Practical Nordic compliance

Guides on NIS2, GDPR, the EU AI Act, ISO 27001, and CBAM, written for Nordic and EU SMBs navigating overlapping regulations.

• 25 May 2026

  NIS2 and the Norwegian Digital Security Act: what Norwegian businesses must do in 2026

  The Digital Security Act (Digitalsikkerhetsloven) has been in force in Norway since 1 October 2025. Full NIS2 transposition arrives in 2026 via a separate new act. Here's what Norwegian businesses should be doing now.

• 18 May 2026

  The AI Act is coming to Norway: what to do before it enters into force

  Nkom is the designated coordinating supervisory authority for the AI Act in Norway. KI-loven is expected to enter into force during 2026. Here's how to prepare.

• 11 May 2026

  CBAM in Norway: ready for 1 January 2027

  CBAM enters into force in Norway on 1 January 2027 via EEA. Miljødirektoratet coordinates, Skatteetaten authorises importers, Tolletaten controls at the border. Here's how to prepare.