The national security radar in the United States just picked up a new blip. Chinese coffee imports are now under scrutiny. That’s not satire. It follows a long list of flagged categories including cranes, smartphones, electric vehicles, garlic, drones, and TikTok. The concern is not about caffeine. It’s about data, infrastructure, and influence. The Department of Commerce and the FCC’s Council on National Security are expanding their investigations into Chinese-linked supply chains. Coffee is the latest addition.
The issue stems from the ownership and operational control of coffee distribution platforms and retail chains with Chinese ties. Some of these companies use mobile apps that collect user data, location history, and payment information. That data can be routed through servers in jurisdictions with no transparency. The FCC has already flagged similar risks in telecom and consumer electronics. Now it is looking at food and beverage platforms that operate across state lines and use digital infrastructure to manage logistics and customer engagement.
The FCC’s Council on National Security launched its investigation in March 2025. It is targeting businesses aligned with the Chinese Communist Party that appear on the Covered List. That includes firms with indirect ownership, shell structures, or subsidiaries that operate in the United States. The Council is using subpoenas and letters of inquiry to gather information. The goal is to identify third-party enablers and close regulatory loopholes. The coffee sector is part of that sweep.
The Department of Commerce is also involved. It is reviewing export control compliance and data transfer risks. The concern is that Chinese-owned coffee platforms could be used to collect sensitive personal data and transmit it to foreign servers. That data could be used for profiling, manipulation, or blackmail. The DOJ finalized a rule in May 2025 restricting sensitive data transfers to countries of concern. China is on that list.
This is not about beans. It is about networks. The coffee supply chain includes logistics software, payment systems, and customer analytics. If those systems are controlled by foreign adversaries, they become vectors for surveillance. The FCC’s cybersecurity rules now require service providers to certify their supply chain risk management plans. Coffee platforms that use Chinese-developed software or hardware may fall under those rules.
Congress is watching. The House Select Committee on Strategic Competition with China has sent letters pressing regulators to expand the Entity List to include subsidiaries. The Treasury Department already applies the 50% Rule, which bans companies from doing business with majority-owned subsidiaries of listed actors. The FCC and Commerce are expected to follow.
Sources:
https://www.mayerbrown.com/en/insights/publications/2025/07/us-china-trade-monthly-july-2025
