Data has transformed the way businesses and institutions operate. Globally laws and regulations are reacting to technological changes to encourage responsible data practices. Information privacy, data protection and artificial intelligence concerns are fueling a fast growing field ideally suited to law-trained professionals. That’s why Maine Law offers a series of summer courses on critical and current information privacy issues designed to introduce students to this dynamic domain.

Existing attorneys can leverage the session to earn CLE credits or venture into a growing and dynamic new practice area; current J.D. candidates can develop a valuable specialty while still in school. Whether you’re deeply familiar with information privacy law or new to the subject, this summer session could change your career.

2026 Information Privacy Summer Institute

The annual Information Privacy Summer Institute was held from May 26 – July 21, 2026 on the Maine Law Campus, 300 Fore Street. A special one-day Privacy in Practice Conference will be held on June 5, 2026 as part of the Summer Institute. Registration included with Consumer Protection and Privacy course was limited to first 90 participants.

Registration was open to Professionals and J.D. students.

Visiting Law Students from Other Law Schools:

Students currently enrolled at other ABA approved law schools who have completed their first year and are in good standing may request to enroll by completing a Non-Degree Student Registration Form. We also require a letter from the Dean of their law school certifying that the applicant is in good standing and has completed or is in the process of completing their first year of law study.

Non-degree/Special Students:

Applicants not currently enrolled in an ABA approved law school program may enroll in Summer Session classes with the permission of the Associate Dean and course instructor. Special students may request to enroll by completing a Non-Degree Student Registration Form. Special students will be admitted based on available space. Credits obtained by a special student in the Summer Session may not be applied toward a J.D. degree at this law school if the student becomes a candidate for that degree in the future.

Summer 2026 Course Offerings

May 26, 2026 – May 29, 2026 | 9:00 am – 4:30 pm

In-Person | 2 Credit Hours

This course will place privacy within a social and legal context and will investigate the complex grid of legal structures and institutions that govern privacy at state, national, and international levels. Students will be taught how to critically analyze privacy problems and make observations about sources of law and their interpretation, with an emphasis on the global nature of data.

Instructor Bio:

Joe Jones serves as the Director of Research and Insights for the International Association of Privacy Professionals (IAPP). Leading the Research & Insights team, he provides strategic direction and contributes to the development of practical content for privacy professionals on privacy law and policy, data protection management, and privacy technology and engineering.

This work includes engaging with privacy leaders from industry, government, academia and civil society as he keeps IAPP members informed on data protection developments around the world. Previously, Joe served as the Deputy Director for International Data Transfers with the UK Government where he led the team responsible for UK Government policies relating to free and secure flow of data internationally. This included work on data adequacy partnerships, alternative transfer mechanisms, and multilateral initiatives that promote the trusted exchange of data across borders. Other prior roles include serving as the UK Government’s Deputy Head of Digital Trade policy and working in the private sector as a lawyer on international data issues with Covington & Burling LLP. Joe received his B.A. in Jurisprudence (Law) with honors from the University of Oxford and his Legal Practitioner Course with honors from the University of Law.

June 1, 2026 – June 5, 2026 | 9:00 am – 4:30 pm

In-person | 2 Credit Hours

This seminar will examine the role of the international human right to privacy, along with the principles of territorial sovereignty and non-intervention in international law, as potential frameworks for constraining and regulating cyber espionage activities. Students will delve into topics such as the right to privacy in the digital age; signals intelligence and mass surveillance; cyber espionage and sovereign equality; military AI, facial recognition, and biometrics collection
in war and occupation; and spyware regulation and international law.

Instructor Bio:

Dr. Asaf Lubin is an Associate Professor at Indiana University Maurer School of Law. Dr. Lubin’s research centers around the intersection of law, technology, and international security. His scholarship explores the complex legal challenges and intricate dynamics produced by technological advancements in the areas of national security and international law.

In his analysis, he has examined the regulation of cybersecurity harms, liabilities, and insurance, as well as policy and institutional design around espionage and intelligence collection, artificial intelligence, privacy and data protection, and internet governance. His work draws on his experiences as a former intelligence analyst with the Israeli Defense Forces Intelligence Branch (2004-2009) as well as his practical training and expertise in national security law and foreign policy. Dr. Lubin’s work additionally reflects his time spent serving as a Robert L. Bernstein International Human Rights Fellow with Privacy International (2016-2017), a London-based nonprofit organization devoted to advancing the right to privacy in the digital age and curtailing unfettered forms of governmental and corporate surveillance.

June 5, 2026 – July 21, 2026

In-person & Remote | 1 Credit Hour

June 5, 2026 Privacy in Practice Conference

In-person | 9:00 am – 4:30 pm

June 9, June 16, June 23, & June 30, 2026

Remote Sessions | Tuesdays 6:00 – 7:00 pm

July 7, July 14, & July 21, 2026

Remote Sessions | Tuesdays 6:00 – 6:50 pm

The Law of Sensitive Data will examine how privacy laws define, regulate, and enforce
obligations related to sensitive data, such as health, biometric, financial, children’s, precise geolocation, and other categories of data deemed to be higher risk. The course will include an analysis of existing approaches to regulating sensitive data, policy discussion of various regulatory frameworks, and practical skills-building exercises in advising clients who collect, store, use, disclose, and dispose of sensitive data. Approximately half of the classroom time for this course will take place during Maine Law’s annual Privacy in Practice Conference (the topic of which is sensitive data). The other half will be delivered remotely during the summer.

Instructor Bio:

Heather is a partner at Morgan Lewis in Boston and is widely known as a leading practitioner in cybersecurity, privacy, incident response, and information management. For nearly 25 years, Heather has advised on privacy and cybersecurity laws worldwide, developing a broad understanding of how multinational businesses have adapted their practices to evolving laws.

She provides strategic advice to clients, including some of the world’s most recognizable brands, seeking to leverage emerging technologies, including artificial intelligence and advertising technology. She has previously taught at Maine Law’s Summer Privacy Institute.

June 10, 2025 – June 25, 2026

In-person & Remote | 1 Credit Hour

June 10, June 11, June 17, and June 18
Remote sessions | 4:30 – 6:30 pm
In-person sessions (4:30 – 7 pm): 6/24 and 6/25

This online synchronous course will expose students to health privacy law through contemporary case studies, with structured discussions on (1) the foundational principles of bioethics, (2) the seminal federal laws that protect health information (e.g., HIPAA, HITECH Act, GINA), (3) privacy interests in genetic information and biological materials, (4) strategies to protect privacy in reproductive healthcare and gender-affirming care, and (5) risk assessments of emerging and future issues in health privacy, with a particular focus on privacy risks associated with the use of machine learning models in healthcare.

Instructor Bio:

Kevin T. Frazier is the AI Innovation and Law Fellow at the University of Texas School of Law. Frazier graduated summa cum laude from the Roberts D. Clark Honors College at the University of Oregon, earned his JD and Order of the Coif recognition at the UC Berkeley School of Law, and completed his Master’s of Public Administration at the Harvard Kennedy School. Following a clerkship with Chief Justice Mike McGrath of the Montana Supreme Court, Professor Frazier taught constitutional law, administrative law, and civil procedure at St. Thomas University College of Law and performed research with the Institute for Law and AI.

Prior to pursuing his graduate education, Frazier worked for Oregon Governor Kate Brown, lobbied the Oregon State Legislature for a small nonprofit, and spent time at several tech companies, such as Google, Verily, and Cloudflare.