Baseline Safeguarding (All Contracts) Β· FAR 52.204-25 / 52.204-24 / 52.204-26

Section 889 Prohibition on Covered Telecommunications Equipment

Also known as: Section 889, covered telecommunications ban, Huawei/ZTE prohibition

What you do here: Confirm you don't use prohibited covered telecom/video equipment, and represent that in SAM.gov

At a Glance

Who it applies to
All contractors and subcontractors β€” a governmentwide prohibition, not limited to IT or DoD
What it obligates
Don't provide, and (Part B) don't use, covered telecom/video-surveillance equipment or services; represent your status
Governing authority
Section 889 of the FY2019 NDAA, implemented in FAR 52.204-24 / -25 / -26 and Subpart 4.21
Covered companies
Huawei, ZTE, Hytera, Hikvision, Dahua and their affiliates (plus certain others named by the government)
The stakes
A false representation can void eligibility and expose you to False Claims Act liability

What It Is

Section 889 of the John S. McCain National Defense Authorization Act for Fiscal Year 2019 is a governmentwide prohibition on 'covered telecommunications equipment and services' β€” telecom and video-surveillance products from a short list of Chinese companies (Huawei, ZTE, Hytera, Hikvision, Dahua, and their affiliates and successors) that Congress identified as national-security risks. It has two parts. Part A (in effect since August 2019) prohibits the government from procuring or obtaining equipment, systems, or services that use covered equipment as a substantial or essential component. Part B (in effect since August 2020) goes further: it prohibits the government from contracting with any entity that uses covered equipment or services anywhere in its operations β€” not just in the work it does for the government. The FAR implements this through three provisions/clauses: FAR 52.204-24 (the representation about providing covered equipment), FAR 52.204-25 (the actual prohibition and flow-down clause), and FAR 52.204-26 (the SAM.gov annual representation covering use). In practice, you make a representation in SAM.gov (and often in each offer) about whether you provide or use covered telecommunications equipment. If you do, you generally can't receive the award unless a waiver applies. The prohibition covers not just obvious network gear but common video-surveillance cameras β€” a security camera or two from a covered brand in your own office can put you out of compliance with Part B. Because the representation is a certification, getting it wrong is a false statement, not a paperwork slip.

When It Applies

  • On every federal solicitation and contract β€” Section 889 is governmentwide and not limited to IT, DoD, or a dollar threshold.
  • When you complete or update your SAM.gov annual representations and certifications.
  • When you submit an offer and must represent whether you provide or use covered telecom or video-surveillance equipment.
  • As a flow-down: FAR 52.204-25 must be included in subcontracts, including for commercial products and services.

Key Features

FeatureWhat It Means
Two prohibitions β€” provide and usePart A bans providing covered equipment to the government; Part B bans contracting with any entity that uses covered equipment anywhere in its operations.
Named covered companiesHuawei, ZTE, Hytera, Hikvision, and Dahua (and affiliates/successors), plus certain entities the government names for national-security reasons.
Covers video surveillance, not just networksCommon security cameras and video-surveillance systems from covered brands are within scope β€” a frequent surprise for small firms.
SAM.gov representationYou represent your status in SAM.gov (FAR 52.204-26) and often per-offer (FAR 52.204-24); the representation is a certification.
Flows down and covers commercial itemsFAR 52.204-25 flows down to subcontracts, including for commercial products and services and COTS items.

The SDVOSB Angle

Section 889 is a low-cost, high-consequence compliance item that a small SDVOSB can fail without realizing it β€” most commonly through a covered-brand security camera in its own office, not through anything it sells the government. Do a genuine inventory before you certify: check your network equipment, phones, and especially your video-surveillance cameras against the covered-brand list, and replace anything covered. Because the SAM.gov and per-offer representations are certifications, a careless 'no covered equipment' answer that turns out to be wrong is a false certification with False Claims Act exposure β€” a disproportionate risk for a small firm. And remember the flow-down: your similarly situated subcontractors and teaming partners are within scope too, so build the representation into your teaming due diligence. Getting this right is cheap; getting it wrong can end an award and your eligibility.

How to Comply

  1. Inventory your telecom, network, phone, and video-surveillance equipment against the covered-brand list (Huawei, ZTE, Hytera, Hikvision, Dahua and affiliates).
  2. Replace or remove any covered equipment before you certify β€” including office security cameras.
  3. Complete the Section 889 representations accurately in SAM.gov and in each offer.
  4. Keep records of your reasonable inquiry so you can support the representation if challenged.
  5. Flow FAR 52.204-25 down to subcontractors and confirm partners' status before teaming.

Watch Out For

  • Overlooking video-surveillance cameras β€” a covered-brand camera in your own office violates Part B.
  • Certifying 'no' without an actual inventory β€” the representation is a certification with False Claims Act exposure.
  • Assuming it's a DoD-only or IT-only rule β€” Section 889 is governmentwide and applies regardless of what you sell.
  • Ignoring the flow-down and teaming partners β€” a covered-equipment subcontractor is your compliance problem.

Frequently Asked

What is Section 889?

Section 889 of the FY2019 National Defense Authorization Act is a governmentwide prohibition on covered telecommunications and video-surveillance equipment from certain Chinese companies β€” Huawei, ZTE, Hytera, Hikvision, and Dahua (and their affiliates). Part A bans the government from buying such equipment; Part B bans the government from contracting with any entity that uses it anywhere in its operations. It is implemented in FAR 52.204-24, 52.204-25, and 52.204-26, and contractors must represent their status in SAM.gov.

Does Section 889 apply to my small business if I'm not an IT company?

Yes. Section 889 is governmentwide and is not limited to IT companies, DoD contractors, or a dollar threshold. Part B prohibits the government from contracting with any entity that uses covered equipment anywhere in its operations, so even a non-technical small business can be affected β€” most commonly through covered-brand video-surveillance cameras in its own facilities. Every federal contractor must be able to make the Section 889 representation truthfully.

What happens if I certify wrong on Section 889?

The Section 889 representations in SAM.gov and in your offers are certifications. Certifying that you do not provide or use covered equipment when you actually do is a false statement that can make you ineligible for award, lead to termination, and expose you to False Claims Act liability. Before you certify, conduct a real inventory of your telecom and video-surveillance equipment, remove anything covered, and keep records of your inquiry so you can support the representation if it is ever challenged.

Primary Sources

Plain-English reference, not legal advice. Cybersecurity and information-safeguarding rules are fact-specific and change often β€” the FAR, DFARS, NIST publications, and the CMMC program rule are amended and phased in over time. Always read the current FAR/DFARS text and the safeguarding clauses in your specific contract, check the version of NIST SP 800-171 your contract requires, confirm the SPRS and CMMC requirements with the contracting officer, and consult qualified counsel or a cybersecurity professional before relying on a compliance position or making a certification.

Last updated Update cadence: Quarterly, plus on FAR/DFARS amendment, a new NIST SP 800-171 revision, or CMMC phase-in changes
Change log (1)
  1. LaunchedPublished the federal contract cybersecurity & information safeguarding requirements reference covering the obligations an SDVOSB takes on across a federal (especially DoD) set-aside β€” basic safeguarding of Federal Contract Information (FAR 52.204-21), the Section 889 covered-telecom prohibition (FAR 52.204-25), the DoD safeguarding of Covered Defense Information and 72-hour cyber-incident reporting (DFARS 252.204-7012), the NIST SP 800-171 control set with its System Security Plan and POA&M, the SPRS self-assessment score (DFARS 252.204-7019 / -7020), the CMMC program and its three levels (DFARS 252.204-7021 / 32 CFR Part 170), Controlled Unclassified Information marking and handling (32 CFR Part 2002 / EO 13556), and the emerging governmentwide FAR CUI rule β€” each with an at-a-glance quick-facts card, a when-it-applies list, a key-features table, an SDVOSB-specific angle, a how-to-comply checklist, watch-outs, FAQPage, Article, Dataset, and BreadcrumbList structured data, primary-source FAR/DFARS/CFR/NIST citations, and cross-links into the glossary, contracting systems (SPRS, SAM.gov), clauses, forms, contract types, how-to guides, FAQ, and the price-to-win and win-probability calculators.

Related Safeguarding Requirements

Systems You’ll Use

SAM.gov — System for Award Management→
UEI β€” Unique Entity ID (SAM)β†’

Clauses That Apply

FAR 52.204-8 — Annual Representations and Certifications→
FAR 52.212-3 — Offeror Representations and Certifications—Commercial Products and Commercial Services→

How It Plays by Contract Type

FFP β€” Firm-Fixed-Price (FFP)β†’

Forms You’ll Use

FAR 52.204-8 Reps & Certs β€” Annual Representations and Certifications (SAM.gov)β†’

Put It Into Practice

How to Register Your SDVOSB in SAM.gov→

Terms Used on This Page

FARSAM.gov
← All Cybersecurity & Information Safeguarding Requirements