The Regulations on Electromagnetic Compatibility (2017) implement Directive 2014/30/EU of the European Parliament and the Council in Norway. Chapter 4 establishes a self-certification mechanism, which is fully detailed in Annex II of the regulations.

It is reported that the de minimis threshold, that is the minimum value of goods below which customs do not charge duties, is NOK 350 (approx. USD 32), below the 200 USD threshold recommended by the International Chamber of Commerce (ICC). However, there is an exception to this rule, which comes from the VAT on E-Commerce (VOEC) scheme. Under this scheme, online retailers who export more than 50,000 NOK (approx. 4591 USD) worth of low-value goods (less than 3000 NOK, approx. 275 USD) into Norway annually are exempt from paying customs duty and instead must charge VAT at point-of-sale and register with the Norwegian Tax Administration, as if they were a Norwegian retailer. In effect, this creates a de minimis threshold of 3000 NOK for which customs duties are no longer imposed.

Only Norwegian organisations and private individuals over the age of 18 can subscribe to a Norwegian domain name. Organisations must be registered with the Central Coordinating Register for Legal Entities (Enhetsregisteret), and individuals must be registered in the National Population Register with a national identity number. Further, all subscribers must have a Norwegian postal address.

The Act on the Processing of Personal Data (Personal Data Act) implements the General Data Protection Regulation (GDPR) of the European Union in Norway. Art. 27 of the GDPR requires a local representative for data controllers or processors not established in the EU.

Act No. 35 establishes a comprehensive framework for consumer protection, which is applicable to online transactions. Moreover, consumer purchases made via the Internet are regulated by the Act Relating to Consumer Purchases, which implemented Directive 1999/44/EC of the European Parliament and the Council of 25 May 1999 concerning certain aspects of the sale of consumer goods and associated guarantees (this directive was subsequently repealed and replaced by Directive (EU) 2019/771 of the European Parliament and the Council of 20 May 2019 on certain aspects relating to contracts for the sale of goods). Chapters 5 and 6 of the Act Relating to Consumer Purchases, for instance, delineate consumer rights in cases of late delivery and with respect to defective goods. Furthermore, Regulation No. 910/2014 of the European Parliament and the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market (eIDAS) has been fully incorporated into Norwegian law through the Act on Electronic Trust Services (LOV-2018-06-15-44).

Norway has not signed the United Nations (UN) Convention on the Use of Electronic Communications in International Contracts.

Norway has not adopted national legislation based on or influenced by the United Nations Commission on International Trade Law (UNCITRAL) Model Law on Electronic Commerce.

It is reported that Norway imposes an identity requirement for SIM registration. Anyone wanting to purchase a SIM card has to provide their national ID card or a passport in case of foreigners to activate a new prepaid SIM card.

The "Regulations relating to the Export of Defence-Related Products, Dual-Use Items, Technology, and Services" harmonise Norway's export controls with those of the European Union by subscribing to the European Dual-Use Export Control Annex. The Annex identifies a range of dual-use items that face either authorisation requirements or outright bans for exportation outside of the EU.

Since the implementation of Regulation No. 1076 of 15 August 2014, Norway imposes extensive export and import controls on Russia, which have significantly expanded in response to the 2022 invasion of Ukraine. A key element of these measures is the amendment introduced by Regulation No. 1076 of 15 August 2014, as modified in March 2022 (FOR-2022-03-18-410). This regulation prohibits the export, sale, supply, or transfer of various goods and technologies to Russia, including:
- The prohibition on the export, import, and transport of defence-related goods (Art. 15);
- The prohibition on the export of multi-use goods and technologies (Art. 16);
- The prohibition on the export of goods and technologies listed in Annex IX (Art. 16a);
- The prohibition on the export of goods for use in the aeronautical or space industry, as listed in Annex XII (Art. 17c);
- The prohibition on the export of goods and technologies intended for maritime navigation (Art. 17d).

The Act on the Processing of Personal Data (Personal Data Act) implements the General Data Protection Regulation (GDPR) of the European Union in Norway. Under the GDPR, Data Protection Impact Assessments (DPIAs) are mandatory for data processing activities that are likely to result in a high risk to the rights and freedoms of natural persons.

The Act on certain aspects of electronic commerce and other information society services (e-commerce law) implements Directive 2000/31/EC (E-Commerce Directive), establishing a conditional safe harbour for Internet Service Providers (ISPs) in Norway. The limitations on liability in the Directive apply to certain clearly delimited activities carried out by internet intermediaries rather than to categories of service providers or types of information. These are caching, conducting and hosting (Sections 16–18), while Section 19 releases ISPs from monitoring obligations.
In addition, ISPs are responsible for illegal content (including copyright infringement) if they obtain knowledge or awareness that such content is present and do not expeditiously remove or restrict access to the content. As a result, many ISPs have proactively introduced user agreements to allow them to remove any controversial content – including content that is not necessarily illegal – in order to protect themselves from liability. The Ministry of Culture is working on the implementation of Directive 2019/790 on Copyright in the Digital Single Market.

The Act on certain aspects of electronic commerce and other information society services (e-commerce law) implements Directive 2000/31/EC (E-Commerce Directive), establishing a conditional safe harbour for Internet Service Providers (ISPs) in Norway. The limitations on liability in the Directive apply to certain clearly delimited activities carried out by internet intermediaries rather than to categories of service providers or types of information. These are caching, conducting and hosting (Sections 16–18), while Section 19 releases ISPs from monitoring obligations.
In addition, ISPs are responsible for illegal content (including copyright infringement) if they obtain knowledge or awareness that such content is present and do not expeditiously remove or restrict access to the content. As a result, many ISPs have proactively introduced user agreements to allow them to remove any controversial content – including content that is not necessarily illegal – in order to protect themselves from liability. Finally, Norway is obliged to implement Directive 2019/790 on Copyright in the Digital Single Market. However, it has not yet done so as of May 2022.

The Trade Secrets Act (2020) provides a framework for effective protection of trade secrets.

It is reported that passive sharing of telecom infrastructure is mandated and practised in both the mobile and fixed sectors. Moreover, Directive 2014/61/EU (Art. 3.2) has been incorporated into the European Economic Area (EEA) agreement, meaning it is technically required to be implemented in Norway.