Catherine M. Essig

Catherine M. Essig

Washington, D.C.

Email catherine.essig@​

Phone +1 202 637 5854

Fax +1 202 637 5910

Practice groupGlobal Regulatory

Catherine Essig works with clients to navigate the complex legal landscape of privacy, cybersecurity, and data protection.

Catherine works closely with startups and global corporations on the health and consumer privacy issues they confront. Catherine regularly advises clients on identifying risks and developing strategies for compliance with data privacy and security laws and regulations, including the Health Insurance Portability and Accountability Act (HIPAA), the FTC Act, the California Consumer Privacy Act (CCPA), and the Children's Online Privacy Protection Act (COPPA), as well as state laws and regulations.

Catherine also counsels clients on incident response, regulatory investigations, privacy by design, and drafting and negotiating agreements.

Prior to joining Hogan Lovells, Catherine served as a law clerk for Judge David C. Godbey of the U.S. District Court for the Northern District of Texas.

Education and admissions


J.D., Harvard Law School, 2016

B.A., Southern Methodist University, magna cum laude, Phi Beta Kappa, 2012

Bar admissions and qualifications

District of Columbia

Related knowledge

Chronicle of Data Protection

Representative experience

Advised clients responding to inquiries and investigations from HHS OCR, state attorneys general, the Federal Trade Commission, and Congress.

Obtained successful resolution, without penalty, in numerous HHS OCR investigations of health care organizations.

Assisted clients in developing privacy by design programs to fit the size and scale of operations.

Assisted clients in conducting privacy and cybersecurity-focused internal investigations.

Evaluated privacy and data security risks associated with health care transactions.

Loading data