Cristina Messerschmidt

Cristina Messerschmidt

Baker & McKenzie LLP


Cristina G. Messerschmidt is an associate in the Privacy and Security practice group based in Chicago, advising global organizations on privacy and data security compliance requirements, as well as data security incident response.

Practice Focus

Cristina focuses her practice on domestic and global privacy and data security. She provides advice to a wide range of clients in the healthcare space, including pharmaceutical and medical device companies, healthcare providers, financial institutions, sourcing providers, retail companies, online businesses, and other organizations on issues relating to healthcare privacy, domestic and global privacy, cross-border data transfers, behavioral advertising, and the preparation and implementation of broad-based privacy compliance. Cristina is well-versed in HIPAA and related issues, as well as GDPR and CCPA readiness, CPRA, CAN-SPAM, other US privacy and state medical privacy laws.

Cristina also regularly counsels clients on complex domestic and global data security events, including investigations of potential compromise, determining notification obligations to federal and state and global breach notification requirements, as well as response to related inquiries from government agencies and other parties. Cristina had advised companies on a wide range of data security incidents, including ransomware, HIPAA breaches, insider threats, phishing attacks, and access controls.


  • Illinois~United States (2017)


  • Northwestern University Pritzker School of Law (JD, cum laude) (2017)
  • University of Michigan (BA, honors) (2010)


  • English
  • French
  • Romanian