The European Union’s push to reduce dependence on Chinese technology suppliers may carry far greater economic costs than many policymakers in Brussels are willing to admit.
A new joint report released by the China Chamber of Commerce to the EU and KPMG warns that proposed revisions to the EU’s Cybersecurity Act could cost the bloc as much as €367.8 billion ($434 billion) over the next five years if Chinese suppliers are systematically excluded from key sectors.
That figure is enormous by European standards — equivalent to nearly two years of the EU’s annual budget.
Germany alone could face losses exceeding €170 billion, with France and Italy also exposed to significant economic damage.
But beyond the numbers, the report reveals something more important:
Europe’s “de-risking” strategy is increasingly evolving from a trade policy into a structural industrial policy.
And that shift could reshape the future of global supply chains.
Security Is Becoming Economic Policy
At the center of the controversy is the EU’s proposed expansion of “non-technical risk” criteria within cybersecurity regulation.
Under the draft framework, Brussels could identify certain countries or vendors as “high-risk suppliers” and gradually exclude them from critical supply chains across sectors such as:
- telecommunications
- energy infrastructure
- transport systems
- cloud services
- digital networks
Supporters argue the measures are necessary to protect Europe’s strategic autonomy and digital security.
Critics, however, see a different trend emerging:
the growing politicization of commercial technology decisions.
The report argues that many of the proposed standards remain vague, subjective, and potentially discriminatory, particularly because no public technical evidence has been presented showing systemic cybersecurity violations by Chinese firms operating inside Europe.
This is where the debate becomes larger than cybersecurity itself.
The issue is no longer simply whether Europe trusts certain suppliers.
The deeper question is whether geopolitical alignment is becoming a prerequisite for participation in advanced industrial economies.
Europe Faces a Difficult Trade-Off
For years, European governments attempted to balance three goals simultaneously:
- maintaining economic openness
- preserving strategic autonomy
- staying aligned with US-led security priorities
That balancing act is becoming increasingly difficult.
Chinese companies remain deeply integrated into Europe’s industrial and digital ecosystems, especially in telecommunications equipment, renewable energy infrastructure, batteries, and manufacturing supply chains.
Removing those suppliers is not cost-free.
It could mean:
- higher infrastructure costs
- slower digital deployment
- reduced market competition
- inflationary pressure on consumers
- weaker industrial efficiency
In some sectors, replacing Chinese suppliers may take years — and require significant public subsidies.
This explains why parts of Europe’s business community remain cautious about aggressive decoupling policies, even as political pressure intensifies.
From Globalization to “Political Supply Chains”
The broader signal coming from Brussels is increasingly clear:
Globalization is entering a new phase where political trust matters as much as price efficiency.
For decades, global supply chains were optimized primarily around cost, speed, and scale.
Now they are increasingly being reorganized around:
- security alignment
- geopolitical reliability
- strategic resilience
- technological sovereignty
This transition is not unique to Europe.
The United States has already moved aggressively in this direction through semiconductor restrictions, investment controls, and industrial subsidies.
Europe, however, has traditionally been more cautious because its export-oriented economies remain highly dependent on open global trade.
That is why the EU’s cybersecurity debate matters far beyond telecom policy.
It may represent another step toward the gradual fragmentation of the global technology system into competing geopolitical blocs.
The Real Risk for Europe
Ironically, the report argues that mandatory supplier exclusions may not significantly improve actual cybersecurity outcomes.
Instead, the bigger risk could be economic.
If Europe reduces competition while increasing compliance costs, it may weaken its own digital competitiveness at a time when the continent is already struggling to keep pace with both the United States and China in critical technology sectors.
For Brussels, this creates a difficult dilemma:
How does Europe pursue strategic autonomy without undermining the industrial competitiveness needed to sustain that autonomy?
That question may define the next decade of EU-China economic relations.
And increasingly, it may define the future structure of the global economy itself.