Japan adds PRC inspections for IT buys

Japan is adding security inspections to government information-technology purchases, checking products when they arrive instead of relying only on paperwork from vendors. (digital.go.jp) Japan’s Digital Agency says it is issuing new security guidance for government information systems, while the Ministry of Economy, Trade and Industry said in April 2025 that suppliers should be evaluated for risks across business, information-technology and service supply chains. (digital.go.jp) (meti.go.jp) The procurement shift lands as Tokyo hardens its cyber posture. Japan reorganized its cybersecurity center into the National Cybersecurity Office in July 2025 after legislation passed in May 2025, and the office says it now coordinates policy across government. (cyber.go.jp) Japan has spent the past three years tying economic security more tightly to technology policy. The 2022 National Security Strategy put supply-chain resilience at the center of national security, and recent policy has widened from semiconductors to government systems and critical infrastructure. (cyber.go.jp) (bloomberg.com) Chinese state-linked cyber activity has been part of that backdrop. Japan and the United States warned in September 2023 that the China-linked group BlackTech was exploiting routers used by government and private networks, and Japanese officials later said China-backed threats were rising against critical infrastructure. (therecord.media 1) (therecord.media 2) Tokyo has also been under pressure from deteriorating ties with Beijing. Nikkei Asia reported in March 2026 that Japan planned to downgrade China’s status in its diplomatic bluebook, while Bloomberg reported in January and February 2026 that China tightened export controls and scrutiny on Japanese firms. (asia.nikkei.com) (bloomberg.com 1) (bloomberg.com 2) Japan’s government procurement system is already centralized enough to make new screening rules consequential. The Foreign Ministry says Japan publishes covered tenders under international procurement rules, and JETRO runs the official online database used to search those notices. (mofa.go.jp) (jetro.go.jp) A product-arrival inspection regime would push agencies beyond trust-by-contract: officials would verify what was actually shipped, not just what a supplier promised in bid documents. That same logic could extend to other sensitive purchases, including network gear, sensors and some laboratory instruments that connect to government systems. (digital.go.jp) (meti.go.jp) Japan has not published, in the sources reviewed here, a single English-language rule spelling out every inspection step or naming a country-specific ban. What the public record does show is a government moving procurement, cybersecurity and economic-security policy in the same direction: tighter scrutiny of suppliers, tighter checks on delivered products, and less tolerance for opaque risk. (digital.go.jp) (cyber.go.jp)