The Cybersecurity Information Sharing Act (CISA), a U.S. federal law, was enacted on December 18, 2015, by President Barack Obama, aiming to improve national cybersecurity through enhanced information sharing. Introduced in July 2014 and passed by the Senate in October 2015, the law allows technology and manufacturing companies to voluntarily share Internet traffic and cyber threat indicators with U.S. government agencies.

However, CISA faced significant opposition due to concerns about personal privacy, with critics arguing it could increase the vulnerability of private information and allow its dispersal across multiple government entities, including the NSA and local police. Opponents also questioned provisions that could permit shared data, initially intended for cybercrime prosecution, to be used as evidence for crimes involving physical force. While some business groups, like the U.S. Chamber of Commerce, supported the bill, others emphasized the need for indemnification—legal protection for companies sharing data—as a vital component for fostering trust and broader industry collaboration.