MTC: From Shingles to SEO to GEO: The History of Lawyer Advertising and the Ethics That Still Govern It

/ The Tech-Savvy Lawyer.Page/

From hanging a shingle to GEO-driven law firm visibility!

If you listen only to today’s marketing jargon, you might think lawyer advertising started with SEO (Search Engine Optimization) and ends with GEO—Generative Engine Optimization. In reality, the story begins with word of mouth, a wooden shingle, and a profession that worried about dignity long before anyone worried about keywords. The tools have changed repeatedly, but the ethical backbone has stayed remarkably consistent.

The ABA didn’t adopt the Model Rules of Professional Conduct until 1983, yet the core prohibitions we now see in Rules 7.1, 7.2, and 7.3—no false or misleading communications, limits on advertising, and restrictions on solicitation—simply codified principles that were already there. As we move from classic SEO into GEO, those same principles should still keep us grounded, especially for solos and small firms tempted to let AI do too much of the talking. 🤖

Before the Codes: Reputation and Norms

In the late 19th and early 20th centuries, there was no ABA Model Rule 7.1, no Model Code, and no national advertising standard. Lawyers built practices through referrals, courthouse reputations, civic involvement, and the quiet endorsements of former clients. Marketing was informal and relational, but that didn’t mean it was unregulated; courts and local bars still sanctioned dishonesty, fraud, and improper solicitation.

What we now call “communications concerning a lawyer’s services” was mostly face-to-face, but the expectation was already clear: do not lie, do not overreach, and do not exploit people at vulnerable moments. Those instincts would later become structured into the Canons, the Model Code, and ultimately the Model Rules.

1908–1969: Canons and the Shingle-to-Directory Transition

The ABA adopted the Canons of Professional Ethics in 1908, its first national ethics code, drawing heavily from an 1887 Alabama code and other local precedents. The Canons emphasized dignity, restraint, and loyalty to the client—not revenue at any cost. Advertising was generally discouraged, but basic identification (your name, that you were a lawyer, and where you could be found) was tolerated.

This is the era of “hanging a shingle”—literally putting up a sign that said you were an attorney—and later of simple listings in early directories and the White Pages. The shingle and the simple listing are analog ancestors of your Google Business Profile today: name, practice, contact information. 🪧 The message was informational, not boastful, which is exactly the line modern Rule 7.1 tries to maintain.

Yellow Pages and the Rise of Display Advertising

Lawyer advertising evolution: referrals, Yellow Pages, SEO, and GEO

As the telephone spread, lawyers moved from the White Pages into the Yellow Pages, and that’s where things changed. Yellow Pages display ads offered space for slogans, graphics, and bold type. By the late 20th century, they were one of the most important consumer marketing channels for lawyers, especially in personal injury, family law, and criminal defense.

During much of this period the profession was governed by the Model Code of Professional Responsibility (adopted in 1969), which carried forward the Canons’ skepticism of overt advertising. Some bars attempted to maintain near-blanket bans on lawyer ads, while others allowed limited, highly regulated Yellow Pages entries. The underlying concern, however, was familiar: Advertising that created unjustified expectations, promised results, or made unverifiable “best lawyer” claims was considered unethical—an early expression of what would become the Model Rule 7.1 prohibition on false or misleading communications.

Bates and the Birth of Modern Lawyer Advertising

Everything shifted in 1977 when the Supreme Court decided Bates v. State Bar of Arizona. The Court held that lawyer advertising is commercial speech protected by the First Amendment, striking down a state disciplinary rule that effectively banned ads by lawyers. The Court recognized that consumers need information about legal services and cannot evaluate lawyers if they are kept in the dark.

Bates did not remove ethical guardrails. It confirmed that states may still prohibit false, deceptive, or misleading advertising and may impose reasonable rules to protect the public. In modern terms, Bates opened the door to lawyer advertising but left the profession responsible for staying on the right side of truthfulness, clarity, and fair dealing.

1983–Present: Model Rules, the Web, and SEO

In 1983, the ABA replaced the Model Code with the Model Rules of Professional Conduct, which remain the baseline for state rules today. Three provisions matter most for marketing:

  • Model Rule 7.1 – A lawyer shall not make a false or misleading communication about the lawyer or the lawyer’s services.

  • Model Rule 7.2 – Lawyers may advertise through various media, subject to 7.1 and restrictions on paying for recommendations.

  • Model Rule 7.3 – Governs solicitation of clients, especially direct, real-time contact with people who may be vulnerable to undue influence.

When law firms began building websites in the 1990s and early 2000s, those sites were simply new “media” under Rule 7.2 and subject to the same truthfulness requirements as a print ad. As SEO emerged, lawyers learned to optimize pages for terms like “car accident lawyer” or “divorce attorney near me,” and local search became the new Yellow Pages.

The temptation, then as now, was to let the algorithm drive the ethics. Yet nothing in the Model Rules says “this doesn’t count if you’re trying to rank.” Every meta description, headline, and testimonial remains a communication about your services under 7.1.

Remember, your website is your biggest ethics footprint. If an SEO consultant suggests language you would never put in a sworn pleading, it probably doesn’t belong on your homepage either.

GEO: Generative Engine Optimization

Comparing classic law firm SEO with modern GEO AI answers

Fast-forward to 2026, and many law firm marketers are talking about GEO—Generative Engine Optimization. GEO focuses on making your content understandable and trustworthy to AI-driven answer engines (ChatGPT, Gemini, Perplexity, Bing Copilot, Google AI Overviews, and similar tools), not just to traditional search rankings.

Where SEO primarily asks, “How do I rank in the list?”, GEO asks, “When a prospective client asks a natural-language question, does an AI system understand my firm, recognize my authority, and cite my content accurately in its answer?” For law firms, GEO strategies generally include:

  • Structuring content around clear questions and answers clients actually ask

  • Strengthening entity profiles so AI can correctly associate attorneys, practice areas, and locations

  • Enhancing trust signals: consistent directory listings, complete bios, reviews, and citations from reputable sources

  • Updating content for depth, context, and semantic clarity so generative systems don’t misinterpret your guidanc

If that sounds like “SEO with better structure and more discipline,” you’re not wrong. GEO builds on strong traditional SEO, not replaces it.

Ethically, the message is straightforward: AI is just another channel. If your content is misleading, overbroad, or exaggerated, it does not become acceptable because it is being summarized by a generative engine instead of displayed as a blue link. Rule 7.1 applies regardless of whether a human or an AI is reading your copy.

GEO, AI Tools, and Model Rule Guardrails

For solos and small firms, GEO often intersects with increasing use of AI tools to draft or refine marketing content. That raises several recurring ethics touchpoints:

  • Truthful content (Rule 7.1): Any AI-assisted copy that inflates your experience, implies special certification you don’t actually hold, or hints at guaranteed outcomes violates the same rule as if you wrote it manually.

  • Supervision and review (Rules 5.1, 5.2, and 5.3): Ethics guidance on AI marketing emphasizes human review protocols: lawyers must review AI outputs for accuracy, tone, and compliance before publishing.

  • Solicitation concerns (Rule 7.3): If a GEO-driven workflow extends into chatbots, proactive outreach, or personalized sequences, you must ensure the system isn’t effectively engaging in real-time solicitation of individuals facing stress or duress.

GEO is powerful, but it’s not magic. It does not relieve you of the duty to understand the technology and to ensure that every public-facing statement about your services is accurate and appropriate for the audience.

The Through-Line: What Has Stayed the Same

Lawyer advertising evolution: referrals, Yellow Pages, SEO, and GEO

Once you understand the timeline—no Model Rules in 1890, no GEO in 2000—the continuity becomes obvious:

  • The codes changed; the core idea did not. From unwritten norms to the Canons, the Model Code, and the Model Rules, the message is consistent: tell the truth, don’t mislead, and respect client vulnerability.

  • Every new channel inherits the old duties. Yellow Pages, websites, SEO, AI answers, and GEO all fall under the same prohibitions on false or misleading communications and improper solicitation.

  • Technology amplifies both good and bad. Clear, helpful content that respects the rules will travel farther through generative systems; sloppy or overstated claims will too.

For tech-curious lawyers, the takeaway is simple: be excited about GEO, but not starstruck. ✨ Use it to structure better answers, not to stretch the truth. Let AI and generative engines distribute your expertise, not redefine your ethics.

MTC

MTC: AI Voice Cloning, Deepfake Fraud, and Crime Junkie: What Lawyers Must Learn Now ⚖️🧠

/ The Tech-Savvy Lawyer.Page/

As a tech-savvy and ethically compliant lawyer, are you prepared to handle an ai voice-call scam?

We live in a world where a client can hear their child scream for help over the phone, know that voice down to the quiver in their sobs, and still be wrong about what’s real. At the same time, lawyers are getting “official” calls from spoofed sheriff’s offices demanding Bitcoin bail payments that feel just plausible enough to pass the sniff test. If you think your clients are the only ones at risk, you’re already behind.

As a long-time Crime Junkie fan, I’m grateful to Ashley Flowers, Brit Prawat, and the Audiochuck team for doing something the legal profession hasn’t always done well: translating complex, evolving tech crime into stories real people understand. Their recent warnings about AI voice cloning, virtual kidnappings, and sophisticated online scams are more than compelling podcast episodes—they’re mandatory listening for lawyers who care about their clients, their firms, and their own digital safety.

In this editorial, I want to bridge those Crime Junkie stories into practical takeaways for solo and small-firm lawyers, AI‑curious practitioners, and even tech‑skeptical colleagues. We’ll look at how these scams work, how the ABA Model Rules already expect you to understand enough technology to spot them, and how to turn “true crime” lessons into concrete safeguards for your practice. ⚙️

When Your Ears Can’t Be Trusted: AI Voice Cloning and Virtual Kidnappings 🎙️

In “WARNING: AI Voice Cloning and Virtual Kidnappings,” Crime Junkie walks us through a terrifying call to a mother who hears her daughter sobbing, begging for her life, while a man demands a ransom and lays out graphic threats. The twist, as many of us now know, is that the daughter is safe; the “kidnappers” are using AI‑cloned audio drawn from a tiny sample of her voice to weaponize panic.

Researchers cited in the episode describe how low‑cost AI tools can create a convincing voice clone from as little as three seconds of audio. Caller ID spoofing then makes it look like the call is coming from the victim’s phone, while scammers press for fast, untraceable payments in cash, gift cards, or crypto. The technology is cheap, the scripts are refined, and the goal is simple: override your critical thinking before you can verify anything.

From a legal ethics perspective, this isn’t just an interesting cybersecurity anecdote. ABA Model Rule 1.1 on competence—especially Comment 8—requires you to stay abreast of “the benefits and risks associated with relevant technology.” An environment where your client can be tricked into paying a fake ransom, or where your own voice can be cloned to mislead staff or opposing parties, is very much “relevant technology.”

If you are not talking with clients and staff about AI‑driven fraud risk, you are not just missing a teaching moment—you may be edging toward a competence problem under the Model Rules.

Lessons for Client Counseling: Safe Words, Verification, and Panic‑Proof Plans 🛟

One of the most practical takeaways in the AI voice cloning episode is also one of the simplest: set a family and a seperate law office “safe word” and rehearse how to verify calls under extreme stress. The FBI, National Cybersecurity Alliance, and digital forensics experts interviewed for the episode all echo the same theme—pre‑commitment beats improvisation when panic hits.

This is precisely the kind of low‑tech, high‑impact advice lawyers can—and should—be giving in client counseling sessions, especially with:

  • Family law clients dealing with high‑conflict co‑parenting or domestic violence

  • Estate planning clients with vulnerable or elderly relatives

  • Business clients whose executives or finance staff could be targeted by “CEO voice” scams

Here’s a concrete, lawyer‑friendly checklist you can adapt:

  1. Safe Word Policy
    Encourage clients to adopt a family or organizational safe word, shared only in person or via secure channels, for any call alleging an emergency or ransom demand.

  2. Verification Protocols
    Teach clients to verify via a second channel: call back on a known number, text from another device, or contact a third person who can physically locate the supposed victim.

  3. Call 911 First When in Doubt
    Emphasize that if they believe a life is at risk, they should call 911—even if they suspect it might be a scam. Law enforcement can help triage the situation; if it’s a scam, they can sort that out after.

  4. Evidence Preservation
    Tell clients to screenshot call logs, save audio, and preserve any “proof of life” photos or messages before they disappear, as some software can make photos exist only for seconds. Those artifacts can be invaluable if law enforcement or insurers later investigate.

This kind of counseling fits squarely within ABA Model Rule 2.1 (Advisor), which encourages lawyers to consider “moral, economic, social, and political factors” in advising clients. You’re not just parsing statutes; you’re helping clients design their own risk‑management frameworks in a world where even their senses can be hacked.

The second Crime Junkie episode I wanted to share, "WARNING: Online Scams", focused on other kinds of scams involving technology:

How Scammers Use Our Systems Against Us: Fake Warrants, Bitcoin Bail, and “Officer Smith” 👮‍♂️💸

Lawyers, are you prepared to advise your client on ai scams?

A couple receives a voicemail from what appears to be their local sheriff’s office, learns there’s a warrant for missing jury duty, and is told they can avoid booking if they pre‑pay bail via Bitcoin and Venmo. They do their homework—they verify the number online, they look up “Officer Smith,” they cross‑check the department. Yet they still end up running between ATMs, feeding money into a Bitcoin kiosk, and nervously wiring funds to what looks like a legitimate bail account.

Only later, after calling a non‑emergency line and getting a return call from a blocked number (as their real department actually uses [versus the scammer’s phone number that appeared on their caller ID), do they learn the uncomfortable truth: the “bail by Bitcoin” story was a scam.

Crime Junkie does an excellent job breaking the lessons down into clear rules:

  • Police will not call to give you a “heads‑up” that you’ve broken the law.

  • Bail is paid in person, not by Bitcoin, gift card, or Venmo.

  • Hanging up and calling back on a separately verified number can serve as an important safety/security step.

For lawyers, these stories are a vivid reminder that many scams are “legal‑adjacent”—they borrow just enough from real procedures (jury duty, warrants, bail, sheriff’s offices) to feel legitimate. That makes them particularly dangerous for our clients and our staff, who may over‑defer to anything with a whiff of authority.

Under ABA Model Rule 5.3, lawyers have an obligation to ensure that nonlawyer assistants act in a manner compatible with the lawyer’s professional obligations. That includes training staff to handle legal‑sounding calls skeptically: to question unusual payment methods, verify claims through known channels, and escalate suspicious calls before anyone withdraws or wires funds.

If your receptionist or office manager wouldn’t know how to respond to a call like the one just described, that’s a training gap you can fix—ideally before it becomes a loss.

Fraud in the Grey Zones: Sugar Daddies, Freelance Gigs, and Client Shame 🧾

Crime Junkie also covers scams that operate in more personal and sometimes stigmatized spaces: sugar‑daddy arrangements gone wrong; freelance “job offers” that rely on fraudulent checks; supposed production gigs that pay you to buy equipment, then claw back your real money once the check bounces.  These scams involve computers, phones, the World Wide Web, and even an electronically altered check

In the sugar‑daddy story, a young woman on a sugar‑daddy online platform is manipulated into buying hundreds of dollars’ worth of Steam gift cards to “prove” she’s not scamming her would‑be benefactor, only to realize too late that she’s been exploited. In the job offer story, a freelance audio professional is mailed a check to buy gear for a production; he wisely flags the check, closes his account, and discovers that the job posting piggybacked on a real company’s identity.

Three legal practice lessons stand out here:

lawyers and their clients can learn a lot from shows like crime junkie about ai scams and their impact on their clients!

  1. Clients may not tell you everything, especially if the scam involves sex, money, or perceived “stupidity.” The victims in these cases describe deep embarrassment and shame, which initially kept them from reporting to the police. For lawyers, this kind of hesitation could cause further bar issues beyond the incident itself.

  2. Financial exploitation often intersects with the kinds of matters solos and small firms already handle. Think consumer protection, elder law, family law, or small business disputes. Clients who’ve been scammed may appear with half‑formed stories, partial evidence, and a strong desire to move on rather than report.

  3. Failing to respond promptly—or at all—to suspected scams or financial exploitation can compound the harm and create independent ethics problems. When a lawyer ignores red flags, delays advising the client, or fails to investigate and remediate potential trust‑account or fraud issues, regulators may view that as a separate violation of duties of competence, diligence, communication, and safeguarding client property, even if the underlying scam originated outside the firm. In extreme cases, a pattern of slow or inadequate responses can trigger bar complaints or disciplinary investigations that focus less on the initial scam and more on the lawyer’s failure to act once on notice.

ABA Model Rule 1.4 (Communication) and 1.14 (Client with Diminished Capacity) come into play here. You must explain matters to clients in a way they can understand, but you also need to create a space where they can safely share how they were targeted without fear of ridicule. That’s emotional work, not just analytical work.

One practical move: incorporate scam‑screening questions into your intake forms and interviews. Ask clients explicitly whether anyone has recently requested unusual payment methods, impersonated a government agency, or pressured them to act quickly under threat of legal or physical harm.

Firm‑Level Risk: Deepfakes, Staff Training, and Incident Response 🏢🔐

These Crime Junkie episodes also raise uncomfortable questions about law firm operations. What happens when it’s not a client but you whose voice is cloned? What if a deepfake of your voice instructs staff to release trust funds or share confidential documents?

In “WARNING: AI Voice Cloning and Virtual Kidnappings,” the FBI describes how scammers run these operations like call centers, constantly cycling through numbers and scripts to maximize success. The same industrialization is happening in business email compromise (BEC) and invoice fraud—areas where law firms are already prime targets.

Three concrete actions you can take at the firm level:

  1. Adopt a “trust but verify” rule for any out‑of‑band instruction involving money or confidential data. No transfer of client funds, no disbursement of settlement proceeds, and no release of sensitive documents should happen based on a single phone call, even if the caller “sounds” like you.

  2. Implement multi‑factor workflows, not just multi‑factor authentication. For example, any financial instruction must be confirmed via a second channel (secure client portal, verified email, or in‑person) before action. 

  3. Document an incident response plan that includes deepfake and scam scenarios. ABA Model Rules 1.6 (Confidentiality) and 5.1 (Responsibilities of Partners and Supervisory Lawyers) expect you to have reasonable safeguards and supervisory structures. That includes knowing what to do when—not if—your systems or people are tested.

These are precisely the kinds of measures we walk through in The Tech-Savvy Lawyer.Page blog and podcast episodes on AI, deepfakes, and metadata—where we discuss the intersection of ethics, evidence, and emerging tech.

Bridging Crime Junkie and Legal Ethics: Story as a Compliance Tool 📚✨

lawyers need TO think calmly when confronted with ai scams let alone any scam!

One of the most useful things about Crime Junkie is that Ashley and Brit don’t just scare you; they give you scripts, safe‑word strategies, and “here’s what to do next” checklists. Lawyers can—and should—borrow that model.

Instead of sending clients dense policy memos, consider:

  • Sharing these specific episodes with a short email explaining why they matter:

    • “WARNING: AI Voice Cloning and Virtual Kidnappings” – Crime Junkie’s breakdown of how cloned voices fuel virtual kidnapping scams and what the FBI recommends.

    • “WARNING: Online Scams”, the online scams episode about fake warrants, sugar daddies, job scams, and fraudulent checks.

  • Pairing the episode with your own one‑page client guide that translates the stories into local, practical legal advice—how your jurisdiction handles actual warrants, how bail really works, and how you want clients to contact you if they suspect a scam.

  • Integrating these stories into CLEs and staff training, using them as case studies for ABA Model Rule 1.1 (Competence), 1.6 (Confidentiality), 1.4 (Communication), and 5.3 (Nonlawyer Assistants).

The goal isn’t to turn your practice into a true crime podcast. It’s about leveraging narratives your clients and staff will actually remember when the phone rings, the voice shakes, and the clock starts ticking.

Lawyers in words, facts, and rules. But in an era of AI voice cloning, deepfake fraud, and industrialized scamming, the difference between a near‑miss and a catastrophe may come down to whether your clients have heard the right story—and practiced the right response—before the crisis hits.

So grab your headphones, queue up Crime Junkie, and then bring those lessons into your practice. Your clients, your firm, and yes, you, will be safer for it. 🎧⚖️

MTC: When the Search Engine Itself Is the Ethical Issue: What Lawyers Must Know About AI Search vs. Traditional Internet Research

/ The Tech-Savvy Lawyer.Page/

AI Legal Search Transforms Modern Lawyer Research

There is a quiet revolution happening at the very top of your browser, and most lawyers haven't noticed it yet. 🔍

The search box — that deceptively simple rectangle you've used to research case law, check opposing counsel's background, or verify a client's claims — is no longer neutral ground. In May 2026, Google announced a sweeping AI-first reimagining of its search experience, complete with AI-generated answer summaries, "Search agents" that act on your behalf, and deep integrations with Gmail and Google Photos through what it calls "Personal Intelligence."

Almost immediately, something remarkable happened. Privacy-focused search engine DuckDuckGo reported that traffic to its "No AI" search option more than tripled in the days following Google's announcement. Visits averaged 84 percent above baseline — and climbing. Users are voting with their clicks, and lawyers should be paying close attention to why.

Because for attorneys, this isn't just a preference question. It is an ethics question. 🏛️

The Search Box Has Always Been a Legal Tool

Before we talk about AI search, let's be honest about something: lawyers have always used internet research in professionally complex ways. Whether you're doing due diligence on a new client, investigating facts before a deposition, or checking whether a potential expert witness has any embarrassing public statements, search engines are embedded in legal practice.

The ABA has taken note. ABA Model Rule 1.1 on Competence requires lawyers to keep abreast of "changes in the law and its practice, including the benefits and risks associated with relevant technology." The ABA's 2012 amendment to Comment 8 of that rule was, frankly, ahead of its time. Today, "relevant technology" includes the search engine itself — not just the results it returns.

The question lawyers must now ask is not just what a search engine finds. The question is how it finds it — and what it does to the information before it reaches your eyes. 👁️

What "AI Search" Actually Does — And Why It Matters for Lawyers

Google's new AI search doesn't just retrieve pages. It synthesizes, summarizes, and presents information as if it were a fact. The AI generates an "answer" at the top of the results, often without clearly displaying the sources behind it. It uses conversational follow-up prompts and can even tap into your personal data — your Gmail, your calendar, your search history — to "personalize" results through its Personal Intelligence features.

For a casual user looking up a dinner recipe, this may be delightful. For a lawyer performing professional research, this architecture introduces risks that are not hypothetical. They are disciplinary. ⚖️

Consider these practical scenarios:

  • Investigating a witness or opposing party: If AI search synthesizes social media profiles, news articles, and forum posts into a single summary, is the attorney seeing an accurate picture — or an AI-curated composite? Errors of omission matter enormously in litigation.

  • Researching local ordinances or regulations: AI-generated summaries have been documented to cite outdated legal authority or blend jurisdictions. A confident-sounding AI answer about a zoning statute may be silently wrong.

  • Client intake due diligence: If your search engine is pulling from your own Gmail history to "personalize" results, there are immediate questions about information separation and confidentiality walls.

This implicates ABA Model Rule 1.3 (Diligence), Rule 1.6 (Confidentiality), and — for litigators — the broader duty of candor under Rule 3.3. Relying on an AI-synthesized result without independent verification is not diligent research. It is relying on someone else's summary of someone else's sources. 🚩

The Competence Gap Nobody's Talking About

AI Case Summaries Enter the Modern Courtroom

Here is the nuance that most bar ethics opinions haven't caught up to yet: using AI search is not the same as using an AI legal research tool like Westlaw AI and Lexis+ AI. Those platforms are built on curated, citation-verified legal databases, with clear provenance for every source. General-purpose AI search like Google's new paradigm, Bing Copilot, Perplexity AI, is built on the open web, with all of the unreliability that implies.

When a lawyer asks Westlaw AI to find authority on a legal standard, the system is drawing from a professionally maintained legal corpus. When a lawyer asks Google's AI search, "What are the statute of limitations rules in Virginia for contract claims?" — the AI is generating a confident-sounding answer from whatever it found on the open internet, synthesized by a model that does not practice law and has no malpractice insurance. *Note that this does not mean you should not always check your AI work generated from legal-based websites, as they make mistakes too! ALWAYS CHECK YOUR WORK!!!

That distinction is not just academic. It is the difference between competent research and a disciplinary complaint. 📋

ABA Formal Opinion 512 (2023) addressed the use of generative AI tools broadly, emphasizing that attorneys bear full responsibility for the accuracy of AI-generated work product and may not "delegate" verification to a machine. The same logic extends directly to AI-generated search summaries. The attorney who reads an AI answer and relies on it without checking the underlying sources has not completed professional research. 

DuckDuckGo's "No AI" Option: A Signal Worth Heeding

The surge in DuckDuckGo's "No AI" search traffic is instructive for lawyers precisely because the users driving that surge aren't Luddites. They are professionals and technologists who understand the difference between AI-assisted search and raw, unmediated results.

DuckDuckGo's No AI search returns traditional link-based results without AI-generated answer overlays, without a chat interface, and with significantly fewer AI-generated images cluttering the results. For legal professionals performing factual investigation, that architecture has a significant advantage: what you see is a list of sources, not a synthesized narrative. You evaluate the sources. You apply legal judgment. The machine does not pre-filter reality for you.

Alternative privacy-first search engines like Kagi operate on a similar premise — paid, ad-free, with AI tools strictly opt-in. These are not fringe products. They are increasingly mature, professional-grade tools.

The point is not that lawyers must abandon Google. The point is that lawyers must understand what any given search tool is doing with their query and their results — and make a deliberate professional choice. 🎯

Confidentiality Implications Hiding in Plain Sight

Here's a dimension that deserves its own continuing legal education session: what happens to your search queries?

Google's Personal Intelligence features explicitly connect your search behavior to your Gmail, your Google Photos, and your account activity. For most users, this integration is a convenience. For lawyers, it is a potential Rule 1.6 problem.

If you are searching for information related to a client matter using a Google account connected to your professional email, you may be feeding client-related data into a system with its own data retention, analytics, and AI training policies. This is not speculation. It is the documented architecture of modern AI-integrated search.

The same risk applies to any AI search tool that logs, retains, or uses your queries for model training. Before using an AI search tool for client-related research, lawyers should review that platform's terms of service and privacy policy with the same scrutiny they'd apply to a cloud storage agreement.

A Practical Framework for the Ethically Conscious Lawyer

Here's what I recommend to every attorney I speak with — 🛠️

2. Verify every AI-generated summary. If an AI search tool gives you a synthesized answer, treat it as a lead, not a conclusion. Click through to primary sources. Confirm the date, jurisdiction, and accuracy of every material fact.

3. Audit your search tool's data practices. Before using any search engine — AI-powered or otherwise — for client-related research, understand what the platform does with your queries. Update your firm's privacy policy and client engagement letters accordingly.

4. Create a firm search policy. Solo practitioners and small firms alike benefit from a standard for how internet research is conducted, documented, and verified. Ideally it is written as it could be your first line of defense in a grievance proceeding.

5. Distinguish between research and investigation. When using internet research to investigate persons — clients, witnesses, opposing parties — remember that ABA Formal Opinion 466 addresses the ethical limits of reviewing publicly available juror social media. Similar caution applies to using AI-curated profiles of any individual.

The Bigger Picture 🌐

Tech-Savvy Lawyers Blend Tradition With Innovation

The DuckDuckGo story is not really about one search engine. It is about a profession — ours — navigating a moment when the most basic research infrastructure is being restructured around artificial intelligence, without a pause for professional reflection.

Lawyers are custodians of facts, advocates for truth, and officers of the court. The tools we use to find facts are not ethically neutral. They never were. But the gap between "good enough for a general user" and "professionally adequate for a licensed attorney" has never been wider.

The next time you open a browser tab to research something for a client, I want you to pause — just for a moment — and ask yourself: Do I know what this search engine is doing with my query right now? 🤔

If the answer is "I'm not sure," that pause just became an ethical obligation.

MTC.

When Your AI Thinks It’s 1930: How Lawyers Must Manage “Frozen” Data Sets Versus the Live Internet 🧠⚖️

/ The Tech-Savvy Lawyer.Page/

AI Legal Research Demands Current Data and Human Judgment

A recent Malwarebytes article profiled “Talkie,” a 13‑billion‑parameter chatbot trained only on English‑language texts published before 1931. This model has no knowledge of anything after the Great Depression—no email, no smartphones, no cybercrime, and certainly no modern e‑discovery. 

For lawyers, Talkie is more than a curiosity. It is a vivid illustration of what happens when an AI’s world stops at an arbitrary date, and why we must understand the difference between isolated data sets and models that continuously ingest the modern internet. That distinction goes straight to your duties of competence, confidentiality, supervision, and candor under the ABA Model Rules

On The Tech‑Savvy Lawyer podcast, it is often discussed that “AI is the junior associate you don’t have to hire—but still have to supervise.” Talkie shows us what happens when that junior associate’s legal education ends in 1930. The lesson for your practice is simple: you cannot outsource judgment to any tool, especially one whose view of the world is frozen in time.

What “Vintage AI” Teaches Modern Lawyers 🕰️

Talkie was trained entirely on digitized books, newspapers, legal texts, and other publications in the public domain as of 1930, both to avoid modern copyright headaches and to explore how AI reasons without the internet. In other words, it is a deliberately isolated system: no post‑1930 statutes, no contemporary case law, no modern regulations. 

That design makes Talkie an excellent analogy for every “walled garden” AI lawyers are now being sold—closed research tools, local models trained only on internal firm documents, or court‑approved systems limited to a curated corpus. These tools can be invaluable, but only if you understand three things:

  • What is in the data set.

  • What is deliberately excluded.

  • How often the corpus is refreshed—or if it ever is.

Model Rule 1.1’s duty of technological competence now explicitly includes understanding the “benefits and risks” of relevant technology, which in 2026 squarely includes AI trained on defined corpora. If you do not know what your AI has seen, you cannot competently rely on what it says.

Isolated Data Sets: The Upside for Lawyers

Many solos and small firms are understandably drawn to “closed” or time‑boxed AI systems because they feel safer and more controllable. 😊 Properly designed, those systems can offer real advantages:

  • Predictable scope of authority
    An AI trained only on a vetted body of primary law and secondary sources may be easier to supervise, because you know its universe of materials. You can design workflows where AI research is always checked against the underlying authorities that you recognize and trust. 

  • Reduced confidentiality and IP risk
    Talkie avoids modern copyright disputes by staying within the public domain. Similarly, a local or on‑premises model that does not send data back to a vendor can help you satisfy Model Rule 1.6’s confidentiality obligations—assuming you confirm that the tool does not re‑use your client data to train others’ models. 

  • Consistent, auditable outputs
    With an isolated corpus, it is often easier to log queries, outputs, and the underlying sources, which supports your obligations under Rules 5.1 and 5.3 to supervise both lawyers and non‑lawyer assistants, including AI tools. 

For certain use cases—drafting from your own templates, summarizing client files, or querying only your firm’s knowledge base—a “frozen” or walled‑off model can be exactly the right approach. 

The Hidden Risks of “Frozen” Knowledge 🚨

Lawyers Must Verify AI Case Summaries Before Court

The malware researchers emphasize that Talkie has “no concept” of anything after 1930. That is charming when it tries to explain a “smartphone” using the vocabulary of the telegraph age; it is malpractice waiting to happen if your research tool does the equivalent in a modern brief. 

For lawyers, isolated or out‑of‑date data sets create at least four serious risks:

  • Outdated or incomplete law
    A time‑boxed research tool can miss controlling authority, recent statutory amendments, or new regulations. Under Model Rules 1.1 and 3.3, you cannot rely on a system that stops short of the current law and then present its output as if it were complete.[5][10][3]

  • Distorted factual context
    An AI that has never “seen” modern technology, social conditions, or scientific developments will reason with blind spots that can undermine your factual investigations under Rules 1.1 and 1.3. Think about relying on a pre‑1931 lens for today’s cybersecurity, social media defamation, or veterans’ disability claims involving modern diagnostics. 

  • Invisible bias baked into old texts
    Pre‑1931 materials, like any historical corpus, embed the social, racial, and gender biases of their era. A “vintage” model may reproduce those biases in ways that conflict with your obligations around fairness and anti‑discrimination, and could taint your client‑intake, hiring, or case‑evaluation workflows. 

  • False sense of safety
    Because these systems are “limited,” lawyers may assume they are automatically compliant or “approved.” 😬 But ABA Formal Opinion 512 is clear: the existing rules—competence, confidentiality, communication, candor, supervision, and reasonable fees—apply equally to AI tools, regardless of their training set. 

The message: isolation is not a substitute for judgment. It simply changes the error profile you must manage. 

Live Internet Models: Power With Extra Liability 🌐

At the other end of the spectrum are AI tools connected to the live internet—systems that can pull from statutes, cases, news, and commentary that changed yesterday or this morning. They offer speed and breadth that solos and small firms could only dream of a few years ago. 

But internet‑connected models also present their own set of concerns:

  • Hallucinations blended with real‑time data
    Even when a system claims to be “citing live sources,” you still must verify every authority under Rules 1.1, 3.3, and 5.3. Courts and bars have already disciplined lawyers for filing AI‑generated briefs with fabricated citations. 

  • Ongoing confidentiality exposure
    If the model sends prompts to remote servers, you must analyze data‑handling, retention, and training policies to comply with Rule 1.6. You may need to anonymize prompts, modify your engagement letters, or obtain informed consent for certain uses, as many bars and Formal Opinion 512 recommend. 

  • Dynamic but uncurated sources
    Unlike a curated pre‑1931 corpus, the open web mixes reliable law with marketing pages, blog posts of dubious quality, and outright misinformation. Under Model Rule 1.1, you must treat AI‑surfaced content like any other secondary source: helpful, but never authoritative without independent confirmation. 

The fact that a tool is “up to date” does not relieve you of your duty to be right. It just changes where the landmines are. 😄

Practical Guardrails for AI‑Curious Lawyers 🛠️

In a recent episode of The Tech‑Savvy Lawyer podcast with AI consultant Hamid Kohan, we discussed building an “AI‑ready” practice that treats these tools like supervised, specialized staff—not black boxes. Whether you use a Talkie‑style frozen model, a live internet assistant, or both, consider putting these guardrails in place: 

  1. Inventory your AI tools and their data sources
    For each tool, document what data set(s) it uses (public domain only, commercial databases, firm documents, open web), how often it updates, and how it handles your data. This goes directly to your competence and confidentiality duties under Rules 1.1 and 1.6. 

  2. Define “approved uses” in your firm policies
    Under Rules 5.1 and 5.3, establish written guidance for lawyers and staff: e.g., “Use Tool A only for drafting internal outlines,” or “Use Tool B for brainstorming arguments, but never for final citations.” Train your team accordingly and revisit those policies quarterly. 

  3. Mandate human verification of law and facts
    Require that all AI‑generated citations, quotations, and factual assertions be checked against primary sources and the actual record before leaving the firm. That is how you satisfy Rules 1.1, 3.3, and your supervisory obligations. 

  4. Be transparent with clients and courts
    ABA guidance encourages disclosure of AI use where it is material to the representation or required by court rule. Consider adding a brief, plain‑English AI disclosure to your engagement letters and being prepared to describe, if asked, how you supervise AI‑assisted work. 

  5. Avoid over‑reliance that dulls your own analysis
    California’s guidance warns against delegating your professional judgment to generative AI or letting it replace your own research and critical thinking. Use AI as a springboard, not a crutch—an approach we have explored on The Tech-Savvy Lawyer.Page blog and podcast.

These steps are manageable even for solo and small‑firm lawyers with modest tech skills, and they align neatly with existing ethics frameworks. 💡

Choosing Between “Frozen” and “Live” AI: A Simple Matrix 📊

Frozen AI Data Sets Challenge Modern Legal Research

When should you prefer an isolated corpus, and when do you need the modern web? For many practices—especially for example, disability, administrative, and appellate work—the answer is “both,” but for different tasks. 

  • Use isolated or internal models for:

    • Summarizing your client’s file or medical records.

    • Drafting from your own templates and prior briefs.

    • Issue‑spotting in areas where the governing law is baked into the tool and updated on a known schedule.

    • Use live internet‑connected models (with caution) for:

    • Brainstorming novel arguments and locating secondary sources.

    • Scanning for recent regulatory changes or commentary.

    • Getting “layperson‑level” explanations you then translate into lawyer‑grade analysis.

In every scenario, you remain the final filter. Under the Model Rules, AI can accelerate your work, but it cannot own your judgment. Talkie is a reminder that the scope of what your AI knows is now an ethics question, not just a technical detail. 

Final Thoughts: Don’t Let Your Practice Get Stuck in 1930

Talkie’s charm lies in its limitations—it is a window into a world before the internet, World War II, and modern computing. Your law practice does not have that luxury. Clients expect you to understand the present, anticipate the future, and choose tools that serve both. 

Whether your AI is frozen in 1930 or streaming 2026 in real time, the obligations are the same: know what it knows, know what it cannot know, and supervise it accordingly. If you do that, you can harness AI’s benefits without letting your ethical obligations slip into the past. 🚀 

MTC: AI Won’t Replace Solo and Small-Firm Lawyers — It Will Supercharge Them ⚖️🤖

/ The Tech-Savvy Lawyer.Page/

Solo lawyers can use artificial intelligence as a virtual associate to handle legal research, drafting, intake, and billing in a modern small law firm ⚖️🤖

If you run a solo or small-to-medium firm, you’ve probably heard the predictions: AI will automate legal tasks in “12 to 18 months” or replace traditional lawyers entirely by 2035. Those headlines make great clickbait, but they miss what is actually happening on the ground in smaller practices. AI is not wiping out solo and small-firm lawyers; it is changing the mix of tasks we do — and creating more opportunities for us if we adopt it intentionally and ethically. 

In a recent Washington Post opinion, Damien Charlotin argues that AI won’t replace lawyers. It will create more of them. His logic is especially important for solos and small firms. He describes legal jobs as “bundles of tasks,” many of which are tightly linked and not easily peeled apart for automation. If you’ve ever juggled intake, research, drafting, negotiation, and billing in a single day, you know exactly what that tight bundle feels like. AI is about to start pulling on pieces of that bundle — and your job is to decide how to rebundle your work in a way that serves clients, protects ethics, and keeps your business healthy. ⚖️🤖

Why Solo and Small Firms Should Ignore the Doom Headlines 😅

Charlotin points out that lawyers have never been more numerous in the United States, with law school applications rising and record-high employment in bar-required jobs. That’s happening at the same time as AI hype, which should tell you something: the profession is not collapsing.

For solos and small firms, the bigger risk is not AI replaces me, but AI-literate competitors out-serve my clients. Larger firms may have innovation teams and internal IT, but you have agility and direct control over your workflows. If you can use AI to shave hours off routine tasks — and reinvest that time into client counseling, business development, or flat-fee offerings — you can turn AI from a threat into a differentiator. As I often say on The Tech-Savvy Lawyer.Page podcast, AI is the junior associate you don’t have to hire, but still have to supervise.

Your Practice as a “Tight Bundle” of Tasks 🧩

Charlotin’s “bundles of tasks” concept is tailor-made for solo and small-firm reality. In big firms, tasks can be split across teams; in smaller shops, you wear most of the hats. Research, drafting, strategy, client communication, and billing are often intertwined in a single matter.

For experienced lawyers, Charlotin notes, “doing legal research and evaluating an argument are … often the same mental activity” — we check the argument by writing it. If you offload only the writing to AI, verification becomes a separate, deliberate act that takes time, and if you skip it, you risk sanctions for hallucinated filings. This is why I push solo and small-firm lawyers to treat AI as an assistant that drafts and summarizes, while you retain control over the analysis and final product.

Lessons from E-Discovery for Small Practices 📂➡️📈

Charlotin likens the current AI hype to the e-discovery wave more than a decade ago. Back then, headlines like those from The New York Times predicted “Armies of Expensive Lawyers, Replaced by Cheaper Software.” What actually happened? The volume of discoverable material exploded; the tools became part of practice; and lawyers moved into new roles managing, interpreting, and litigating around that information.

That same Jevons paradox — cheaper processes leading to more usage — is already playing out in tools marketed to solo and small firms. AI-assisted drafting and research platforms now make it viable for smaller shops to handle matters that previously required big-firm staffing, and to offer more predictable pricing without cutting quality. Cheaper legal work often means more legal work — especially for clients who previously couldn’t afford you.

ABA Model Rule 1.1: Competence for Lean Teams 📚

Small law firm team using legal AI tools to improve collaboration, client service, and ABA-compliant workflows across a lean practice 👩‍⚖️👨‍⚖️💻.

For solos and small- to medium-sized firms, ABA Model Rule 1.1 on competence is both a challenge and an opportunity. It requires you to understand “the benefits and risks associated with relevant technology,” including AI. But unlike big firms, you can’t delegate that understanding to an IT department or an internal AI committee; you are the committee.

Practically, that means you need at least a working grasp of what your chosen AI tools do, how they handle data, and where they fit in your workflows. You don’t need to run every experiment at once. Start with one or two high-impact areas — say, summarizing long PDFs, generating first drafts of routine emails, or creating checklists from statutes or rules — and build from there. Competence for solo and small-firm lawyers is not about chasing every new feature; it’s about picking the right tools for your practice and using them deliberately.

Rules 5.1 and 5.3: Supervision When “You Are the Management” 👥🤖

You might think Rules 5.1 and 5.3 (supervision of lawyers and nonlawyers) are big-firm problems. They’re not. If you have even one staff member, contract attorney, or virtual assistant, you are responsible for how they use AI. And even if you’re truly solo, you’re still responsible for supervising the AI tools you deploy as if they were a nonlawyer assistant.

For small practices, the most practical move is a simple written AI policy, even if it’s a one-page document:

  • Which tasks can use AI (e.g., research assistance, first-draft documents);

  • Which tasks require heightened review (e.g., anything filed with a court);

  • Which tasks are off-limits (e.g., unsupervised client advice, sensitive fact patterns pasted into consumer chatbots).

As discussed both in Charlotin’s piece and in bar guidance for smaller firms, formal policies help you avoid ad hoc, inconsistent AI use that could jeopardize client confidentiality or court obligations.

Rule 1.6 Confidentiality: Cloud Tools on a Budget 🔐

Model Rule 1.6 on confidentiality doesn’t change just because you’re a small shop — but your margin for error is thinner. Many solos and small firms rely on cloud-based tools because they can’t host their own infrastructure. That’s fine, as long as you are careful.

Before pasting client facts into an AI tool, you must know whether it stores or reuses data, whether it trains on your inputs, and whether there’s an option for a “no training” or “enterprise” mode. When in doubt, prefer AI features built into reputable legal platforms (research tools, practice management systems, document automation suites) with clear confidentiality commitments, rather than generic consumer apps. On The Tech-Savvy Lawyer.Page, I hammer this point because solos cannot absorb the cost of a major data mishap the way some larger organizations can.

Legislative Inflation and Niche Opportunities for Smaller Firms 📜📈

Charlotin notes that every jurisdiction is “afflicted by legislative inflation” — more rules, more norms, more regulations. That means more interpretation, more disputes, more filings, and more need for lawyers. For solos and small-to-medium firms, this is an opportunity to carve out narrow niches and use AI to keep up with complex, evolving regimes that might otherwise be out of reach.

An AI-enabled solo can monitor regulatory changes, generate quick client alerts, and update templates far faster than before. Combined with targeted content marketing and SEO, this makes it possible to dominate specific micro-niches without a big marketing budget — something I frequently discuss on The Tech-Savvy Lawyer.Page when we talk about modern business development.

Entry-Level Work and the Solo/Small Pyramid 🧑‍🎓➡️⚖️

a Small-firm lawyer can use AI-powered legal technology to serve niche clients, track changing regulations, and deliver efficient legal services across a local market 🎯⚖️

Charlotin flags a serious concern: AI may change entry-level work. For big firms, that means rethinking associate leverage. In smaller firms, it means you may hire differently — or delay that first hire because AI picks up some of the routine drafting and research.

But Charlotin also notes that young lawyers are hired for reasons beyond their marginal drafting value — future partnership, signals to clients, bench strength for unpredictable surges. The same is true for small and mid-size firms. AI can handle some grunt work, but it can’t attend a community event, build a local reputation, or bring in referrals. If you use AI to free juniors from the most repetitive tasks, you can push them earlier into client-facing and business-building roles, which is exactly where smaller firms thrive.

Reorganization, Not Replacement — Especially for You 🔄

Charlotin closes by emphasizing that while the profession will look different in 2035, the lawyer is here to stay, and there will likely be more lawyers, not fewer. They will use AI — “they would be fools not to” — and they will charge for that value.

For solo and small-to-medium firms, the reorganization is already underway:

  • Routine drafting and research shift toward AI-assisted workflows.

  • Verification, judgment, and client counseling become even more central.

  • Niche expertise, responsiveness, and pricing flexibility become your competitive edge.

If you treat AI as a core part of your toolkit — governed by the ABA Model Rules and aligned with your business goals — you must position your firm not just to survive the AI wave, but to ride it. ⚖️🤖

Its been said many times by myself and others, lawyers must embrace AI into their practice of law or be left behind by those who do!

MTC: Summer Vacation Cybersecurity for Lawyers: Essential Tech Tips to Protect Client Data on the Go 🌴💻

/ The Tech-Savvy Lawyer.Page/

Lawyers: Never Skip Your VPN — Even on Vacation!

For many lawyers, “summer vacation” now means answering client emails from the beach house, reviewing drafts on the cabin deck, and jumping into Zoom hearings from hotel rooms. 🌞📶 Work rarely stays at the office, and our laptops and phones have become permanent carry‑ons even when we swear we are taking real time off. That always‑on reality turns every summer trip into a rolling cybersecurity and ethics test.

When you travel with devices that touch client matters, you are also traveling with privileged information, trade secrets, and personal data that fall squarely under ABA Model Rules 1.1 and 1.6. Competent representation now includes understanding the benefits and risks of the tech you use, and reasonable efforts to protect client confidentiality do not pause when you turn on your out‑of‑office message. The goal is not to shame lawyers for working on vacation; it is to make sure that when you inevitably do, your tech setup supports both your ethics and your relaxation. 😎

Pack Light: A “Minimum Data” Mindset for Vacation

The safest client data is the data that never leaves your office or your secure cloud in the first place. 1Password’s travel guidance and broader cybersecurity advice emphasize carrying only what you truly need when you hit the road. For summer trips, this translates into a deliberate “minimum data” mindset.

Before you leave, decide which matters genuinely might need your attention while you are away and which can safely wait until you return. Archive or unsync closed files and non‑urgent matters from your travel devices so they are not riding along to the resort, rental home, or national park lodge. For some practices, this may not be feasible when your current work may rely on prior drafts in similar cases.  But when feasible, consider using a “travel profile” or even a separate, cleaner laptop with access only to essential tools and a limited subset of client documents.

This approach directly supports your duty under Model Rule 1.6(c) to make reasonable efforts to prevent unauthorized access to client information by reducing the amount of sensitive material that could be exposed if a device is lost, stolen, or inspected. It also makes vacation feel less like moving your entire office to a different ZIP code, allowing you to focus on what really needs to be done and hopefully enjoy your vacation a little more.

Smart Lawyers Activate Travel Mode Before Every Flight.

Password Managers and Travel Mode: Your “Vacation Vault”

Strong, unique passwords are non‑negotiable for lawyers, and summer vacation does not change that. 1Password and similar tools exist precisely so you do not reuse easy‑to‑type passwords while you juggle boarding passes, sunscreen, and kids at the gate. (Note: I am a paying user of 1Password and have used their product for many years!  Also, I may earn a commission on any link used from this blog.)

Use a reputable password manager to generate and store complex, unique passwords for all your accounts—email, practice management, cloud storage, airlines, hotels, and rental car services. Store digital copies of your ID, bar card, and key travel documents in a secure vault instead of leaving them scattered across your inbox or photo roll. That saves time on the road and keeps sensitive personal and professional information encrypted.

For summer travel, 1Password’s Travel Mode is particularly valuable. You can mark certain vaults as “safe for travel” and remove more sensitive vaults from your devices with a single toggle before you leave. If your phone or laptop is inspected at a border or compromised in a crowded tourist spot, the most sensitive client logins and documents are simply not there. From an ethics perspective, that is a concrete, defensible step toward preserving client confidentiality.

Vacation Wi‑Fi, VPNs, and Hotspots: Don’t Trust the Beach House Network

The Wi‑Fi at your beach rental, resort, or lakeside Airbnb may be convenient, but it is rarely secure. Past guests often know the password, routers may be poorly configured, and attackers sometimes target popular tourist areas with rogue access points. For lawyers who are logging into email, document systems, or court platforms from these networks, that is a serious problem.

Secure Client Data Anywhere — Use Your Phone's Hotspot!

A Virtual Private Network (VPN) should be standard equipment for any lawyer working on vacation. A good VPN encrypts your traffic between your device and the VPN provider, making it much harder for eavesdroppers or compromised networks to capture sensitive information. Legal tech sources and security professionals consistently recommend that lawyers use reputable VPN providers with strong encryption and clear no‑logs policies.

In practice, treat any shared vacation Wi‑Fi as hostile. Turn on your VPN before accessing client email, cloud storage, or remote desktop tools. Better yet, follow The Tech‑Savvy Lawyer’s advice and rely on your smartphone’s hotspot for truly sensitive work; modern cellular networks often provide stronger encryption and a more reliable, if not many times faster, performance than hotel or rental Wi‑Fi. This level of care is rapidly becoming part of what “reasonable efforts” and basic technology competence mean for a traveling lawyer.

Device Hardening for Summer Travel: Encryption, Passcodes, and Biometrics

Summer travel is chaotic. Devices slide between airplane seat cushions, get forgotten in rideshares, or are grabbed from café tables. Full‑disk encryption and strong authentication are your last lines of defense when something goes wrong.

Know Your Rights when crossing international boarders: Encrypted Devices Protect Client Privilege

Make sure full‑disk encryption is enabled on every device you bring—FileVault on macOS, BitLocker on Windows, and built‑in encryption on modern iOS and Android devices. Use a long, alphanumeric passcode rather than a short PIN, and configure automatic locking after a brief period of inactivity so a phone left by the pool does not stay unlocked.

When you are approaching international borders, consider temporarily disabling biometrics so that unlocking your device requires a passcode instead of a fingerprint or facial scan. 1Password’s Travel Mode can again help by ensuring that the most sensitive client vaults are not present on the device at all if a border search occurs. If agents request access, clearly state that the device contains privileged material and that you are an attorney, in line with guidance that privilege should trigger additional care. These steps show you are actively trying to protect client confidentiality, not ignoring the issue.

Two-Factor Authentication and Account Hygiene on Holiday

Account compromise can ruin a vacation as quickly as a lost suitcase. Enable two‑factor authentication (2FA) on your critical accounts—email, practice management, document repositories, and your password manager—before you leave. App‑based authenticators and hardware keys are generally more reliable and secure than SMS codes, especially when you are roaming internationally or in areas with spotty service.

Review account recovery options in advance so that a locked‑out account does not turn into an emergency while you are halfway around the world. Monitor sign‑in alerts from your major accounts during and after the trip so you can quickly respond to any unfamiliar activity. This sort of “account hygiene” supports your duties of competence and confidentiality and gives you practical peace of mind while you try to enjoy some downtime.

A Simple Summer Travel Checklist for Lawyers

For lawyers with limited to moderate tech skills, the key is a repeatable routine rather than a complex security project. A short checklist before each summer trip can go a long way:

Every Traveling Lawyer should use a Pre-Trip Security Checklist!

  • Backup all devices, apply pending updates, and confirm full‑disk encryption is enabled.

  • Clean your devices by removing non‑essential client data and logging out of unused accounts.

  • Configure your password manager, mark travel‑safe vaults, and turn on Travel Mode if available.

  • Install and test your VPN, and verify you know how to enable your phone’s hotspot.

  • Confirm 2FA works from where you will be, especially if traveling abroad.

This checklist supports the ABA’s technology competence expectations and makes your vacations less stressful because you are not improvising security on hotel Wi‑Fi at midnight. It respects the reality that today’s lawyers must often take their work—and their devices—with them, while still honoring their core obligations to clients.

Summer is supposed to be restorative. With a bit of planning, smart use of tools like VPNs and 1Password’s Travel Mode, and an eye on your Model Rule duties, you can protect client data and your own peace of mind at the same time. 🌴🔐

Save Travels!!! 🌴💼✈️

MTC

MTC: Should Lawyers Host Their Own AI (or Hybrid AI)?

/ The Tech-Savvy Lawyer.Page/

Lawyers need to weigh hosting AI against ABA ethics in modern practice.

Lawyers are being pushed to decide whether to host their own artificial intelligence systems, rely entirely on cloud tools, or adopt a hybrid model that uses both local and cloud-based AI.🌐 At the same time, the American Bar Association’s Formal Opinion 512 makes clear that AI use sits squarely inside existing duties of competence, confidentiality, communication, candor, supervision, and fees under the Model Rules of Professional Conduct.

Perplexity’s new “Personal Computer” platform is a vivid example of how this can work in practice: it can run as an always‑on AI agent on a Mac mini, with access to local files, native apps, and cloud models, effectively turning a spare Mac into a dedicated digital worker. For lawyers, that kind of setup is appealing because a Mac mini can sit in the office as a sandboxed machine, disconnected from the main network and primary cloud file storage, to tightly control what AI can see and where client data goes.🧱

Why Lawyers Are Tempted to Host Their Own or Hybrid AI

There are several practical reasons lawyers and law firms are looking at running AI locally, or in a hybrid configuration that blends on‑premise and cloud tools:

  • Control over client data. Running AI on a dedicated Mac mini or similar device gives the firm direct control over where data is stored, which apps it can touch, and whether it ever leaves the office environment.

  • 24/7 “digital worker.” Platforms like Perplexity’s Personal Computer can operate continuously, orchestrating multiple models, moving between local files and the web, and even continuing work that you start on your phone while you are away.⚙️

  • Integration with local files and apps. A local or hybrid agent can read your document management folders, draft or revise motions in your word processor, and compare local files with online sources without sending entire client datasets to a general‑purpose cloud chatbot.

  • Potential cost and performance benefits. For some workflows, once the hardware is in place, local or hybrid AI can be more predictable in cost and latency than pure pay‑per‑token cloud services, especially when workloads are steady and repetitive.💸

From an ethics standpoint, these benefits map directly onto Model Rule 1.1’s requirement that lawyers maintain technological competence, which now includes a duty to understand both the capabilities and the limitations of AI tools they deploy in practice. If you can explain how your on‑premise or hybrid AI is configured, what data it sees, and why you chose that architecture, you are already moving toward satisfying that duty of competence in your technology choices.

ABA Model Rules: Key Considerations for Self‑Hosted and Hybrid AI

The ABA’s Formal Opinion 512 does not mandate or prohibit self‑hosting, but it does identify core ethical duties that must guide any AI deployment. For lawyers thinking about a sandboxed computer or hybrid AI, several Model Rules are especially important:

  • Model Rule 1.1 (Competence). You must understand enough about the AI system—local or cloud—to evaluate its reliability, security, and appropriate use, including risks like hallucinations, outdated information, and bias.

  • Model Rule 1.4 (Communication). In many situations, you may need to tell clients that you are using generative AI—and how—so they can make informed decisions about the representation.

  • Model Rule 1.5 (Fees). If you bill for AI‑assisted work, your fees still must be reasonable; you cannot simply pass through AI costs without regard to value, and you cannot charge as if the work were done entirely by hand.

  • Model Rule 1.6 (Confidentiality). Client information must be protected whether it is processed on‑premise or in the cloud, which means assessing encryption, access controls, logging, and whether AI vendors can use your data to train their models.

  • Model Rules 3.3 and 4.1 (Candor). You must not present AI‑generated work product that you have not verified, and you must correct any false or misleading statements to tribunals or others if AI contributes to those errors. 

  • Model Rules 5.1 and 5.3 (Supervision). Partners and managing lawyers must implement reasonable policies, training, and oversight to ensure that both lawyers and non‑lawyer staff use AI tools in compliance with ethical obligations. 

Formal Opinion 512 underscores that using generative AI does not reduce any of these obligations; rather, it adds new vectors for potential violations, including inadvertent disclosure through “self‑learning” tools that retain prompts to improve their models. A self‑hosted or sandboxed system can reduce some of these risks but does not eliminate the need for careful configuration, testing, and ongoing oversight.🔍

The Case for a Sandboxed Mac Mini or Similar Setup

Attorneys can test sandboxed computers for aba compliant, secure ai workflows.

A compelling middle road is to run your AI assistant as an always‑on agent on a dedicated, sandboxed machine—such as a Mac mini—segregated from your primary network and cloud storage, and then carefully curate what you allow it to access. Perplexity’s Personal Computer is designed to run 24/7 on a Mac mini, with secure sandboxed file creation, visible actions, and a kill switch, which can help align AI use with ethical expectations of control and auditability.🧑‍💻

For law practices with limited to moderate technology skills, this architecture offers practical advantages:

  • You can keep the AI’s working directory separate from your main document management system, copying in only those files you want it to analyze.

  • You can disconnect the sandbox machine from your firm’s primary VPN and file‑syncing tools, reducing the attack surface for client data.💽

  • You can log and periodically review what the AI agent is doing—what files it opens, what tasks it runs—to support your supervisory duties under Rules 5.1 and 5.3.

Because a personal computer can orchestrate teams of models and interact with local files and cloud services in one system, it embodies the hybrid AI idea: use local control for sensitive matters, and selectively rely on cloud models for broader research or drafting where appropriate safeguards are in place. That kind of hybrid strategy aligns well with the ABA’s focus on risk‑based analysis rather than a one‑size‑fits‑all prohibition.⚖️

Why Some Lawyers Should Not Host Their Own AI (At Least Not Yet)

Self‑hosting or running a hybrid computer‑based AI platform is not the right answer for every firm, and in some practices, it may actually increase risk. If your firm cannot realistically manage updates, patches, access controls, and backups for a dedicated AI machine, a reputable cloud provider with strong security and clear contractual commitments may be a safer option. Many lawyers underestimate the work required to securely configure and maintain specialized systems, which can lead to misconfigurations that expose confidential information or disable audit logs you may need for internal investigations or regulatory inquiries.

There is also a risk of overconfidence: having an AI agent running on your own hardware can create a false sense that everything processed on that machine is automatically safe and ethically sound.😬 Formal Opinion 512 warns that self‑learning AI tools can leak information across matters, even within a single firm, if they are not properly isolated; that risk exists whether the system runs on your computer or in the cloud. For many small firms and solos, the most ethical and efficient path may be to use vetted, well‑documented cloud AI tools under strict internal policies rather than trying to build and secure a home‑grown AI infrastructure.

Finally, if you lack even moderate technology literacy, jumping straight to a self‑hosted AI environment can distract from more foundational tasks like implementing a written AI policy, training staff on prompt hygiene, and integrating AI use into your conflict checks and quality control processes. In those cases, simpler deployments—such as using browser‑based AI tools with no client identifiers and careful manual review—can be more defensible under the Model Rules.

Practical Takeaways for Ethics‑Focused AI Adoption

an ETHICS-FOCUSED LAWYER CAN CONSIDER USING A HYBRID AI UNDER THE ABA Model Rules.

For lawyers and firms considering self‑hosted or hybrid AI, several practical steps emerge from the ABA guidance and from the new generation of self‑hosted AI platforms:

  • Start with a written AI policy that maps to Model Rules 1.1, 1.4, 1.5, 1.6, 3.3, 4.1, 5.1, and 5.3, that distinguishes between internal experimentation and client‑facing use.

  • If you deploy a sandboxed Mac mini or similar, define precisely which files and apps it may access, how it will be backed up, and who has administrative control.🔐

  • Treat AI outputs as drafts that require human review, not as final work product, and document your review in a way that aligns with your quality‑control procedures.

  • Train all users—not just IT—on how the Personal Computer or other AI system operates, what logs are available, and how to shut it down if it behaves unexpectedly.

  • Revisit your configuration and vendor contracts regularly, including any terms about data retention, training, and breach notification, to ensure ongoing compliance with Revised ethics guidance and state‑level opinions.📜

In that light, the question is not whether lawyers should or should not host their own AI, but whether they can do so in a way that satisfies the ABA’s expectations for competence, confidentiality, and supervision while delivering real value to clients. For some, a carefully configured sandboxed Mac mini running a hybrid AI agent will be a powerful, ethical accelerator; for others, the more responsible choice is to rely on well‑governed cloud tools until their internal capabilities catch up.

MTC

MTC: Smart Recording, Client Secrets, and HeyPocket: What Every Lawyer Needs to Know in 2026 📱⚖️

/ The Tech-Savvy Lawyer.Page/

Your smartphone and AI note‑taking tools now sit in on more client conversations than many junior associates.📱 They track where you are, who you talk to, and—if you let them—what you and your clients say in real time. For lawyers, that convenience comes with concrete privilege, confidentiality, and compliance risks that cannot be ignored.⚖️

Smart Devices, AI Note‑Takers, and Constant Surveillance 📍

Modern smart devices already log GPS coordinates, Wi‑Fi networks, Bluetooth connections, and app activity, creating a rich behavioral profile of you and your clients. Smart speakers and voice assistants listen for wake words, but they sometimes capture snippets of nearby conversations and send them to remote servers for processing. Fitness wearables, in‑car systems, and “always‑on” microphones further increase the volume of ambient data that can be collected.

Against that background, AI‑enabled recorders and summarizers like Pocket add a new layer: deliberate recording, transcription, and AI analysis of your conversations. Pocket is marketed as an AI‑powered “thought companion” and conversation recorder that creates searchable summaries and action items; by design it captures each conversation as its own object to improve clarity and support consent‑based use. For a busy lawyer, this is appealing—automatic notes, organized insights, and fewer missed follow‑ups.🤖

Yet the same capabilities that make HeyPocket useful also make it ethically sensitive. You are no longer just allowing your phone to passively log metadata; you are actively routing client speech through a third‑party AI stack that stores and processes that data, subject to its own privacy policy, security posture, and retention rules.

ABA Model Rules: Competence, Confidentiality, and Truthfulness ⚖️

The ABA Model Rules already give you a clear framework for evaluating whether and how to use tools like HeyPocket in practice.

  • Model Rule 1.1 (Competence) and Comment 8 require lawyers to understand “the benefits and risks associated with relevant technology.” In this context, “relevant technology” includes AI‑driven recorders, their data flows, and their vendor terms. Using a tool you do not understand can be a competence problem, not just a convenience choice.⚠️

  • Model Rule 1.6 (Confidentiality) requires “reasonable efforts” to prevent unauthorized access or disclosure of client information, which now includes avoiding casual sharing of contacts, calendars, and conversations with apps or cloud services that may let humans review or monetize the data. Several state bar opinions already warn that lawyers may not simply click “Allow” when apps request access to contacts or case‑related data unless they determine the information will not be viewed by humans or transferred without client consent.

  • ABA Formal Opinion 477R outlines a risk‑based analysis for electronic communications, asking you to weigh sensitivity, likelihood of disclosure, cost of safeguards, impact on representation, client expectations, and requests for enhanced security. That same method applies directly to AI recorders: you must ask whether routing privileged discussions through an AI vendor is “reasonable” given the stakes of the matter.

  • ABA Formal Opinion 498 specifically calls out always‑listening smart devices and recommends disabling them during client communications to avoid unnecessary exposure to third parties. If you would mute Alexa for an intake call, you should think even more carefully before inviting an AI recording service into the room.

Model Rules 5.1 and 5.3 (supervision of lawyers and non‑lawyer assistants) also matter. If you roll out AI note‑takers firmwide, you must implement policies, training, and oversight to ensure that lawyers, staff, and vendors handle client data consistently with confidentiality obligations. And Rule 8.4(c) (prohibition on dishonesty or deception) can be implicated if you secretly record clients, witnesses, or opposing parties even in one‑party consent jurisdictions; at least one ethics authority has treated undisclosed recordings as unethical despite being legal.

When AI Recordings and Smart Data Become Evidence 🧾

Courts have already embraced smart‑device data as evidence: location records, communication metadata, calendar entries, and app logs routinely appear in both criminal and civil litigation. Forensic tools can image a device and surface location histories, messages, and app‑generated artifacts that can reconstruct events with surprising precision.

AI tools are now entering that evidentiary picture. In United States v. Heppner (S.D.N.Y. 2026), a defendant’s use of a public AI platform to analyze his legal situation—and the documents he generated from those conversations—was held not to be protected by attorney‑client privilege or the work‑product doctrine. The court emphasized that the AI provider’s terms of service allowed collection and disclosure of prompts and outputs, so the defendant had no reasonable expectation of confidentiality.

The lesson for lawyers is direct: if you or your clients feed sensitive matter details into an AI recorder or note‑taker whose policies allow human review, secondary uses, or disclosure to third parties, privilege can be placed at risk. Vendor marketing language about security cannot substitute for a real review of actual terms, retention practices, and opt‑out mechanisms.

Using HeyPocket and Similar Tools Ethically in Practice 🎙️

Ethical use of HeyPocket and similar tools is possible, but it is not “plug‑and‑play.” You should treat these platforms more like outsourced e‑discovery vendors than like harmless productivity apps.✅

Key practical steps include:

  1. Perform a documented vendor risk review. Read the privacy policy and data‑processing terms to see what is recorded, how long it is stored, whether data is used to train models, and what rights you and your clients have to delete or export recordings. Confirm that access is logged and limited, and that data is encrypted in transit and at rest.

  2. Limit what you record. Default to not recording privileged conversations unless you have a clear, articulable reason, a defensible risk assessment, and—in higher‑risk matters—informed client consent. Use tools like HeyPocket in lower‑sensitivity contexts (internal debriefs, CLE notes, public presentations) rather than as an automatic recorder of all client meetings.

  3. Use explicit disclosures and consent. In many jurisdictions, recording requires the consent of all parties; even where only one‑party consent is required, an undisclosed recording can still trigger ethical concerns. A short, plain‑language explanation (“We use an AI note‑taking assistant that will record and transcribe this call; here is how we protect your information…”) respects client autonomy and supports informed consent under Model Rules 1.4 and 1.6.

  4. Segment data and control access. Configure firm accounts so that recordings are tied to matters, not to individuals’ personal devices wherever possible. Restrict who can review recordings and summaries, and enforce role‑based permissions consistent with Rule 5.1 and 5.3 obligations.

  5. Define bright‑line “no AI” categories. Certain matters—criminal defense, internal investigations, sensitive family or immigration cases, high‑value trade secret disputes—may warrant a categorical ban on AI recorders because the downside of any leak is catastrophic. Document these categories in your technology and confidentiality policies.

  6. Train your team and your clients. Explain to lawyers, staff, and key clients that not every AI interaction is confidential or privileged and that using consumer‑grade tools on their own may waive important protections. Encourage clients to avoid entering matter‑specific facts into public AI systems without discussing it with you first.

Approached this way, a tool like HeyPocket can be used as a controlled, auditable note‑taking assistant rather than a stealth surveillance risk. The ethical question is not “AI recorder: yes or no?” but “Under what conditions, with what safeguards, and in which matters, if any, is this tool a reasonable choice?”

Technology Competence as a Continuous Obligation 🚀

Technology will only grow more invasive, more ambient, and more tightly integrated with everyday law practice.📈 ABA and state bar guidance increasingly treats technology competence as an ongoing duty, tied directly to confidentiality, supervision, and even malpractice exposure. Smart devices and AI platforms are not going away, so opting out entirely is rarely realistic.

For lawyers with limited to moderate technical skills, the path forward is practical: build a short, repeatable checklist for evaluating tools; lean on reputable vendors with clear, lawyer‑friendly terms; seek help from cybersecurity professionals when stakes are high; and treat client confidentiality as the non‑negotiable anchor for every technology decision. When you do that, you can leverage products like HeyPocket to improve focus and memory while still honoring the core promise that underlies every engagement letter: your client’s secrets stay safe.🔐

MTC

MTC: Why 2026’s PC Price Hikes Put Law Firms at Risk 💻⚖️ (and Why Many Lawyers Are Quietly Switching to Macs)

/ The Tech-Savvy Lawyer.Page/

2026 PC price hikes threaten law firm budgets, performance, ethical compliance!

Lawyers and Legal Professionals, the warning signs have been flashing for more than a year: 2026 was never going to be a normal hardware refresh cycle for law firms. 💸 Economists tracking the global memory crunch and AI‑driven demand have been clear that PCs and laptops would see double‑digit price hikes as Dynamic Random-Access Memory (DRAM) and other components were redirected to lucrative data‑center workloads. For lawyers who depend on reliable, reasonably priced computers to run practice‑critical applications, this is not an abstract macroeconomic story; it is a direct hit to margins, access to justice, and even ethical compliance.

Recent moves by Microsoft have made the problem impossible to ignore. In mid‑April, Microsoft sharply raised prices across its Surface lineup, including the Surface Pro and Surface Laptop families that many lawyers and law firms rely on for their Windows‑based workflows. Entry‑level machines that once started under $1,000 now begin well above that mark, with some configurations jumping several hundred dollars over their launch prices. In some cases, high‑end Surface laptops now cost more than roughly comparable MacBook Pro configurations, erasing the longstanding assumption that Windows hardware is always the cheaper option.

Here, at the Tech‑Savvy Lawyer blog, I have been chronicling these developments for months, noting that major PC manufacturers signaled 15–20 percent price increases thanks to the AI‑driven memory squeeze and ongoing geopolitical tariff pressures. Those predictions are now a reality. For solo practitioners, small firms, and even midsize practices with thin IT budgets, the message is simple: if you are buying new Windows hardware in 2026, expect to pay more for the same level of performance, or accept underpowered machines that will age badly under AI‑enhanced workflows. 🧾

Apple, by contrast, has maneuvered itself into a relatively stronger position, even though it is not completely immune to component inflation. By tightly integrating Apple Silicon, storage, and other components under its own supply chain, Apple has been able to hold the line on some key configurations in a way that many PC Original Equipment Manufacturers (OEM) cannot. Commentators focusing on the legal market have already highlighted products like the MacBook Neo as examples of Apple using its vertical control to keep pricing relatively stable while competitors raise prices or quietly cut specifications. At the same time, Apple’s M‑series and M5‑generation chips continue to deliver strong performance per watt, especially for on‑device AI tasks and productivity applications, which matters when you are running multiple research tools, document management systems, videoconferencing platforms, and AI assistants on a single machine.

This does not mean Apple has avoided all price movement. Newer MacBook Air and MacBook Pro models with M5 chips have seen list price increases of around $ 100–$ 400, depending on configuration. However, when Microsoft’s updated Surface pricing pushes many midrange Windows machines into the same or higher price tiers than comparable Macs, the calculus for lawyers becomes more nuanced. A Windows laptop that used to be the “budget” choice can now be as expensive as, or more expensive than, a MacBook that delivers similar or better performance and longer support life.

MacBooks outperform rising-cost Windows laptops for lawyers seeking value, security!

For the legal sector, this convergence of price and performance has three important implications.

First, hardware purchasing is no longer a purely IT or “back office” concern. It is an integral part of risk management and client‑service strategy. The ABA Model Rules, particularly Model Rule 1.1 on competence and Comment 8 to that rule, make clear that lawyers have a duty to maintain competence in relevant technology. Using outdated, underpowered hardware can impair your ability to use secure videoconferencing, e‑discovery tools, AI‑driven research platforms, and document automation systems. That, in turn, can compromise both efficiency and the quality of representation. ⚖️ When price hikes push firms toward “cheap but weak” machines, they risk falling behind on this duty of technological competence.

Second, Model Rule 1.6 on confidentiality and related ethics opinions underscore the importance of protecting client information in digital environments. In an era when AI tools increasingly run on‑device, machines that can perform more work locally reduce reliance on cloud processing and third‑party data transfers. Apple’s integrated hardware and on‑device AI capabilities, combined with its strong security posture, can make Macs appealing from a confidentiality standpoint, especially for sensitive practices such as criminal defense, family law, and complex commercial litigation. That does not mean Windows machines are inherently less secure, but when high‑end, well‑secured Windows hardware costs significantly more than it used to, some firms may find that Apple’s offerings now deliver a stronger security‑to‑cost ratio.

Third, long‑term budgeting must adapt to the new reality that technology lifecycles will cost more. Economists and industry groups have projected that tariffs and component shortages could add hundreds of dollars to the average laptop by the time those costs are fully passed through. For law firms, this means that hardware refresh cycles should be planned more deliberately, with strategic staggering of purchases, careful evaluation of total cost of ownership, and perhaps a willingness to stretch the lifecycle of existing machines that still meet performance and security requirements. 🗓️

So where does this leave the practicing lawyer or small firm managing technology with limited internal IT support? 🤔

One practical approach is to stop treating the Windows versus Mac decision as a matter of habit and start treating it as a structured, documented evaluation. Build a simple matrix that compares specific models—such as a midrange Surface Laptop and a MacBook Air or MacBook Neo—on price, performance, storage, memory, security features, support life, and compatibility with your core practice software. Involving firm leadership in these decisions and tying them explicitly to ABA Model Rule 1.1 and 1.6 considerations will help demonstrate that you are exercising reasonable diligence in technology selection.

At the same time, lawyers should not assume that Apple is the default winner. Many legal‑industry tools, case management systems, and document workflows remain optimized for Windows, especially in litigation and specialized practice areas. If your practice depends heavily on Windows‑only software, the cost of moving to Macs (including virtualization or remote desktop solutions) may outweigh hardware price advantages. However, even in a Windows‑centric environment, the new pricing landscape may push firms to consider non‑Surface OEMs or to buy fewer, higher‑quality machines and share them across teams rather than treating laptops as disposable commodities.

Strategic legal tech planning improves performance, security, and long-term cost control for lawyers!

Ultimately, the predicted—and now visible—price hikes on PCs are not just a story about higher invoices from vendors. They are a stress test of how seriously law firms take technological competence, security, and long‑term planning. The firms that respond by proactively reassessing their hardware standards, considering platforms like Apple that have weathered the pricing storm more gracefully, and explicitly aligning purchasing decisions with ABA Model Rules will not only control costs; they will position themselves as trustworthy, efficient, and forward‑looking in a market where clients increasingly notice the difference. 🚀

MTC

When AI Falls Short - What Legal Professionals Must Know Before Relying on Microsoft Copilot and Similar Embedded AIs.

/ The Tech-Savvy Lawyer.Page/

AI Errors in Legal Practice Demand Vigilant Attorney Oversight!

Any reader of my blog should realize by now that artificial intelligence is no longer a novelty in law practice; it is embedded in research platforms, document automation, e‑discovery, and now in tools like Microsoft Copilot that appear inside the same Microsoft 365 ecosystem lawyers already live in. Yet Copilot’s own terms of use long described it as being “for entertainment purposes only,” while Microsoft has simultaneously marketed it as an enterprise‑grade productivity assistant and is now backing away from prominent Copilot buttons in several Windows 11 apps. For lawyers who must live under the ABA Model Rules of Professional Conduct, this tension is not an amusing footnote; it is an ethics problem waiting to happen. 

Microsoft’s Copilot terms have advised that the service “can make mistakes,” “may not work as intended,” and should not be relied on for important advice. At the same time, Microsoft has begun removing or rebranding Copilot buttons from Notepad, Snipping Tool, Photos, and Widgets in Windows 11, framing this move as an effort to reduce “unnecessary Copilot entry points” and be “more intentional” about where AI shows up. The features, or at least the underlying AI, are not disappearing entirely; they are simply becoming less conspicuous. For the practicing lawyer, the message is clear: powerful AI is being woven into everyday tools, but its creators still do not want you to rely on it the way you rely on a human associate. 🤖

when AI falls short, it is the lawyer—not the software vendor—who will have to answer to clients, courts, and regulators.

⚠️

when AI falls short, it is the lawyer—not the software vendor—who will have to answer to clients, courts, and regulators. ⚠️

That is precisely where the ABA Model Rules step in. Model Rule 1.1 requires competent representation and, through Comment 8, includes a duty to keep abreast of the benefits and risks of relevant technology. Using AI in law practice is increasingly seen as part of that competence obligation, but competence does not mean blind trust in unvetted outputs from a system whose own terms warn you not to rely on it. A lawyer who treats Copilot’s draft as a finished research memo, brief, or contract without independent verification risks violating the duty of competence every bit as much as a lawyer who never learned to use electronic research tools in the first place.

Model Rule 1.6 on confidentiality presents a second, and in many ways more pressing, concern. Generative AI systems may store, log, or otherwise use prompt content for analysis and improvement, which means uncritical copying and pasting of confidential client information into Copilot can create a non‑trivial risk of exposure. The ABA and commentators have emphasized that before entering client data into a generative AI tool, lawyers must assess whether that data could be disclosed or accessed by others, including through unintended re‑use in future outputs to different users. That risk analysis is not optional; it is part of your obligation to make reasonable efforts to prevent unauthorized access or disclosure.

Fake Citations from AI Tools can Threaten Accuracy and Legal Ethics!

Model Rules 5.1 and 5.3, which govern the responsibilities of partners, managers, supervisory lawyers, and non‑lawyer assistants, also apply to AI use. When you deploy Copilot in your firm, you are functionally introducing a new category of “assistant” whose work product must be supervised like that of a junior lawyer or paralegal. Policies, training, and review procedures are needed so that AI‑drafted content is consistently checked for accuracy, bias, hallucinations, and improper legal conclusions before it ever reaches a client, court, or counterparty. Ignoring Copilot’s disclaimers and Microsoft’s own hedging around reliability is, in effect, ignoring red flags that any reasonable supervising attorney would address.

Model Rule 1.4 on communication adds yet another dimension: transparency with clients about how you are using AI in their matters. Authorities interpreting the Model Rules have stressed that lawyers should keep clients reasonably informed, which includes explaining when and how AI tools are utilized to assist in their cases. This is particularly important where AI may affect cost, turnaround time, or the nature of the work performed, such as using Copilot to generate a first draft instead of assigning that task to an associate. Engagement letters and fee agreements are increasingly incorporating language about AI use, both to set expectations and to align with evolving ethical guidance.

The “for entertainment purposes only” language is more than a curiosity; it is a signal about allocation of risk. Microsoft’s disclaimer mirrors language historically used by psychic hotlines and other services seeking to avoid responsibility for inaccurate advice. When such a disclaimer is attached to a tool you might be tempted to use for legal analysis, the tool is telling you that you assume the risks of errors. Under the Model Rules, those risks ultimately translate into potential malpractice, sanctions, or disciplinary action if AI‑generated errors make their way into filed documents or client counseling.

Recent real‑world incidents involving lawyers who submitted briefs containing AI‑fabricated citations demonstrate how quickly misuse of generative AI can cross ethical lines. In those cases, the core problem was not that AI was used; it was that the lawyers failed to verify the content and then misrepresented fictitious cases as genuine authority to the court. That behavior implicates Model Rules 3.3 (candor toward the tribunal) and 8.4 (misconduct) along with competence. Copilot’s warnings about possible mistakes do not excuse a lawyer from the duty to check every citation, quote, and legal conclusion that AI produces before relying on it.

lawyers must assess whether that data could be disclosed or accessed by others

⚠️

lawyers must assess whether that data could be disclosed or accessed by others ⚠️

For practitioners with limited to moderate technology skills, the answer is not to abandon AI entirely, but to approach it with structured safeguards. A practical workflow might involve using Copilot to outline a research plan or draft a first pass at a contract clause, followed by standard legal research in trusted databases and rigorous review by a human lawyer before anything is finalized. Firms should configure Copilot and other AI tools in ways that minimize data exposure, such as disabling cross‑tenant learning, a feature that lets the system learn from patterns across multiple organizations’ environments, where possible, and restricting which matters and users can access certain features. Training sessions can focus less on technical jargon and more on concrete do’s and don’ts tied directly to the Model Rules, which is the language most lawyers already speak. 🧠

alawys Protect Client Confidentiality When Using AI in Modern Law Practice!

Governance is also essential. Written AI policies should address acceptable use cases, prohibited content for prompts, mandatory review standards, logging and auditing of AI‑assisted work, and incident response if an AI‑related error is discovered. These policies should be backed by regular training and by leadership that models appropriate use, rather than quietly delegating AI experimentation to the most tech‑savvy associates. Vendors’ evolving terms of use—including Microsoft’s move to revise its “entertainment purposes” language and adjust Copilot integration in Windows—should be monitored and incorporated into risk assessments over time.

In short, when AI falls short, it is the lawyer—not the software vendor—who will have to answer to clients, courts, and regulators. Copilot and similar tools can be valuable allies in a modern legal practice, but only if they are treated as fallible assistants whose work must be checked, not as oracles. The ABA Model Rules already provide the framework: competence, confidentiality, supervision, and honest communication. The task for today’s legal professionals is to apply that framework thoughtfully to AI, recognizing both its promise and its very real limitations before letting it anywhere near client work or court filings. ⚖️🤖