Insights
Home / Insights / Norway’s new AI Act – what it will mean for your business

Norway’s new AI Act – what it will mean for your business

The Norwegian Government has proposed a new Artificial Intelligence Act, aligning Norwegian law with the EU AI Act. The goal is to ensure safe, ethical, and responsible use of AI – with obligations not only for technology providers, but for all organisations that use AI, regardless of where the technology was developed.
| Article | Written by Malin Tønseth and Line Schartum-Hansen
getty-images-kFoddA8WiWQ-unsplash

A milestone in Norway’s Digital Strategy

On 30 June 2025, the Ministry of Digitalisation and Public Governance published a draft AI Act out for public consultation. This proposal is part of Norway’s national digital strategy and aims to ensure safe, ethical, and responsible use of AI – with harmonised rules across the EEA.

The Norwegian Communications Authority (Nkom) is proposed as the coordinating AI supervisory body. The consultation deadline is 30 September 2025, with the law scheduled to take effect in summer 2026, alongside the EU.


Purpose: Protect people and build trust

The Act takes a risk-based approach. The higher the risk an AI system poses to health, safety, or fundamental rights, the stricter the requirements.

  • Unacceptable risk: prohibited outright.
  • High risk: subject to extensive requirements.
  • Limited or minimal risk: fewer obligations, but still transparency duties.

The Government emphasises that trust is key to unlocking AI’s potential. Safe and responsible use will enable innovation while safeguarding human rights and privacy.


Applies to everyone – not just AI Providers

A common misconception is that the rules only affect AI developers. he AI Act also applies to Norwegian organisations that deploy AI regardless of where the technology is developed.

Example: Using AI in recruitment will trigger strict transparency, non-discrimination, and human oversight requirements. Many organisations may be using AI without realising it – for instance, embedded in third-party tools.

The law makes it essential to map where and how AI is actually in use.

The Act necessitates mapping where and how AI is used—and clarifying the organisation’s role under the law (e.g., as a provider or deployer). Your role determines which obligations and requirements apply.

A common misconception is that the rules only affect AI developers. The AI Act will also apply to Norwegian businesses that use AI, regardless of where the technology was developed.

More than just a law – a strategic choice

As part of its preparations, the Government recently published a national guide for responsible use of AI assistants. It offers practical advice on governance, accountability, and ethics, and should be used alongside the AI Act to ensure full compliance.

Early adoption of compliance measures not only reduces legal risk – it can also be a competitive edge. Businesses that demonstrate safe, lawful, and ethical AI use build stronger trust with customers, employees, and partners.


How Norwegian businesses should prepare

  • Map all AI usage – including indirect use via third-party systems.
  • Determine your role for each AI system (e.g., provider, deployer), as this defines which obligations apply.
  • Assess risks for each AI system based on its use and purpose.
  • Update policies and procedures for accountability, transparency, and oversight.
  • Stay informed about regulatory guidance and build internal expertise.

When the AI Act enters into force, it will set a new benchmark for digital responsibility. Organisations that act now will be best positioned to meet the requirements – and to use AI as a safe, strategic tool.