Supply chain security remains a key bipartisan policy goal and burgeoning compliance risk area. This article examines three recent initiatives that exemplify these trends: the regulations on securing the Information and Communications Technology and Services supply chain, the Uyghur Forced Labor Prevention Act, and the proposed National Critical Capabilities Defense Act.

Companies with cross-border supply chains should assess their exposure under these emerging regimes and prioritize their compliance efforts accordingly. The risk profile is greatest for companies developing technology and software across borders; companies importing items produced in (or incorporating components produced in) the Xinjiang region of China; parties seeking to invest in certain critical capabilities outside the United States; and government contractors that may be exposed to foreign adversaries in their supply chains.

Information and Communications Technology and Services Rules