diff --git a/.policy.yml b/.policy.yml
new file mode 100644
index 0000000..158a575
--- /dev/null
+++ b/.policy.yml
@@ -0,0 +1,49 @@
+policy:
+  approval:
+  - or:
+    - Dependabot update
+    - Code change
+approval_rules:
+- name: Dependabot update
+  if:
+    only_has_contributors_in:
+      users:
+      - dependabot[bot]
+    only_changed_files:
+      paths:
+      - ^.github/workflows/.*$
+    has_valid_signatures_by_keys:
+      key_ids:
+      - B5690EEEBB952194
+  requires:
+    count: 1
+    teams:
+    - coopnorge/engineering
+    - coopnorge/github-review-bots
+  options:
+    invalidate_on_push: true
+    methods:
+      github_review: true
+      comments: []
+    request_review:
+      enabled: true
+      mode: random-users
+      count: 2
+- name: Code change
+  if:
+    changed_files:
+      paths:
+      - .*
+  requires:
+    count: 1
+    teams:
+    - coopnorge/engineering
+  options:
+    invalidate_on_push: true
+    methods:
+      github_review: true
+      comments: []
+    request_review:
+      enabled: true
+      mode: random-users
+      count: 2