Peter Guffin is a member and former chair of Pierce Atwood's Intellectual Property and Technology Group, and heads the firm's Privacy & Data Security practice. He combines extensive experience in the areas of intellectual property, information technology, privacy and data protection, with a practical appreciation of the business and legal imperatives that can determine a client's success.

His particular focus is helping clients in highly regulated industries navigate the increasingly complex convergence of information technology and business, offering practical and strategic advice in the following areas:

  • Technology procurement and outsourcing arrangements
  • Privacy, information security, and data breach notification
  • Protection and enforcement of IP rights
  • Trademark, patent, copyright, and software licensing
  • Internet law and e-commerce initiatives

Peter represents businesses in a wide range of industries, including information technology, energy, banking, retail, financial services, insurance, and health care.

Before joining Pierce Atwood in February 2000, Peter served as Intellectual Property and Technology Counsel in the Legal Division of Unum Group (NYSE: UNM), a Fortune 500 company and the world's leading disability insurer. Early in his career, Peter practiced law with the Wall Street firm Chadbourne & Parke LLP in New York.

Honors & Distinctions

  • Listed since 2014 in The Best Lawyers in America® for Copyright Law, Trademark Law, and Litigation-Intellectual Property
  • Selected as arbitrator for EU-US Privacy Shield Program by the US Department of Commerce and EU Commission
  • Certified Information Privacy Professional/United States (CIPP/US), International Association of Privacy Professionals, 2014-present
  • Distinguished Fellow, Ponemon Institute, in recognition of service, commitment, and leadership to the advancement of responsible information management practices in business and government

Professional Activities

  • Visiting Professor of Practice at the University of Maine School of Law (teaching courses and practicums in information privacy law and cyber security)
  • Co-director, Information Privacy Law Program, University of Maine School of Law
  • Member, Judicial Branch Task Force on Transparency and Privacy in Court Records, reporting to Maine Supreme Judicial Court
  • Co-chair, Northern New England KnowledgeNet, International Association of Privacy Professionals
  • Member, Section of Science and Technology Law Information Security Committee, American Bar Association

Frequent invited speaker (partial list):

  • “The Security, Privacy and Legal Challenges of Offering and/or Procuring Cloud Services,” presentation and panel discussion at joint meeting of the Northern New England KnowledgeNet chapter and (ISC)2 Maine Chapter (October 2016)
  • “Weathering the Perfect Storm of Internal and External Threats,” panel discussion at the Cybersecurity and Fraud Forum hosted by Marcum LLP in Boston (October 2016)
  • Boston Bar Association 2014 IP Year in Review: CLE presentation on privacy and data security (January 2015)
  • "The Chief Privacy Officer and Information Governance," Data Breach and Privacy Law Seminar, DRI (September 2014)
  • Information Privacy Summer Institute 2014, University of Maine School of Law (June 2014)


Practice Areas

Representative Experience

  • On behalf of major insurers, banks, retailers, public utilities, and health care providers, prepared and negotiated hundreds of technology procurement and outsourcing contracts involving mission critical systems and business processes, including major IT outsourcing deals involving offshore software development and other services
  • On behalf of leading software publishers, prepared and negotiated hundreds of software licenses, software development, application hosting, software as a service, joint development, strategic marketing and distributor (reseller/OEM) agreements 

Representative Experience

  • On behalf of publicly-traded (NYSE) financial services company, provided advice regarding IP and regulatory compliance issues, including privacy and data security, in connection with acquisition of a company that provides electronic payment processing solutions in the health care space, specifically, insurance premium and employee benefit payments
  • On behalf of a major U.S. utility, led legal team responsible for preparing and negotiating key technology license and services agreements for full scale deployment of a smart meter solution serving its entire customer base, one of the first such deployments in the United States

Representative Experience

  • Advise clients on compliance with state, federal, and international laws and regulations relating to privacy and data protection, including the GLB Act, FTC Act, HIPAA, HITECH Act,  NAIC model acts and regulations, EU General Data Protection Regulation, and EU-US Privacy Shield framework
  • Regularly counsel clients with respect to data security incidents, ranging from internal investigations, incident response, breach notification obligations, communications with regulators, risk mitigation, and litigation strategies