Data has transformed the way businesses and institutions operate. Globally laws and regulations are reacting to technological changes to encourage responsible data practices. Information privacy, data protection and artificial intelligence concerns are fueling a fast growing field ideally suited to law-trained professionals. That’s why Maine Law offers a series of summer courses on critical and current information privacy issues designed to introduce students to this dynamic domain.

Existing attorneys can leverage the session to earn CLE credits or venture into a growing and dynamic new practice area; current J.D. candidates can develop a valuable specialty while still in school. Whether you’re deeply familiar with information privacy law or new to the subject, this summer session could change your career.

2025 Information Privacy Summer Institute

The annual Information Privacy Summer Institute will be held from May 27 – July 31, 2025 on the Maine Law Campus, 300 Fore Street. A special one-day Privacy in Practice Conference will be held on June 6, 2025 as part of the Summer Institute. Registration included with Consumer Protection and Privacy course is limited to first 90 participants.

Registration is open to Professionals and J.D. students.

Visiting Law Students from Other Law Schools:

Students currently enrolled at other ABA approved law schools who have completed their first year and are in good standing may request to enroll by completing a Non-Degree Student Registration Form. We also require a letter from the Dean of their law school certifying that the applicant is in good standing and has completed or is in the process of completing their first year of law study.

Non-degree/Special Students:

Applicants not currently enrolled in an ABA approved law school program may enroll in Summer Session classes with the permission of the Associate Dean and course instructor. Special students may request to enroll by completing a Non-Degree Student Registration Form. Special students will be admitted based on available space. Credits obtained by a special student in the Summer Session may not be applied toward a J.D. degree at this law school if the student becomes a candidate for that degree in the future.

Summer 2025 Course Offerings

May 27, 2025 – May 30, 2025 | 9:00 am – 4:30 pm

2 Credit Hours – CLEs

This course combines an introduction to systems engineering with advanced topics in data law. It uses case studies in the design of the internet and modern AI to achieve two pedagogical goals: to teach students to “think like an engineer,” and (2) to teach students how to apply systems thinking to legal practice.

Instructor Bio:

David Stein is an assistant professor of law and computer science with Northeastern University, at both the School of Law and the Khoury College of Computer Sciences. His scholarship involves the interplay between emerging technologies and legal institutions. Previously, David served as the Frank J Guarini Scholar of Global Law and Technology and the NYU School of Law, where he was also a fellow at the Information Law Institute. Prior to his academic career, David spent a decade in the tech industry, where he worked as a software engineer (Dropbox), a director of product engineering (Braze), and a cybersecurity lead (Google’s smart city initiative).

He holds a J.D. from the NYU School of Law and a M.Eng. and S.B. from MIT.

June 2, 2025 – June 5, 2025 | 9:00 am – 4:30 pm

2 Credit Hours – CLEs

This course will place privacy within a social and legal context and will investigate the complex grid of legal structures and institutions that govern privacy at state, national, and international levels. Students will be taught how to critically analyze privacy problems and make observations about sources of law and their interpretation, with an emphasis on the global nature of data.

Instructor Bio:

Joe Jones serves as the Director of Research and Insights for the International Association of Privacy Professionals (IAPP). Leading the Research & Insights team, he provides strategic direction and contributes to the development of practical content for privacy professionals on privacy law and policy, data protection management, and privacy technology and engineering.

This work includes engaging with privacy leaders from industry, government, academia and civil society as he keeps IAPP members informed on data protection developments around the world. Previously, Joe served as the Deputy Director for International Data Transfers with the UK Government where he led the team responsible for UK Government policies relating to free and secure flow of data internationally. This included work on data adequacy partnerships, alternative transfer mechanisms, and multilateral initiatives that promote the trusted exchange of data across borders. Other prior roles include serving as the UK Government’s Deputy Head of Digital Trade policy and working in the private sector as a lawyer on international data issues with Covington & Burling LLP. Joe received his B.A. in Jurisprudence (Law) with honors from the University of Oxford and his Legal Practitioner Course with honors from the University of Law.

June 6, 2025 | 8:45 am – 4:45 pm Privacy in Practice Conference
June 10, 2025 – July 22, 2025 | Tuesdays 6:00 – 7:15 pm

1 Credit Hour – CLEs

The conference features speakers from various US state attorneys general offices, the IAPP, and outside counsel with experience managing compliance and enforcement matters in the emerging US state privacy law landscape.

This online synchronous course will further explore the goals and strategies of state privacy regulators from the UDAP statutes to modern comprehensive privacy laws. It will also look at the structure of an investigation from CID to AOD and delve into the “Common Law of Settlements.” Featuring former Vermont AAG and current FTC staff attorney Ryan Kriger.

Instructor Bio:

Ryan Kriger is an attorney with the Federal Trade Commission’s Division of Privacy and Identity Protection. Prior to moving for the FTC, Ryan worked for over a decade as an Assistant Attorney General for the State of Vermont where he handled consumer protection and antitrust issues with a focus on technology and data security. He was the primary negotiator for Vermont’s Data Broker registration law. Ryan also teaches classes on consumer protection, privacy, public policy and advocacy at the University of Vermont.

June 26, 2025 – July 24, 2025 | Thursdays 5:30 – 8:00 pm

1 Credit Hour – CLEs

This online synchronous course will expose students to health privacy law through contemporary case studies, with structured discussions on (1) the foundational principles of bioethics, (2) the seminal federal laws that protect health information (e.g., HIPAA, HITECH Act, GINA), (3) privacy interests in genetic information and biological materials, (4) strategies to protect privacy in reproductive healthcare and gender-affirming care, and (5) risk assessments of emerging and future issues in health privacy, with a particular focus on privacy risks associated with the use of machine learning models in healthcare.

Instructor Bio:

Shweta Kumar is a Clinical Teaching Fellow in the Intellectual Property and Information Policy Clinic at Georgetown University Law Center, where she teaches courses on issues in intellectual property and privacy law. She has a J.D. from the University of Virginia School of Law and a B.S. in Neuroscience from the College of William & Mary. Prior to joining the faculty at Georgetown, Shweta served as an IP litigation associate with Goodwin Proctor’s Washington, DC office, and interned with the US Department of Justice, Civil Division, Intellectual Property Section.