airports

Abstract

Airports operate as complex socio-technical systems where financial, operational, and safety risks intersect; yet the documentary foundations that translate incidents into measurable economic learning remain weakly integrated and unevenly disclosed. The aim of the article is to develop and substantiate a conceptual Airport Economic Security Documentation System (AESDS) by specifying essential document types and their interactions across the strategic–tactical–operational hierarchy, and by mapping how publicly disclosed artifacts at EU airports relate to financial stability, fraud prevention, and risk resilience. The methodology is a web-based documentary review - without interviews - covering eight EU operators (Schiphol, Frankfurt/Fraport, Groupe ADP, Vienna/Flughafen Wien, daa/Dublin, ANA-Portugal, Athens, Prague), limited to materials on official websites and investor portals (annual/governance/ESG reports, policies, supplier/partner codes, SMS/operational regulations). Artifacts were recorded if explicit, current, and linked to governance oversight; public visibility was then assessed along the incident → costing → closure chain. Across the sample, board-anchored ERM and ethics/vigilance systems are widely disclosed, while operational documents that evidence economic-impact tracing - standardized incident-to-impact costing forms, revenue-assurance SOPs, and closure KPIs - are rarely public. Governance disclosures (e.g., Schiphol’s COSO-aligned ERM; Vienna’s audit-committee oversight; daa’s ERM-ESG-ethics integration) confirm a robust top-down scaffolding, but the financial translation layer remains opaque online. The public record thus reveals an asymmetric disclosure pattern: high visibility for incident capture (SMS, whistleblowing), moderate for governance closure, and low for costing/impact artifacts - the critical link from events to economic learning. This pattern reflects commercial sensitivity rather than the absence of practice and motivates an AESDS maturity construct grounded in documentary presence, minimum content, ownership/refresh cycles, and evidence-of-use thresholds. A validated AESDS should integrate strategic policies, tactical control designs (risk registers, revenue-assurance, supplier oversight, incident-to-impact procedures), and operational evidence (checklists, scorecards, costing forms, dashboards), with expert consensus used to finalize minimum content and feasible thresholds for airports of different sizes. Such standardization would enhance transparency, risk resilience, and compliance efficiency while enabling rigorous cross-airport evaluation of documentation maturity and its performance payoffs.

Downloads

Download data is not yet available.

Author Biographies

Zinaida Zhyvko, Ukrainian State Aviation Academy

Doctor of Science (Economics), Professor, Professor of the Department of Aviation Management, Ukrainian State Aviation Academy, Kropyvnytskyi

Mykhailo Zhyvko, Scientific Center of Innovative Research

Ph.D. (Law), Junior Researcher, Scientific Center of Innovative Research, Pussi

References

Airports Council International – North America. (2024). Environment, Social, and Governance: An introduction to performance and risk management metrics for North American airports (White paper). https://shorturl.at/pBoZj

Athens International Airport. (2024a). Business partners’ code of conduct. https://shorturl.at/sFGAC

Athens International Airport. (2024b). Sustainability policy. https://shorturl.at/gNlqp

Athens International Airport. (2024c). Summary of the company’s operation regulation. https://shorturl.at/1OVtn

daa. (2025). Annual report & accounts 2024. https://shorturl.at/ePjp6

daa. (2025b). ESG strategy 2024–2030. https://tinyurl.com/4f4rjrv3

European Union Aviation Safety Agency. (2023). Easy Access Rules for the Basic Regulation (Regulation (EU) 2018/1139). https://tinyurl.com/54s8srh3

European Union. (2014). Regulation (EU) No 376/2014 on the reporting, analysis and follow-up of occurrences in civil aviation. EUR-Lex. https://eur-lex.europa.eu/eli/reg/2014/376/oj/eng eur-lex.europa.eu

European Union. (2018). Regulation (EU) 2018/1139 (Basic Regulation). EUR-Lex. https://eur-lex.europa.eu/eli/reg/2018/1139/oj/eng eur-lex.europa.eu

Flughafen Wien AG. (2024). Annual report 2024. https://viennaairport.com/jart/prj3/va/uploads/data-uploads/IR/2025/VIE_GB_2024_EN.pdf

Flughafen Wien AG. (2024). Consolidated corporate governance report. https://tinyurl.com/5y6k894x

Fraport AG. (2023). General Airport Regulations (C2.2). https://sslapps.fraport.de/webportalAVS/pdf/General-Airport-Regulations.pdf

Fraport AG. (2024). SMS regulation of Fraport AG and FRA-Vorfeldkontrolle GmbH (C4.6). https://sslapps.fraport.de/webportalAVS/pdf/Sms-regulations.pdf

Groupe ADP. (2020). Charter for the processing of ethics and compliance-related alerts. https://tinyurl.com/2rxksuvd

Groupe ADP. (2025). Universal registration document 2024. https://tinyurl.com/5ye3p6ht

International Air Transport Association. (2020/2022). Compilation of cybersecurity regulations, standards & guidance applicable to civil aviation (White paper). https://tinyurl.com/bdcmz8r5

International Civil Aviation Organization. (2018). Safety Management Manual (SMM), Doc 9859 (4th ed.). https://store.icao.int/en/safety-management-manual-doc-9859

International Civil Aviation Organization. (2025). Airport economics manual (Doc 9562). https://www.icao.int/

International Organization for Standardization. (2018). ISO 31000:2018 Risk management—Guidelines. https://www.iso.org/standard/65694.html

Letiště Praha, a.s. (2023). ESG report of Prague Airport Group 2023. https://tinyurl.com/52pdtysw

Letiště Praha, a.s. (2025). Compliance Ethics Line. https://www.prg.aero/en/compliance-ethics-line

Royal Schiphol Group. (2025). Annual report 2024. https://tinyurl.com/y3jp8nb2