Guide to Foreign Direct Investments - A Nordic overview

nyhed
13 nov 2023
Category
Faglig nyhed

In this article, we will shed some comparative light on recent developments in the Nordic foreign direct investment ("FDI") legislation, including highlighting key differences and important takeaways for FDI screening from a Nordic perspective. Particular attention will be attributed to the recent amendments to national provisions for Denmark and Norway, which entered into force in July 2023, and the new Swedish legislation which will enter into force on 1 December 2023.

Following the implementation of the FDI Screening Regulation on 11 October 2020, EU Member States have introduced a more unform FDI screening mechanism. This includes several of the Nordic countries which already had some form of FDI screening mechanism(s) in place.[1] Although the EU FDI Screening Regulation does not require Member States to have an FDI screening mechanism in place, it introduces minimum requirements for countries that have an FDI screening mechanism in place or are willing to adopt one, as well as a mechanism for the exchange of information between the Member States and the European Commission.

The purpose of FDI screening is generally, among other things, to protect the national security and public order interests of the country concerned and to prevent, detect and counter activities which present a threat to national security.

Denmark

Since 1 July 2021, Denmark has applied a fairly comprehensive FDI regime (only affecting transactions completed after 1 September 2021). The Danish Act no. 842 of 10 May 2021 on the screening of certain foreign direct investments etc. in Denmark (the “Investment Screening Act”) and three associated executive orders provide the regulatory framework for screening and authorisation of foreign direct investments in Denmark (together the “FDI Rules”). The Danish FDI Rules entail two screening mechanisms:

  1. A mandatory authorisation scheme for transactions with Danish companies or entities active in certain particularly sensitive sectors.
  2. A voluntary notification system for transactions with Danish companies or entities active within other sectors.


The mandatory authorisation scheme comprises a wide range of transactions between foreign investors and Danish companies and entities, including both investments in and agreements with Danish companies and entities operating in a particularly sensitive sector. The particularly sensitive sectors include: 

  • National defence.
  • IT security functions.
  • Production of dual-use items.
  • Other critical technologies.
  • Critical infrastructure.

Critical infrastructure includes companies performing activities which are necessary to maintain or restore one or more of 39 socially important functions. Examples of socially important functions include electricity generation, postal and courier services, banking and insurance. The critical infrastructure sector comprises companies that perform a socially important function, as well as their critical suppliers.

The mandatory authorisation scheme applies to direct and indirect investments where a foreign investor, e.g. a non-Danish company or a Danish company with non-Danish ownership, acquires 10% or more of the shares, voting rights or similar control by other means in a Danish company or entity operating in a particularly sensitive sector. Similar control by other means may be acquired through the acquisition of assets, the right to appoint members of the board of directors or the power to make significant decisions on management, operational, financial and development matters in accordance with an agreement, or through long-term and irrevocable loans, among other things. The mandatory authorisation scheme also applies to certain increases in the existing shareholdings held by foreign investors who have already been authorized by the Danish Business Authority (“DBA”) or who have acquired their shareholding in the Danish company prior to 1 September 2021. The establishment of a new Danish company or an investment in the establishment of a Danish company may also be subject to the mandatory authorisation scheme.

The mandatory authorisation also applies to special financial agreements entered into with Danish companies and entities. This includes joint venture-, supply-, operating-, and service agreements that provide a foreign investor with control of or significant influence over the Danish company or entity or its business-critical areas, such as development activities. In the context of special financial agreements, only investors domiciled in a non-EU/-EFTA country and Danish and EU/EFTA parties with direct or indirect owners who are domiciled in a non-EU/EFTA country qualify as foreign investors.

The amendment to the Investment Screening Act came into effect on July 1, 2023, after which the Danish government also decided to make changes to the implementation provisions of the law.

The amended FDI rules introduce an extended screening mechanism for agreements related to the energy island in the North Sea.[2] Special rules apply to the contract-winning party and potentially to all parties intending to submit a bid to the Danish state’s tenders for construction, operation, and co-ownership of the energy island in the North Sea. As a result, such parties may be subject to the mandatory authorisation scheme regardless of whether they qualify as foreign parties to a special financial agreement; hence, Danish parties and EU/EFTA parties will have to obtain authorisation to enter into such agreements.  

In addition, the new FDI rules entail a more efficient application process, which will result in fewer administrative burdens for applicants and a shorter deadline for the DBA’s decision in more uncomplicated cases.

Finland

The Act on the Monitoring of Foreign Corporate Acquisitions (172/2012, as amended) provides the rules for FDI screening in Finland. The most recent amendments to the Act were made in 2020 following the entry into force of the EU Regulation mentioned above. Generally, a positive attitude towards foreign investment is the guiding principle of the Act. The authorities can exercise control over transfer of influence to foreigners or foreign organisations or foundations in Finnish companies and businesses considered essential for security of supply and national security and, if necessary, restrict foreign ownership therein. Please note that acquisition of real estate in Finland by foreign buyers outside the EU and the EEA are subject to an additional separate permission procedure.

The screening is conducted by the Ministry of Economic Affairs and Employment (the “MEAE”). The MEAE must approve an acquisition unless it may threaten a key national interest. In this case, the MEAE must refer the matter for consideration to the government plenary session. The key national interests that are taken into consideration in the FDI screening are mainly the following:

  1. securing military national defence;
  2. the safeguarding of functions vital to society (including the safeguarding critical infrastructure and security of supply); and
  3. safeguarding national security and public order.


The MEAE may, as part of its approval, impose conditions that are necessary to safeguard a key national interest. The conditions must be accepted by the parties to the acquisition. The Act does not include list of possible conditions but according to the preparatory works the conditions may, for example, relate to retaining a registered office, production, services or R&D in Finland, the divestment and sale certain activities of the target company to a third party, or the exclusion of certain activities from the transaction.

The FDI screening does not eliminate or replace other potential regulatory procedures. For example, the acquisition may require a parallel merger control notification and approval by competition authorities such as the Finnish Competition and Consumer Authority.

According to the statistics publication of the MEAE, 35 new applications or notifications were filed at the MEAE during 2022 (in one case, the applicant withdrew the application from the process). According to the statistics publication, a total of 211 foreign company acquisitions were carried out in Finland during 2022 so 16.6% of foreign corporate acquisitions were submitted to the MEAE for assessment (incl. cases declared inadmissible). 11.9% of foreign corporate acquisitions were included in the full process under the Act (excl. cases declared inadmissible). All applications under the Act passed the confirmation process and the average processing time was 59 days in 2022.

Norway

The Norwegian Security Act from 2008 (LOV-2008-06-01-24) has an FDI-regime in chapter 10 which encompasses all sectors and applies to both EU and non-EU investors who directly or indirectly acquire ownership or control of (currently) at least one third (qualified part) of the share capital, equity or voting rights. It may be applied, in whole or in part, to undertakings that (i) handle classified information, (ii) have control of information, information systems, assets or infrastructure that are vital to essential national functions, or (iii) carry out activities that are vital to essential national functions. Typically, this may apply to undertakings that play a particularly important role in maintaining key societal functions and interests, such as infrastructure for key utilities such as water and electricity, electronic communications, defence, health, etc. As a starting point, The Security Act only applies to investments in target companies that have been brought within the scope of the Act by means of an individual decision addressed to the company.

Nonetheless the Act contains a safety valve which may be used irrespective of whether a company has been brought within the scope of the Act. If an acquisition of an undertaking covered by the Act poses a not insignificant risk to national security interests, the Norwegian authorities may intervene and stop the relevant transaction. The purpose of the right to stop acquisitions is to enable the authorities to control the ownership of strategically important businesses.

A key element in ensuring this is ownership control enshrined in the Security Act, which is designed to prevent undesirable parties from gaining insight, influence and/or control over assets and functions that are of importance to national security. Ownership control pursuant to the Security Act entails that there is an obligation to notify the acquisition of a qualified ownership interest in undertakings subject to the Act.

On 31 March 2023, the Norwegian Government proposed to amend Chapter 10 of the Norwegian Security Act in order to ensure increased scrutiny of acquisitions of undertakings relevant to national security interests (see Preparatory Works Prop. 95 L (2022-2023)).

The main amendments which are expected to come into force late 2023 or early 2024 are:

  1. providing the ministries with greater opportunities to make the Security Act, including the provisions on ownership control in Chapter 10 of the Security Act, applicable to more undertakings than at present;
  2. to lower the threshold of when acquisitions must be notified to the authorities in cases where the acquirer directly or indirectly collectively acquires 10% of the share capital, shareholding or voting rights in the undertaking (previously one-third), with subsequent thresholds and notification requirements for late acquisitions at one-third, 50%, two-thirds, and 90%;
  3. that both the seller and the undertaking, in addition to the acquirer, are obliged to file a notification to the relevant ministry;
  4. a prohibition on the exchange of information that could be used for security-threatening activities;
  5. a prohibition on carrying out and completing the acquisition before the authorities have processed the notification (introducing a standstill obligation); and
  6. giving the authority with the right to impose fines for breach of the notification obligation, and the right to impose penalties for breach of a prohibition or order in a decision.


The full Norwegian text of the amendments is available here.

Sweden

Since 1 January 2021, there have been provisions in the Swedish Protective Security Act (Sw: säkerhetsskyddslagen (2018:585)) with a mandatory screening procedure for the transfer of security-sensitive activities. There are also sector-specific provisions in the Swedish Electricity Act (1997:857) that require operators to have a special permission (a concession) to construct or operate high-voltage electricity lines. If the transfer of such a permission involves a foreign connection, the decision to grant the permission is made by the government.

The Swedish Protective Security Act contains a mandatory screening procedure for the transfer of security-sensitive activities. The provisions are not sector-specific; their applicability depends on the operations of the transferred business. Under the Swedish Protective Security Act, operators planning to transfer all, or any part of their security-sensitive activities must conduct and document (i) a security assessment and (ii) a suitability assessment.

On 13 September 2023, the Swedish Government voted in favour of a new FDI Act (Sw: lag (2023:560) om granskning av utländska direktinvesteringar) to review foreign direct investments. The FDI Act introduces a mechanism for screening foreign direct investments that may pose a risk to Sweden’s security. The screening authority is the Inspectorate of Strategic Products (Sw: Inspektionen för strategiska produkter). The legislation enters into force on 1 December 2023 and will be applicable to transactions concluded on or after that date.

The FDI Act covers direct and indirect investments leading to the acquisition of voting rights of, or exceeding, 10%, 20%, 30%, 50%, 65% or 90% or more in eligible companies.

The FDI Act covers the following:

  1. essential services, e.g. activities, services or infrastructure that maintains or ensures societal functions necessary for the basic needs, values or security of society;
  2. security-sensitive activities as defined in the Swedish Protective Security Act;
  3. activities related to critical raw materials, e.g. investments in companies that prospect for, extract, enrich, or sell critical raw materials, metals or minerals that are strategically important to Sweden;
  4. processing large amounts of sensitive personal data or location data;
  5. manufacturing, developing, researching or supplying military equipment or providing technical support for military equipment;
  6. manufacturing, developing, researching into or supply of, or technical assistance for, dual-use products; and
  7. emerging technologies and other strategic protected technologies.


The Swedish FDI Act is available here.

[1] e.g. in Finland FDI screening mechanism(s) has been in force for decades. Current Act is from 2012 and it repealed the 1992 act which in turn repealed three acts (two from 1939 and one from 1973), Norway introduced a new act in 2018 which has been amended in 2023 with new provisions constituted 20 June 2023. It is to be decided when chapter 10 enters into force. There have been recent amendments to both the Danish and Swedish FDI regime which has/will enter(ed) into force during 2023.

[2] Which is an artificial island consisting of off shore wind park amongst other see more information here: Energy Island in the North Sea | Energistyrelsen (ens.dk)

Comparative Nordic overview

FDI provisions

Denmark

Finland

Norway

Sweden

Legal framework in force
The Danish Act No. 842 of 10 May 2021 on screening of certain foreign direct investments etc. in Denmark (the “Investment Screening Act”) as amended by bill no. 127 adopted on 2 June 2023. Three associated executive orders: The executive order no. 1454 of 24 June 2021 on procedures (under review); the executive order no. 1455 of 24 June 2021 on confidentiality (under review) and the executive order no. 1491 of 25 June 2021 on applications.
Finnish Act on the Monitoring of Foreign Corporate Acquisitions (172/2012, as amended). The Act on Transfers of Real Estate Requiring Special Permission (470/2019, as amended) will not be addressed below.
The Norwegian Security Act (LOV-2018-06-01-24), and parts of the amendments e.i.f. 1 July 2023. Chapter 10 which introduces new thresholds for notification of corporate acquisition is pending e.i.f. but is expected Q3 2023 or Q1 2024.
Swedish Protective Security Act (Sw: säkerhets-skyddslagen (2018:585)) and the FDI Act (Sw: lag (2023:560) om granskning av utländska direktinvesteringar). The FDI Act enters into force on 1 December 2023.
Screening mechanism
The FDI rules entail two screening mechanisms: (1) a mandatory authorisation scheme for investments in particularly sensitive sectors and activities, and (2) a voluntary notification scheme for other sectors.
Mandatory application process for acquisitions in the defence and dual-use products sector (defence industry enterprise) and in the security sector. Voluntary notification for other Finnish companies and businesses monitored under the scope of the Act. As regards a defence industry enterprise, monitoring covers all foreign owners. In other sectors, monitoring only applies to foreign owners residing or domiciled outside the EU or EEA.
Applies to EU-based investors and non-EU investors alike. As a starting point, the Security Act, only applies to investments in target companies that have been brought within the scope of the Act by means of an individual decision addressed to the company, cf. Section 1-3 of the Act. Act has a safety valve which may be used irrespective of whether a company has an individual decision addressed to the company by a ministry, where the ministry can act regardless of any such decision. The government has proposed that both the acquirer and the owner should be responsible to notify a transaction subject to FDI screening.
Mandatory screening procedure for transfers of security sensitive-activities. Operators planning to transfer all, or any part of their security-sensitive activities, must conduct and document (i) a security assessment, and (ii) a suitability assessment. In the FDI Act, the screening authority, Inspectorate of Strategic Products, will assess the risk based on the target's activities and the investor's characteristics in relation to national security and public order.
Thresholds
The mandatory authorisation scheme applies to a foreign investor who intends to acquire at least 10% of the shares, voting rights or similar control by other means in a Danish company operating within a particularly sensitive sector. An increase in shareholding or voting rights may be comprised by the mandatory authorisation scheme, if the shareholding will amount to or exceed 20%, 1/3, 50%, 2/3, or 100%. The establishment of a new company may be comprised by the mandatory authorisation scheme if the total capital injection by a foreign investor into the Danish company amounts to DKK 75 million or more within the first three financial years from its establishment or if the company is a subsidiary of a foreign investor. The mandatory authorisation scheme also applies to special financial agreements whereby the foreign investor obtains control or significant influence of the Danish company or entity. Please note that regarding special financial agreements, only investors domiciled or controlled outside EU/EEA are considered foreign. From 1 July 2023, special rules for agreements concerning the energy island in the North Sea applies.
Under the Act, corporate acquisition refers to activities in which a foreign owner gains control of: (1) at least 1/10; (2) at least 1/3; or (3) at least 1/2 of the aggregate number of votes conferred by all shares in the company, or a holding that otherwise corresponds to decision-making authority in a limited liability company or other monitored
According to Section 10-1, approval from the government is necessary to acquire a qualified part of a company, which is subject to the Security Act. A qualified part of a company means obtaining or have the right to obtain one-third of the share capital or the interests or of the voting rights. The threshold for reporting obligations are lowered to a lowest threshold of 10% with subsequent cut-off points and notification duty where a company later acquires one-third, 50%, two-thirds, and 90%. It is yet to be decided when these amendments will enter into force.
There are no thresholds in the Swedish Protective Security Act. The FDI Act covers direct and indirect investments leading to the acquisition of voting rights of or exceeding 10%, 20%, 30%, 50%, 65% or 90% in eligible companies. There are no turnover or deal value thresholds.
Sectors
The mandatory authorisation scheme only applies if the Danish target company or entity concerned is active within one of the particularly sensitive sectors. The sectors and activities generally include activities within the national defence, IT security functions, processing of classified information, production of dual-use products, other critical technology and critical infrastructure. Critical infrastructure comprises a long list of functions which are considered critical. In addition, the mandatory authorisation scheme specifically applies to contract-winning parties or potentially contract-winning parties of the Danish state’s tender contract regarding the construction, operation, and co-ownership of the energy island in the North Sea.
The provisions in the Act are not sector specific. The following are considered monitored entities in the Act: (1) Defence industry enterprises (produces or supplies defence material or other products or services important for military national defence; or whose export of products produced in Finland that are considered as dual-use items is subject to authorisation, or whose export of technology used in its operations in Finland is subject to authorisation) (2) An enterprise that produces or supplies critical products or services related to the statutory duties of Finnish authorities essential to the security of society. (3) An organization or business undertakings that, when assessed as a whole, is considered critical in terms of securing functions vital to society on the basis of their field, business or commitment.
The current Security Act encompasses all sectors. Furthermore, there are national restrictions that apply in addition to and in parallel to the Security Act, i.a. in the following sectors: (1) waterfalls, rights for power supply and mines; (2) land, real estate and leases in the long term; (3) cultivable land and forests; (4) Norwegian financial institutions; (5) exploration and petroleum operations that are licensed by the government. Fisheries and aquaculture, i.e., an area in principle outside the scope of the EEA Agreement – restrictions on ownership apply; the right to acquire a fishing vessel or shares in a company which owns vessels is only granted to Norwegian citizens or entities defined as a Norwegian citizen.
The provisions in the Swedish Protective Security Act are not sector-specific, their applicability depend on the operations of the transferred business. The FDI Act covers all sectors engaged in essential services, security-sensitive activities, raw materials or other metals that are critical to Sweden, processing of large amount of sensitive personal or location data, military equipment, dual-use products, and emerging technologies and other strategic protected technologies. All investors, including those from Sweden and other EU member states are subject to the screening mechanism.
Pre-authorisation and/or standstill period
Transactions covered by the scope of the mandatory authorisation scheme must be approved by the DBA prior to completion. Transactions which are notified under the voluntary notification scheme may be submitted before or after completion. For transactions covered by the voluntary notification scheme for which a voluntary filing is not made, the DBA has the mandate to call-in the transaction for review for up to five years following its completion.
Acquisitions of defense industry enterprises and in the security sector always require confirmation by the authority prior to completion. As for acquisitions of other Finnish companies and businesses monitored under the scope of the Act (critical for securing vital functions of society) the notification may be submitted before or after completion (but there is no obligation). Usually, a notification is made after signing, before completion in order to provide certainty for the transaction. The authority may commence the review process at its own initiative (even if no filing has been made) and a confirmation may be denied, or conditions may be imposed on the transaction. The authority may decide that an application or notification is inadmissible if it considers that the acquisition does not fall within the scope of the Act.
Currently no obligation to notify prior to completion or standstill obligation. However, when the amendments e.i.f. an automatic implementation ban (stand-still) for acquisitions that are registered, will be imposed until the acquisition has been examined and approved.
Approval is required prior to completion under the Swedish Protective Security Act. Operators planning to transfer all or any part of their security-sensitive activities must firstly conduct and document, (i) a security assessment, (ii) a suitability assessment, and thereafter (iii) consult with the authority. The two assessments and the consultation must be completed before the acquisition can be completed. According to the FDI Act, approval prior to completion is necessary. Transactions cannot be completed without approval from the screening authority.
Sanctions?
There are no fines for non-compliance. The sanctions for failure to comply with the mandatory approval requirement include that the DBA may order the non-compliance to stop, meaning that the investor must submit an FDI application within a specified deadline. The DBA may also order the termination and winding up of the transaction. If an order to terminate and wind up a transaction is not complied with the DBA may publish information about the non-compliance and inform other EU Member States. The DBA may also revoke the foreign investor's voting rights in the Danish company. If a transaction is covered by the voluntary notification scheme and if the investor opts for not filing a notification, the DBA can launch a detailed investigation of whether the transaction could pose a threat to national security or public order for up to five years from its completion. If the DBA finds that the transaction is in violation of the FDI rules, it may order that the transaction is stopped by a certain date. Failure to comply with such an order means the DBA may revoke the foreign investor's voting rights. The Minister for Industry, Business and Financial Affairs may initiate expropriation of private property when necessary to implement precautions according to the Investment Screening Act.
If a foreign purchaser/owner is denied confirmation of a corporate acquisition concerning a limited liability company or in a cooperative, the foreign owner shall, within the time specified by the decision, dispose of shares to less than 1/10, or some other share approved in a previous confirmation decision to a degree that diminishes the number of votes to which the shares entitle. Upon denial of confirmation of a corporate acquisition in an enterprise other than a limited liability company, or of a business acquisition, agreements on the acquisition of influence or of a business undertaking will be dissolved at the time specified in the decision. Anyone who intentionally or through gross negligence fails to apply for confirmation for acquisition of a defence industry enterprise or in the security sector or neglects the obligation to disclose information to the authority or submits false information to an authority or withholds information deemed significant in terms of considering the matter shall be, as a rule, subject to a fine for a corporate acquisition violation.
Currently no sanctions for non-compliance. However criminal liability for non-compliance with the obligation to report and decisions pursuant to Sections 2-5 and 10-3 of the Security Act will e.i.f., likely during 2023.
The supervisory authority can impose administrative sanctions under the Swedish Protective Security Act for non-compliance. The sanctions ranges from a minimum of SEK 25 000 to a maximum of SEK 50 million. For a governmental body, the administrative sanction is a maximum of SEK 10 000. The screening authority can impose administrative sanctions for non-compliance. The administrative sanctions under the FDI Act is a minimum of SEK 25 000 and a maximum of SEK 100 million.

If you have any questions related to ownership control/FDI please contact our Nordic team.