A major information-sharing bill that’s in the Senate right now would allow private organizations to share threat data with any government agency, something that the Department of Homeland Security says could have severe privacy implications and cause confusion and inefficiencies inside the federal government.

The bill, known as the Cybersecurity Information Sharing Act, would allow private companies and other organizations to share vulnerability information and threat indicators with government agencies under most circumstances. The United States federal government has an extensive internal information sharing program, which is coordinated through DHS’s National Cybersecurity and Communications Integration Center, a clearinghouse for threat data. Some of that data also is shared outside of the government, with a small number of private organizations.

The CISA bill would encourage companies to contribute their threat intelligence to a DHS portal, but also would allow them to share it any government agency, as long as it’s not prohibited by other laws. In a letter send to Sen. Al Franken (D-Minn.), DHS officials say the bill could raise significant privacy concerns.