If you're in tech, hardware, or any business touching advanced computing, the US AI chip export restrictions country list isn't just a regulatory footnoteâit's a daily operational reality that can make or break your supply chain and customer contracts. I've watched these rules evolve from vague concepts to sharply defined tools of economic statecraft. Forget thinking of it as a static "list"; it's a dynamic, multi-layered control system targeting specific countries, entities, and end-uses.
The core goal is to limit China's access to advanced computing power for military modernization and AI development. But the fallout spreads much wider, catching companies in allied nations and creating a compliance maze that's easy to misread.
In this article, you'll find:
Who is Actually on the Restricted List? Breaking Down the Tiers
Most people search for a simple country list, but the US Bureau of Industry and Security (BIS) doesn't work that way. Restrictions apply through a combination of Destination, End-Use, and End-User. A chip going to a university in Country A might be fine, but the identical chip going to a military AI lab in Country B is blocked.
The primary mechanism is the Commerce Control List (CCL) and specific Export Administration Regulations (EAR). For AI chips, you're mainly looking at controls under ECCN 3A090 and 4A090 for advanced computing items.
Key Insight: The most common mistake is assuming restrictions are binary (allowed/not allowed). In reality, there are tiers of restrictionâsome destinations require a license that will be denied, while others require a license that might be approved under certain conditions. Knowing the difference saves months of wasted effort.
The Core Restricted Destinations (Where Licenses Are Presumptively Denied)
For the most advanced AI chips (exceeding specific performance thresholds), licenses are required for these destinations and will almost certainly be denied for most end-uses. This is the heart of the "restricted country list" most are looking for.
| Country/Region | Restriction Scope | Primary Rationale | Key Entity Lists to Cross-Check |
|---|---|---|---|
| China (Including Macau & Hong Kong) | Broadest restrictions. Covers advanced AI chips, chip-making equipment, and supercomputing items. | Counter military-civil fusion and AI advancement for military modernization. | Entity List, Military-End User (MEU) List. |
| Russia | Comprehensive sanctions following the 2022 invasion. Strict controls on all dual-use and military items. | Response to war in Ukraine, limit military technological capabilities. | Entity List, Sectoral Sanctions Identifications (SSI) List. |
| Iran | Long-standing comprehensive embargo. Virtually all US-origin items require a license. | Non-proliferation and regional security concerns. | Denied Persons List, Entity List. |
| North Korea | Complete embargo. No exports permitted without specific authorization. | Non-proliferation and national security. | Specially Designated Nationals (SDN) List. |
Notice I said "presumptively denied."
There's a tiny window for certain civilian end-uses, like consumer applications, but proving that to BIS's satisfaction is a high bar. Most companies simply design these markets out of their sales plans for cutting-edge products.
The "Watch List" Destinations (License Required, Review Possible)
This is where it gets nuanced. For slightly less advanced chips (or for specific worrisome end-uses in otherwise allied countries), a license is required but reviewed under a case-by-case policy. This includes a group of countries the US has identified as potential diversion risks.
As of the latest updates, this includes: Saudi Arabia, the United Arab Emirates (UAE), Vietnam, Qatar, and Israel. The concern isn't the country itself, but the risk that chips could be transshipped or used as components in systems ultimately destined for a fully restricted country like China.
How the Rules Keep Evolving (It's Not Just China)
The October 2022 rules were a earthquake. The October 2023 updates were the aftershocks that reshaped the landscape again. They didn't just add more countries; they introduced the concept of the "Restricted Country List" (also called the "Country Groups" update) which applies restrictions based on a country's risk profile for diversion.
More importantly, they expanded controls beyond just chips to the tools that make chips (lithography machines, etc.), and even to chip design software. This creates a domino effectâa fab in an allied country can't get the latest ASML machine, which means it can't produce cutting-edge chips for anyone, including non-restricted customers.
I've seen companies get blindsided by this. They celebrated moving assembly to Vietnam, only to find they couldn't import the necessary American-made deposition equipment to run the new line. The compliance burden shifted, but didn't disappear.
The Practical Impact: More Than Just a Shipping Label
So you've checked your customer's country. It's not on the core list. You're good, right? Not even close.
The real work is in End-User and End-Use screening.
- End-User: Is your buyer actually a front for a Chinese military research institute? You need to screen against the BIS Entity List, the MEU List, and internal red flags.
- End-Use: Will those GPUs be used for a commercial data center or to train a large AI model for autonomous weapons? The "Know Your Customer" (KYC) requirement here is deeper than in banking.
This leads to the most painful, unspoken cost: the "gray market" tax. Authorized distributors add hefty risk premiums. Unauthorized channels spring up, offering better prices but exposing you to catastrophic penalties. I know of a mid-sized AI startup that chose the cheaper, sketchier distributor to save 15% on a batch of H100s. Six months later, BIS came knocking with a penalty that nearly bankrupted them. The saved cost wasn't worth the existential risk.
Real-World Strategies for Compliance and Continuity
Reacting to the list isn't enough. You need a proactive strategy.
1. Build a Three-Layer Screening Process
Don't rely on a single tool.
Layer 1 (Automated): Use a sanctioned party screening software for an initial pass.
Layer 2 (Manual): For any sale to the "Watch List" countries or large orders, do a deep dive. Check the corporate ownership structure. A purchase by "WXYZ Technologies LLC" in Dubai might be fine, but if its ultimate parent is a Chinese state-owned enterprise, you have a problem.
Layer 3 (Continuous): Implement contractual clauses that allow you to audit end-use and require the customer to notify you of any resale. Update your screenings quarterlyâthe Entity List changes frequently.
2. Rethink Your Product Stack and Supply Chain
Consider developing or sourcing performance-tiered product lines. Offer a "global" version of your AI accelerator that stays just under the controlled performance thresholds (TPP, I/O bandwidth, etc.) for markets like the Middle East. Keep the top-tier version only for fully vetted customers in unrestricted countries.
Diversify your chip suppliers. This is expensive and complex, but relying solely on Nvidia or AMD leaves you vulnerable. Explore partnerships with chip designers in South Korea (Samsung) or Taiwan (MediaTek), though be aware of the "US technology" content rules that can trigger controls even on foreign-designed chips.
3. Engage Early with BIS
If you have a major deal in a gray area (e.g., selling data center chips to a university in the UAE for medical research), consider applying for an advisory opinion or a license before signing the contract. It's slow, but it provides legal certainty. The worst thing you can do is assume it's okay and get caught later.