The European Union is moving to phase out technology from so-called high-risk suppliers in critical sectors, a plan that has drawn strong criticism from China’s Huawei, which is expected to be among the companies affected.
The proposal, outlined in a draft revision of the EU Cybersecurity Act released by the European Commission, comes amid rising cyber and ransomware attacks, as well as growing concerns over foreign interference, espionage, and Europe’s dependence on non-EU technology providers.
While the Commission did not name specific companies or countries, scrutiny of Chinese technology firms has intensified across Europe. Germany has recently banned Chinese components from future 6G telecoms networks, and the United States has already blocked new approvals of telecoms equipment from Huawei and ZTE, urging European allies to follow suit.
China’s foreign ministry criticised the EU’s approach, warning against what it described as protectionism. Huawei echoed those concerns, arguing that limiting suppliers based on country of origin rather than technical evidence violates EU legal principles and World Trade Organisation rules.
EU officials, however, say the measures will strengthen cybersecurity and boost technological sovereignty. The proposed rules would apply to 18 critical sectors, including telecoms infrastructure, energy systems, water supply, transport technologies, cloud services, medical devices, space services, and semiconductors.
Under the plan, mobile operators would have 36 months to remove key components supplied by high-risk vendors once an official list is published. Timelines for fixed, fibre-optic, submarine cable, and satellite networks will be set later.
Industry group Connect Europe has warned the proposals could impose billions of euros in additional costs on telecom operators. The revised Cybersecurity Act must still be negotiated with EU member states and the European Parliament before it can become law.
Erizia Rubyjeana
Follow us on:
