Introduction#
A recent report highlights that proposed European Union (EU) cybersecurity measures could result in costs exceeding $400 billion over the next five years. Germany is expected to bear nearly half of this financial burden, according to the China Chamber of Commerce to the EU.
Proposed Cybersecurity Rules#
The EU aims to phase out equipment from what it considers "high-risk" suppliers, particularly in critical sectors. This initiative has drawn criticism from companies like Huawei, a major Chinese telecommunications firm, which may be significantly impacted by these rules. The EU's definition of "high-risk" suppliers has raised concerns in Beijing, prompting calls for the removal of specific clauses from the proposals.
Financial Implications#
A study by KPMG for the China Chamber of Commerce estimates that replacing Chinese suppliers across 18 critical sectors could cost the EU approximately 367.8 billion euros (around $432.83 billion) between 2026 and 2030. The financial impact includes the need to replace hardware, write down existing assets, and deal with reduced efficiency and delays in digital advancements.
Affected Sectors and Countries#
The energy and telecommunications sectors are expected to be the most affected, as they are crucial for the EU's digital and green transition plans. Six EU countries, including Germany, France, Italy, Spain, Poland, and the Netherlands, are projected to incur losses exceeding 10 billion euros. Notably, Germany's share of the costs could reach 170.8 billion euros.
Legislative Process#
Currently, EU governments and the European Parliament are in the early stages of discussing these new rules. Amendments to the proposals are likely as the legislative process unfolds. Recently, the European Commission suggested limiting the use of EU funds for projects involving power inverters from high-risk suppliers, citing potential risks to member states' electricity networks.