The AI Act hits Norwegian SMBs in August 2026.

What the law says, briefly

The EU AI Act entered into force on 1 August 2024. The most important parts for most businesses are enforced from August 2026.

• · AI systems are classified into risk categories: prohibited, high-risk, limited risk, minimal risk.
• · High-risk systems (recruitment, credit scoring, health) require a DPIA-like assessment, documentation, human oversight, and logging.
• · Generative AI systems (ChatGPT, Claude, Gemini) need explicit transparency toward users when output can be mistaken for human-made.
• · Breaches carry fines up to EUR 35 million or 7% of global turnover, whichever is higher.

What sets Tenki apart

We aren't a law firm. We're a technical team that has implemented local AI for Norwegian SMBs and read the AI Act text with practical implementation in mind, not academia. The difference in practice:

Our own practice

If we recommend that a customer does it, we have to be able to do it ourselves first. Tenki publishes what Hugin and Munin do, logs interactions for quality assurance with a clear retention policy, and builds AI Act practice into how we develop new AI features.

How we work with you

1. 1. Assessment. We interview key people and build an inventory of every place you use AI. This includes hidden cases like "we paste customer replies into ChatGPT" or "our supplier uses AI behind the scenes."
2. 2. Classification. Each AI system gets a risk classification under the AI Act, linked to specific legal references. We point out which require immediate action and which are safe today.
3. 3. Documentation. We deliver templates and fill in DPIAs, transparency declarations, and a register that matches AI Act requirements. Not generic law, but specific to your systems.
4. 4. Follow-up. A quarterly check-in where we review changes, new tools, and that the documentation still holds. Included in the package for the first year.