On October 27, 2015, the U.S. Senate voted 74-21 to pass the flawed Cyberinformation Sharing Act (CISA), a slightly modified version from the bill that passed the House of Representatives earlier this year. CISA, which purports to protect against data breaches, actually raises serious privacy concerns. In passing CISA, the Senate unfortunately voted against a number of proposed amendments which would have strengthened user privacy.
Among other concerns, CISA will allow companies to expand monitoring of their users’ online activities and permits sharing of vaguely defined cybersecurity threats without adequate privacy safeguards. It authorizes law enforcement that goes far beyond the scope of cybersecurity.
The Senate and House will now need to conference to resolve the differences between the two versions that passed.