The US Senate overwhelmingly passed a controversial cybersecurity bill critics say will allow the government to collect sensitive personal data unchecked, over the objections of civil liberties groups and many of the biggest names in the tech sector.
The vote on Tuesday was 74 to 21 in support of the legislation.
Ahead of the vote a group of university professors specializing in tech law, many from the Princeton Center for Information Technology Policy, sent an open letter to the Senate, urging them not to pass the bill. The bill, they wrote, would fatally undermine the Freedom of Information Act (Foia)
Cisa would “allow ‘voluntary’ sharing of heretofore private information with the government, allowing secret and ad hoc privacy intrusions in place of meaningful consideration of the privacy concerns of all Americans,” the professors wrote.
The data in question would come from private industry, which mines everything from credit card statements to prescription drug purchase records to target advertising and tweak product lines. Indeed, much of it is detailed financial and health information the government has never had access to in any form. The bill’s proponents said the data would be “anonymized”.
Cisa would create a program at the Department of Homeland Security (DHS) through which corporations could share user data in bulk with several US government agencies. In exchange for participating, the companies would receive complete immunity from Freedom of Information Act requests and regulatory action relating to the data they share. DHS would then share the information throughout the government.