diff --git a/src/server/routes/activitypub.ts b/src/server/routes/activitypub.ts
index 0a1c9be..88aa996 100644
--- a/src/server/routes/activitypub.ts
+++ b/src/server/routes/activitypub.ts
@@ -475,7 +475,7 @@ export function createActivityPubRoutes(apService: ActivityPubService, db: Datab
 
         // SECURITY FIX: Check if restricted admin owns this note
         const request = req as AuthenticatedRequest;
-        if (!request.isRootAdmin && note.artist_id !== request.artistId) {
+        if (!request.isRootAdmin && Number(note.artist_id) !== Number(request.artistId)) {
             console.warn(`⛔ Access Denied: Artist ${request.artistId} tried to delete note ${noteId} owned by Artist ${note.artist_id}`);
             return res.status(403).send("Access denied");
         }