Scientific advances, technological development, and changes in risk consciousness have led to stronger demands on society to manage and control various kinds of risks. Risks should be assessed, prevented, controlled, and communicated in order to prevent negative impacts. Risks related to the environment and health are probably some of the most research-dependent examples. It is primarily scientific experts that provide knowledge to authorities, organizations, and citizens about environmental and health risks and thus exert considerable influence on the understanding and management of risk. At the same time, there are actors in society—especially citizen and interest organizations—that question whether risk regulation is reliable and relevant. There are also demands that citizens should have more transparency and control over risk regulation. The current situation is characterized thus by a paradox: Issues relating to environment and health are seen as increasingly expert dependent while citizens simultaneously demand increased influence over them. This development is especially noticeable in the European Union, with its strong emphasis on the rights of citizen and consumers to have access to information about risk and also opportunities to influence their regulation. In response to this situation, risk governance has been put forward. It refers to a body of ideas for how to more responsibly and efficiently deal with complex risks issues, where there are different interests and standpoints about how to regulate them. Fundamental ideas of risk governance are openness, transparency, participation, inclusion, deliberation, and reflexivity; that experts involved should be open to questioning the situation; should not conceal issues of uncertainty and pluralism (that there exist different legitimate understandings, evaluations, and recommendations); and should be receptive to the input and participation of other stakeholders. This means that risk regulation should no longer be organized into three discrete activities: risk assessment, risk management, and risk communication (aiming at a one-way transfer of knowledge from the regulators to the public).