EU to Tighten Rules on Chinese Automotive Imports: Environmental and Cybersecurity Concerns
The European Union is considering new measures to limit Chinese automotive imports, focusing on environmental criteria and cybersecurity risks. These steps come as part of the EU’s broader strategy to bolster its automotive industry and reduce dependency on non-EU countries, especially China.
Under the EU’s Net Zero Industry Act (NZIA), member states are required to include a “resilience” test in public support schemes by 2026. This test examines the supply chain’s dependency on a single non-EU country. If over 50% of the components for electric vehicles (EVs), such as batteries, motors, or magnets, originate from one country, this could impact the level of government support provided. The move is aimed at reducing reliance on Chinese products and supporting European manufacturers.
Should the Industrial Accelerator Act (IAA) fall short, the European Commission and some member states, notably France, may advocate for broader application of these rules, potentially extending them to corporate fleet programs.
Cybersecurity Risks as a Tool to Curb Chinese Automotive Influence
In addition to environmental criteria, cybersecurity concerns are increasingly being used as a strategic measure against Chinese automakers. The United States has already implemented ICTS rules to exclude Chinese vehicles that pose cybersecurity threats. Similar concerns are growing within the EU.
Several EU countries have already taken steps to exclude Chinese suppliers from their 5G networks. Additionally, incidents involving Chinese-made vehicles, like Poland’s ban on such cars at military sites and Norway’s increased security demands after discovering vulnerabilities in Chinese electric buses, highlight the rising scrutiny.
The European Commission is seeking powers akin to those in the US ICTS framework through a proposed revision of the Cybersecurity Act (CSA). This proposal aims to give member states the authority to limit high-risk vendors, particularly within the connected vehicles supply chain. Given Chinese legal requirements for companies to share data with the government, Chinese firms are perceived as higher risk.
A cybersecurity risk review conducted by the Commission in February 2026 noted risks from “non-technical” factors, such as potential government interference, and recommended measures to restrict high-risk suppliers. However, the CSA is still a proposal and may not be enacted for another 18-24 months, facing potential resistance from member states worried about economic repercussions and national security autonomy.
In the absence of a strong EU-wide stance, individual member states may choose to enforce their own restrictions. For instance, Poland’s military-focused ban has limited impact on the Single Market, but broader national restrictions could lead to market fragmentation.
The EU’s ongoing efforts to safeguard its automotive sector reflect a delicate balance. While robust measures can protect the industry, they also risk escalating tensions with China, a key supplier of essential materials and components. As the EU navigates these challenges, timing and strategic implementation will be crucial to minimizing potential fallout.
Original Story at rhg.com