CISA data-sharing bill passes Senate with no privacy protections
There was unanimous opposition to the bill across the tech industry (with the exception of Facebook)
A controversial draft law, which one senator called a “surveillance bill by another name,” has passed the Senate.
CISA, the Cybersecurity Information Sharing Act (S. 754), will allow private companies to share cyber-threat data with the federal government, including personal user data, in an effort to prevent cyberattacks, such as those on the scale of Target, Home Depot, and Sony. Companies that share data with federal agencies, including the National Security Agency (NSA), will be given legal and liability protections from lawsuits relating to data sharing.
The bill passed by 74-21. The bill will now go to conference with the House where it will be reconciled with two other measures, reports Reuters.
Critics say the bill does more to invade the privacy of ordinary Americans than protects US interests.
Sen. Ron Wyden, the only member of the intelligence committee to vote against the bill, said CISA will “have a limited impact on US cybersecurity.”
All of the five pro-privacy amendments tabled by senators ahead of the vote failed.
One of the core privacy bolstering amendments, which would require sensitive and personal data to be removed before it is shared with federal agencies, was voted down. Another, which critics argue would make it more difficult to track threat-data sharing under freedom-of-information laws, was also struck down.
Sen. Dianne Feinstein (D-CA), who sponsored the bill in 2014, said the amendments would “undo the careful compromises we made on this bill.”
Sen. Bernie Sanders (I-VT) was the only presidential candidate to vote against the bill, according to The Guardian. Sen. Lindsey Graham (R-SC), a Republican presidential candidate, voted for the bill.
(keep reading at zdnet.com)