MTC: Lawyers and AI Oversight: What the VA’s Patient Safety Warning Teaches About Ethical Law Firm Technology Use! ⚖️🤖

/ The Tech-Savvy Lawyer.Page/

Human-in-the-loop is the point: Effective oversight happens where AI meets care—aligning clinical judgment, privacy, and compliance with real-world workflows.

The Department of Veterans Affairs’ experience with generative AI is not a distant government problem; it is a mirror held up to every law firm experimenting with AI tools for drafting, research, and client communication. I recently listened to an interview by Terry Gerton of the Federal News Network of Charyl Mason, Inspector General of the Department of Veterans Affairs, “VA rolled out new AI tools quickly, but without a system to catch mistakes, patient safety is on the line” and gained some insights on how lawyers can learn from this perhaps hastilly impliment AI program. VA clinicians are using AI chatbots to document visits and support clinical decisions, yet a federal watchdog has warned that there is no formal mechanism to identify, track, or resolve AI‑related risks—a “potential patient safety risk” created by speed without governance. In law, that same pattern translates into “potential client safety and justice risk,” because the core failure is identical: deploying powerful systems without a structured way to catch and correct their mistakes.

The oversight gap at the VA is striking. There is no standardized process for reporting AI‑related concerns, no feedback loop to detect patterns, and no clearly assigned responsibility for coordinating safety responses across the organization. Clinicians may have helpful tools, but the institution lacks the governance architecture that turns “helpful” into “reliably safe.” When law firms license AI research platforms, enable generative tools in email and document systems, or encourage staff to “try out” chatbots on live matters without written policies, risk registers, or escalation paths, they recreate that same governance vacuum. If no one measures hallucinations, data leakage, or embedded bias in outputs, risk management has given way to wishful thinking.

Existing ethics rules already tell us why that is unacceptable. Under ABA Model Rule 1.1, competence now includes understanding the capabilities and limitations of AI tools used in practice, or associating with someone who does. Model Rule 1.6 requires lawyers to critically evaluate what client information is fed into self‑learning systems and whether informed consent is required, particularly when providers reuse inputs for training. Model Rules 5.1, 5.2, and 5.3 extend these obligations across partners, supervising lawyers, and non‑lawyer staff: if a supervised lawyer or paraprofessional relies on AI in a way that undermines client protection, firm leadership cannot plausibly claim ignorance. And rules on candor to tribunals make clear that “the AI drafted it” is never a defense to filing inaccurate or fictitious authority.

Explaining the algorithm to decision-makers: Oversight means making AI risks understandable to judges, boards, and the public—clearly and credibly.

What the VA story adds is a vivid reminder that effective AI oversight is a system, not a slogan. The inspector general emphasized that AI can be “a helpful tool” only if it is paired with meaningful human engagement: defined review processes, clear routes for reporting concerns, and institutional learning from near misses. For law practice, that points directly toward structured workflows. AI‑assisted drafts should be treated as hypotheses, not answers. Reasonable human oversight includes verifying citations, checking quotations against original sources, stress‑testing legal conclusions, and documenting that review—especially in high‑stakes matters involving liberty, benefits, regulatory exposure, or professional discipline.

For lawyers with limited to moderate tech skills, this should not be discouraging; done correctly, AI governance actually makes technology more approachable. You do not need to understand model weights or training architectures to ask practical questions: What data does this tool see? When has it been wrong in the past? Who is responsible for catching those errors before they reach a client, a court, or an opposing party? Thoughtful prompts, standardized checklists for reviewing AI output, and clear sign‑off requirements are all well within reach of every practitioner.

The VA’s experience also highlights the importance of mapping AI uses and classifying their risk. In health care, certain AI use cases are obviously safety‑critical; in law, the parallel category includes anything that could affect a person’s freedom, immigration status, financial security, public benefits, or professional license. Those use cases merit heightened safeguards: tighter access control, narrower scoping of AI tasks, periodic sampling of outputs for quality, and specific training for the lawyers who use them. Importantly, this is not a “big‑law only” discipline. Solo and small‑firm lawyers can implement proportionate governance with simple written policies, matter‑level notes showing how AI was used, and explicit conversations with clients where appropriate.

Critically, AI does not dilute core professional responsibility. If a generative system inserts fictitious cases into a brief or subtly mischaracterizes a statute, the duty of candor and competence still rests squarely on the attorney who signs the work product. The VA continues to hold clinicians responsible for patient care decisions, even when AI is used as a support tool; the law should be no different. That reality should inform how lawyers describe AI use in engagement letters, how they supervise junior lawyers and staff, and how they respond when AI‑related concerns arise. In some situations, meeting ethical duties may require forthright client communication, corrective filings, and revisions to internal policies.

AI oversight starts at the desk: Lawyers must be able to interrogate model outputs, data quality, and risk signals—before technology impacts patient care.

The practical lesson from the VA’s AI warning is straightforward. The “human touch” in legal technology is not a nostalgic ideal; it is the safety mechanism that makes AI ethically usable at all. Lawyers who embrace AI while investing in governance—policies, training, and oversight calibrated to risk—will be best positioned to align with the ABA’s evolving guidance, satisfy courts and regulators, and preserve hard‑earned client trust. Those who treat AI as a magic upgrade and skip the hard work of oversight are, knowingly or not, accepting that their clients may become the test cases that reveal where the system fails. In a profession grounded in judgment, the real innovation is not adopting AI; it is designing a practice where human judgment still has the final word.

MTC

MTC: Everyday Tech, Extraordinary Evidence—Again: How Courts Are Punishing Fake Digital and AI Data ⚖️📱

/ The Tech-Savvy Lawyer.Page/

Check your Ai work - AI fraud can meet courtroom consequences.

In last month’s editorial, “Everyday Tech, Extraordinary Evidence,” we walked through how smartphones, dash cams, and wearables turned the Minnesota ICE shooting into a case study in modern evidence practice, from rapid preservation orders to multi‑angle video timelines.📱⚖️ We focused on the positive side: how deliberate intake, early preservation, and basic synchronization tools can turn ordinary devices into case‑winning proof.📹 This follow‑up tackles the other half of the equation—what happens when “evidence” itself is fake, AI‑generated, or simply unverified slop, and how courts are starting to respond with serious sanctions.⚠️

From Everyday Tech to Everyday Scrutiny

The original article urged you to treat phones and wearables as critical evidentiary tools, not afterthoughts: ask about devices at intake, cross‑reference GPS trails, and treat cars as rolling 360‑degree cameras.🚗⌚ We also highlighted the Minnesota Pretti shooting as an example of how rapid, court‑ordered preservation of video and other digital artifacts can stop crucial evidence from “disappearing” before the facts are fully understood.📹 Those core recommendations still stand—if anything, they are more urgent now that generative AI makes it easier to fabricate convincing “evidence” that never happened.🤖

The same tools that helped you build robust, data‑driven reconstructions—synchronized bystander clips, GPS logs, wearables showing movement or inactivity—are now under heightened scrutiny for authenticity.📊 Judges and opposing counsel are no longer satisfied with “the video speaks for itself”; they want to know who created it, how it was stored, whether metadata shows AI editing, and what steps counsel took to verify that the file is what it purports to be.📁

When “Evidence” Is Fake: Sanctions Arrive

We have moved past the hypothetical stage. Courts are now issuing sanctions—sometimes terminating sanctions—when parties present fake or AI‑generated “evidence” or unverified AI research.💥

These are not “techie” footnotes; they are vivid warnings that falsified or unverified digital and AI data can end careers and destroy cases.🚨

ABA Model Rules: The Safety Rails You Ignore at Your Peril

Train to verify—defend truth in the age of AI.

Your original everyday‑tech playbook already fits neatly within ABA Model Rule 1.1 and Comment 8’s duty of technological competence; the new sanctions landscape simply clarifies the stakes.📚

  • Rule 1.1 (Competence): You must understand the benefits and risks of relevant technology, which now clearly includes generative AI and deepfake tools.⚖️ Using AI to draft or “enhance” without checking the output is not a harmless shortcut—it is a competence problem.

  • Rule 1.6 (Confidentiality): Uploading client videos, wearable logs, or sensitive communications to consumer‑grade AI sites can expose them to unknown retention and training practices, risking confidentiality violations.🔐

  • Rule 3.3 (Candor to the Tribunal) and Rule 4.1 (Truthfulness): Presenting AI‑altered video or fake citations as if they were genuine is the very definition of misrepresentation, as the New York and California sanction orders make clear.⚠️ Even negligent failure to verify can be treated harshly once the court’s patience for AI excuses runs out.

  • Rules 5.1–5.3 (Supervision): Supervising lawyers must ensure that associates, law clerks, and vendors understand that AI outputs are starting points, not trustworthy final products, and that fake or manipulated digital evidence will not be tolerated.👥

Bridging Last Month’s Playbook With Today’s AI‑Risk Reality

In Last month’s editorial, we urged three practical habits: ask about devices, move fast on preservation, and build a vendor bench for extraction and authentication.📱⌚🚗 This month, the job is to wrap those habits in explicit AI‑risk controls that lawyers with modest tech skills can realistically follow.🧠

  1. Never treat AI as a silent co‑counsel. If you use AI to draft research, generate timelines, or “enhance” video, you must independently verify every factual assertion and citation, just as you would double‑check a new associate’s memo.📑 “The AI did it” is not a defense; courts have already said so.

  2. Preserve the original, disclose the enhancement. Our earlier advice to keep raw smartphone files and dash‑cam footage now needs one more step: if you use any enhancement (AI or otherwise), label it clearly and be prepared to explain what was done, why, and how you ensured that the content did not change.📹

  3. Use vendors and examiners as authenticity firewalls. Just as we suggested, bringing in digital forensics vendors to extract phone and wearable data, you should now consider them for authenticity challenges as well—especially where the opposing side may have incentives or tools to create deepfakes.🔍 A simple expert declaration that a file shows signs of AI manipulation can be the difference between a credibility battle and a terminating sanction.

  4. Train your team using real sanction orders. Nothing clarifies the risk like reading Judge Castel’s order in the ChatGPT‑citation case or Judge Kolakowski’s deepfake ruling in Mendones.⚖️ Incorporate those cases into short internal trainings and CLEs; they translate abstract “AI ethics” into concrete, courtroom‑tested consequences.

  5. Document your verification steps. For everyday tech evidence, a simple log—what files you received, how you checked metadata, whether you compared against other sources, which AI tools (if any) you used, and what you did to confirm their outputs—can demonstrate good faith if a judge later questions your process.📋

Final Thoughts: Authenticity as a First‑Class Question

be the rock star! know how to use ai responsibly in your work!

In the first editorial, the core message was that everyday devices are quietly turning into your best witnesses.📱⌚ The new baseline is that every such “witness” will be examined for signs of AI contamination, and you will be expected to have an answer when the court asks, “What did you do to make sure this is real?”🔎

Lawyers with limited to moderate tech skills do not need to reverse‑engineer neural networks or master forensic software. Instead, they must combine the practical habits from January’s piece—asking, preserving, synchronizing—with a disciplined refusal to outsource judgment to AI.⚖️ In an era of deepfakes and hallucinated case law, authenticity is no longer a niche evidentiary issue; it is the moral center of digital advocacy.✨

Handled wisely, your everyday tech strategy can still deliver “extraordinary evidence.” Handled carelessly, it can just as quickly produce extraordinary sanctions.🚨

MTC

MTC: Everyday Tech, Extraordinary Evidence: How Lawyers Can Turn Smartphones, Dash Cams, and Wearables Into Case‑Winning Proof After the Minnesota ICE Shooting 📱⚖️

/ The Tech-Savvy Lawyer.Page/

Smartphone evidence: Phone as Proof!

The recent fatal shooting of ICU nurse Alex Pretti by a federal immigration officer in Minneapolis has become a defining example of how everyday technology can reshape a high‑stakes legal narrative. 📹 Federal officials claimed Pretti “brandished” a weapon, yet layered cellphone videos from bystanders, later analyzed by major news outlets, appear to show an officer disarming him moments before multiple shots were fired while he was already on the ground. In a world where such encounters are documented from multiple angles, lawyers who ignore ubiquitous tech risk missing powerful, and sometimes exonerating, evidence.

Smartphones: The New Star Witness

In the Minneapolis shooting, multiple smartphone videos captured the encounter from different perspectives, and a visual analysis highlighted discrepancies between official statements and what appears on camera. One video reportedly shows an officer reaching into Pretti’s waistband, emerging with a handgun, and then, barely a second later, shots erupt as he lies prone on the sidewalk, still being fired upon. For litigators, this is not just news; it is a case study in how to treat smartphones as critical evidentiary tools, not afterthoughts.

Practical ways to leverage smartphone evidence include:

  • Identifying and preserving bystander footage early through public calls, client outreach, and subpoenas to platforms when appropriate.

  • Synchronizing multiple clips to create a unified timeline, revealing who did what, when, and from where.

  • Using frame‑by‑frame analysis to test or challenge claims about “brandishing,” “aggressive resistance,” or imminent threat, as occurred in the Pretti shooting controversy.

In civil rights, criminal defense, and personal‑injury practice, this kind of video can undercut self‑defense narratives, corroborate witness accounts, or demonstrate excessive force, all using tech your clients already carry every day. 📲

GPS Data and Location Trails: Quiet but Powerful Proof

The same smartphones that record video also log location data, which can quietly become as important as any eyewitness. Modern phones can provide time‑stamped GPS histories that help confirm where a client was, how long they stayed, and in some instances approximate movement speed—details that matter in shootings, traffic collisions, and kidnapping cases. Lawyers increasingly use this location data to:

Dash cam / cameras: Dashcam Truth!

  • Corroborate or challenge alibis by matching GPS trails with claimed timelines.

  • Reconstruct movement patterns in protest‑related incidents, showing whether someone approached officers or was simply present, as contested in the Minneapolis shooting narrative.

  • Support or refute claims that a vehicle was fleeing, chasing, or unlawfully following another party.

In complex matters with multiple parties, cross‑referencing GPS from several phones, plus vehicle telematics, can create a robust, data‑driven reconstruction that a fact‑finder can understand without a computer science degree.

Dash Cams and 360‑Degree Vehicle Video: Replaying the Scene

Cars now function as rolling surveillance systems. Many new vehicles ship with factory cameras, and after‑market 360‑degree dash‑cam systems are increasingly common, capturing impacts, near‑misses, and police encounters in real time. In a Minneapolis‑style protest environment, vehicle‑mounted cameras can document:

  • How a crowd formed, whether officers announced commands, and whether a driver accelerated or braked before an alleged assault.

  • The precise position of pedestrians or officers relative to a car at the time of a contested shooting.

  • Sound cues (shouts of “he’s got a gun!” or “where’s the gun?”) that provide crucial context to the video, like those reportedly heard in footage of the Pretti shooting.

For injury and civil rights litigators, requesting dash‑cam footage from all involved vehicles—clients, third parties, and law‑enforcement—should now be standard practice. 🚗 A single 360‑degree recording might capture the angle that police‑worn cameras miss or omit.

Wearables and Smartwatches: Biometrics as Evidence

GPS & wearables: Data Tells All!

Smartwatches and fitness trackers add a new dimension: heart‑rate, step counts, sleep data, and sometimes even blood‑oxygen metrics. In use‑of‑force incidents or violent encounters, this information can be unusually persuasive. Imagine:

  • A heart‑rate spike precisely at the time of an assault, followed by a sustained elevation that reinforces trauma testimony.

  • Step‑count and GPS data confirming that a client was running away, standing still, or immobilized as claimed.

  • Sleep‑pattern disruptions and activity changes supporting damages in emotional‑distress claims.

These devices effectively turn the body into a sensor network. When combined with phone video and location data, they help lawyers build narratives supported by objective, machine‑created logs rather than only human recollection. ⌚

Creative Strategies for Integrating Everyday Tech

To move from concept to courtroom, lawyers should adopt a deliberate strategy for everyday tech evidence:

  • Build intake questions that explicitly ask about phones, car cameras, smartwatches, home doorbell cameras, and even cloud backups.

  • Move quickly for preservation orders, as Minnesota officials did when a judge issued a temporary restraining order to prevent alteration or removal of shooting‑related evidence in the Pretti case.

  • Partner with reputable digital‑forensics professionals who can extract, authenticate, and, when needed, recover deleted or damaged files.

  • Prepare demonstrative exhibits that overlay video, GPS points, and timelines in a simple visual, so judges and juries understand the story without technical jargon.

The Pretti shooting also underscores the need to anticipate competing narratives: federal officials asserted he posed a threat, while video and witness accounts cast doubt on that framing, fueling protests and calls for accountability. Lawyers on all sides must learn to dissect everyday tech evidence critically—scrutinizing what it shows, what it omits, and how it fits with other proof.

Ethical and Practical Guardrails

Ethics-focused image: Ethics First!

With this power comes real ethical responsibility. Lawyers must align their use of everyday tech with core duties under the ABA Model Rules of Professional Conduct.

  • Competence (ABA Model Rule 1.1)
    Rule 1.1 requires “competent representation,” and Comment 8 now expressly includes a duty to keep abreast of the benefits and risks of relevant technology. When you rely on smartphone video, GPS logs, or wearable data, you must either develop sufficient understanding yourself or associate with or consult someone who does.

  • Confidentiality and Data Security (ABA Model Rule 1.6)
    Rule 1.6 obligates lawyers to make reasonable efforts to prevent unauthorized access to or disclosure of client information. This extends to sensitive video, location trails, and biometric data stored on phones, cloud accounts, or third‑party platforms. Lawyers should use secure storage, limit access, and, where appropriate, obtain informed consent about how such data will be used and shared.

  • Preservation and Integrity of Evidence (ABA Model Rules 3.4, 4.1, and related e‑discovery ethics)
    ABA ethics guidance and case law emphasize that lawyers must not unlawfully alter, destroy, or conceal evidence. That means clients should be instructed not to edit, trim, or “clean up” recordings, and that any forensic work should follow accepted chain‑of‑custody protocols.

  • Candor and Avoiding Cherry‑Picking (ABA Model Rule 3.3, 4.1)
    Rule 3.3 requires candor toward the tribunal, and Rule 4.1 prohibits knowingly making false statements of fact. Lawyers should present digital evidence in context, avoiding selective clips that distort timing, perspective, or sound. A holistic, transparent approach builds credibility and protects both the client and the profession.

  • Respect for Privacy and Non‑Clients (ABA Model Rule 4.4 and related guidance)
    Rule 4.4 governs respect for the rights of third parties, including their privacy interests. When you obtain bystander footage or data from non‑clients, you should consider minimizing unnecessary exposure of their identities and, where feasible, seek consent or redact sensitive information.

FINAL THOUGHTS

Handled with these rules in mind, everyday tech can reduce factual ambiguity and support more just outcomes. Misused, it can undermine trust, compromise admissibility, and trigger disciplinary scrutiny. ⚖️

How To: Redact PDF Documents Properly and Recover Data from Failed Redactions: A Guide for Lawyers After the DOJ Epstein Files Release “Leak”

/ The Tech-Savvy Lawyer.Page/

Lawyers must redact documents correctly!

The legal world is buzzing this week. The Department of Justice released the Jeffrey Epstein files on December 23, 2025. The New York Times reported on the disaster in their article, https://www.nytimes.com/2025/12/23/us/politics/epstein-files-redactions-doj.html. The DOJ attempted to hide names. They failed. They used improper redaction techniques. Tech-savvy readers simply copied the text from under the black boxes. They pasted it into Word. The names appeared instantly.

This is a nightmare for any attorney. You never want to be the "sender" in this scenario. You also need to know what to do if you are the "receiver." This “How to” guide explains the technology. It also covers the ethics. We will keep it simple.

The Mistake: Why "Black Boxes" Are Not Redactions

Digital documents have layers. Think of a PDF like a sandwich. The text is the meat in the middle. The white background is the bread. When you use a drawing tool to place a black rectangle over a name, you are just adding a topping. You are putting a slice of cheese on top of the meat.

The meat is still there.

The computer still sees the text. It just displays a black shape over it. This is what happened with the DOJ files. They likely used a "highlighter" tool set to black. Or they used a "shape" tool. This hides the visual text. It does not remove the data.

How to Properly Redact Documents

lawyers do you know how to redact documents properly?

You must remove the data. You cannot just hide it. You need to burn the “meat” in the sandwich (you are creating a “hole” in the document). Here is the process for Adobe Acrobat Pro. Most legal PDF software works similarly.

1. Use the Dedicated Redact Tool
Do not use the "Comment" tool. Do not use the "Draw" tool. Look for the tool named "Redact." It is usually in the "Protect" or "Tools" menu.

2. Mark for Redaction
Select the text you want to hide. The tool will outline it in red. This is a warning. It tells you, "I am about to delete this." It has not happened yet. You can still undo it.

3. Apply the Redaction
This is the critical step. You must click "Apply." The software will warn you. It will say this cannot be undone. Confirm it. The software now punches a hole in the digital paper. It fills that hole with black pixels. The text data is gone.

4. Sanitize and Remove Hidden Information
You are not done. Files have metadata. This includes author names. It includes edit history. It includes bookmarks. Acrobat will ask if you want to "Remove Hidden Information." Always say yes. This scrubs the invisible layers.

5. Save as a New File
Save the file with a new name. Use a suffix like "_REDACTED." Keep your original safe. Open the new file. Try to select the black box. Try to search for the hidden word. If you cannot find it, you are safe.

How to Recover Information from Improperly Redacted Files

Sometimes you receive a file. It looks redacted. You suspect it was done poorly. Here is how you can check.

Method 1: The Copy and Paste Trick
This is the easiest method. It works on the DOJ files.

  • Open the PDF.

  • Press Ctrl + A (Windows) or Cmd + A (Mac). (Or with your cursor, highlight the document area in question.) This selects all text.

  • Look at the redacted area. If you see blue highlighting shadow behind the black box, the text is there.

  • Press Ctrl + C (Copy).

  • Open Microsoft Word.

  • Press Ctrl + V (Paste).

  • Read the text. The black box will likely disappear. The "hidden" words will appear.

Method 2: The Search Trick

  • Open the PDF.

  • Press Ctrl + F to open the search bar.

  • Type a word you think is redacted.

  • If the viewer jumps to a black box, the text is still there.

Method 3: Adobe "Remove Hidden Info" Check

  • Open the file in Acrobat Pro.

  • Go to the "Redact" tool.

  • Look for "Sanitize Document" or "Remove Hidden Information."

  • Run the scan.

  • The report will list "Hidden Text" or "Overlapping Objects." This confirms data is hiding behind the visuals.

The Ethics: ABA Model Rules

Technology is easy. Ethics are hard. What happens when you send a bad file? What happens when you receive one?

For the Sender (The DOJ Scenario)
You have a duty of competence. ABA Model Rule 1.1 and 1.1 Comment 8 require you to understand your tools. You must know how to redact. Failing to use the software correctly is a competence failure.

You also have a duty of confidentiality. ABA Model Rule 1.6 requires you to protect client info. Sending a "masked" PDF instead of a "redacted" one violates this duty. It is a breach. You effectively handed the other side the keys to the safe.

For the Receiver (The Attorney Who Finds the Info)
You received the Epstein files. You copy-pasted. You found the names. Now what?

Lawyers, you have ethical obligations to redact documents competently.

ABA Model Rule 4.4(b) governs this. It addresses "Respect for Rights of Third Persons." It states: “A lawyer who receives a document... and knows or reasonably should know that the document was inadvertently sent shall promptly notify the sender.”

This is the key. Is a failed redaction "inadvertently sent"? Most ethics opinions say yes. The sender meant to hide it. They failed. They did not intend to send you the hidden text.

Do you have to stop reading?
The Model Rules do not explicitly say "stop reading." They only require you to notify the sender. However, many state jurisdictions go further. Some states require you to stop reading immediately. Some require you to delete the file.

The "Metadata" Exception
There is a nuance. ABA Formal Opinion 06-442 discusses metadata. It generally allows lawyers to look for hidden metadata. It views metadata as part of the file. However, "un-redacting" specific text is different. It is clearly privileged or sensitive.

The Bottom Line for the Receiver:

  1. Stop if you realize it is a mistake.

  2. Notify opposing counsel immediately. "I received your production. It appears the redactions are transparent. Please advise."

  3. Do not use it until the issue is resolved. A judge will likely disqualify you if you exploit an obvious error.

Do not be the DOJ. Learn your tools. Sanitize your documents. And if you catch the other side making a mistake, follow the rules. It helps to keep your license safe. ⚖️ 💻

🧪🎧 TSL Labs Bonus Podcast: Open vs. Closed AI — The Hidden Liability Trap in Your Firm ⚖️🤖

/ The Tech-Savvy Lawyer.Page/

Welcome to TSL Labs Podcast Experiment. 🧪🎧 In this special "Deep Dive" bonus episode, we strip away the hype surrounding Generative AI to expose a critical operational risk hiding in plain sight: the dangerous confusion between "Open" and "Closed" AI systems.

Featuring an engaging discussion between our Google Notebook AI hosts, this episode unpacks the "Swiss Army Knife vs. Scalpel" analogy that every managing partner needs to understand. We explore why the "Green Light" tools you pay for are fundamentally different from the "Red Light" public models your staff might be using—and why treating them the same could trigger an immediate breach of ABA Model Rule 5.3. From the "hidden crisis" of AI embedded in Microsoft 365 to the non-negotiable duty to supervise, this is the essential briefing for protecting client confidentiality in the age of algorithms.

In our conversation, we cover the following:

  • [00:00] – Introduction: The hidden danger of AI in law firms.

  • [01:00] – The "AI Gap": Why staff confuse efficiency with confidentiality.

  • [02:00] – The Green Light Zone: Defining secure, "Closed" AI systems (The Scalpel).

  • [03:45] – The Red Light Zone: Understanding "Open" Public LLMs (The Swiss Army Knife).

  • [04:45] – "Feeding the Beast": How public queries actively train the model for everyone else.

  • [05:45]The Duty to Supervise: ABA Model Rules 5.3 and 1.1[8] implications.

  • [07:00] – The Hidden Crisis: AI embedded in ubiquitous tools (Microsoft 365, Adobe, Zoom).

  • [09:00] – The Training Gap: Why digital natives assume all prompt boxes are safe.

  • [10:00] – Actionable Solutions: Auditing tools and the "Elevator vs. Private Room" analogy.

  • [12:00] – Hallucinations: Vendor liability vs. Professional negligence.

  • [14:00] – Conclusion: The final provocative thought on accidental breaches.

RESOURCES

Mentioned in the episode

Software & Cloud Services mentioned in the conversation

MTC: The Hidden Danger in Your Firm: Why We Must Teach the Difference Between “Open” and “Closed” AI!

/ The Tech-Savvy Lawyer.Page/

Does your staff understand the difference between “free” and “paid” aI? Your license could depend on it!

I sit on an advisory board for a school that trains paralegals. We meet to discuss curriculum. We talk about the future of legal support. In a recent meeting, a presentation by a private legal research company caught my attention. It stopped me cold. The topic was Artificial Intelligence. The focus was on use and efficiency. But something critical was missing.

The lesson did not distinguish between public-facing and private tools. It treated AI as a monolith. This is a dangerous oversimplification. It is a liability waiting to happen.

We are in a new era of legal technology. It is exciting. It is also perilous. The peril comes from confusion. Specifically, the confusion between paid, closed-system legal research tools and public-facing generative AI.

Your paralegals, law clerks, and staff use these tools. They use them to draft emails. They use them to summarize depositions. Do they know where that data goes? Do you?

The Two Worlds of AI

There are two distinct worlds of AI in our profession.

First, there is the world of "Closed" AI. These are the tools we pay for - i.e., Lexis+/Protege, Westlaw Precision, Co-Counsel, Harvey, vLex Vincent, etc. These platforms are built for lawyers. They are walled gardens. You pay a premium for them. (Always check the terms and conditions of your providers.) That premium buys you more than just access. It buys you privacy. It buys you security. When you upload a case file to Westlaw, it stays there. The AI analyzes it. It does not learn from it for the public. It does not share your client’s secrets with the world. The data remains yours. The confidentiality is baked in.

Then, there is the world of "Open" or "Public" AI. This is ChatGPT. This is Perplexity. This is Claude. These tools are miraculous. But they are also voracious learners.

When you type a query into the free version of ChatGPT, you are not just asking a question. You are training the model. You are feeding the beast. If a paralegal types, "Draft a motion to dismiss for John Doe, who is accused of embezzlement at [Specific Company]," that information leaves your firm. It enters a public dataset. It is no longer confidential.

This is the distinction that was missing from the lesson plan. It is the distinction that could cost you your license.

The Duty to Supervise

Do you and your staff know when you can and can’t use free AI in your legal work?

You might be thinking, "I don't use ChatGPT for client work, so I'm safe." You are wrong.

You are not the only one doing the work. Your staff is doing the work. Your paralegals are doing the work.

Under the ABA Model Rules of Professional Conduct, you are responsible for them. Look at Rule 5.3. It covers "Responsibilities Regarding Nonlawyer Assistance." It is unambiguous. You must make reasonable efforts to ensure your staff's conduct is compatible with your professional obligations.

If your paralegal breaches confidentiality using AI, it is your breach. If your associate hallucinates a case citation using a public LLM, it is your hallucination.

This connects directly to Rule 1.1, Comment 8. This represents the duty of technology competence. You cannot supervise what you do not understand. You must understand the risks associated with relevant technology. Today, that means understanding how Large Language Models (LLMs) handle data.

The "Hidden AI" Problem

I have discussed this on The Tech-Savvy Lawyer.Page Podcast. We call it the "Hidden AI" crisis. AI is creeping into tools we use every day. It is in Adobe. It is in Zoom. It is in Microsoft 365.

Public-facing AI is useful. I use it. I love it for marketing. I use it for brainstorming generic topics. I use it to clean up non-confidential text. But I never trust it with a client's name. I never trust it with a very specific fact pattern.

A paid legal research tool is different. It is a scalpel. It is precise. It is sterile. A public chatbot is a Swiss Army knife found on the sidewalk. It might work. But you don't know where it's been.

The Training Gap

The advisory board meeting revealed a gap. Schools are teaching students how to use AI. They are teaching prompts. They are teaching speed. They are not emphasizing the where.

The "where" matters. Where does the data go?

We must close this gap in our own firms. You cannot assume your staff knows the difference. To a digital native, a text box is a text box. They see a prompt window in Westlaw. They see a prompt window in ChatGPT. They look the same. They act the same.

They are not the same.

One protects you. The other exposes you.

A Practical Solution

I have written about this in my blog posts regarding AI ethics. The solution is not to ban AI. That is impossible. It is also foolish. AI is a competitive advantage.

* Always check the terms of use in your agreements with private platforms to determine if your client confidential data and PII are protected.

The solution is policies and training.

  1. Audit Your Tools. Know what you have. Do you have an enterprise license for ChatGPT? If so, your data might be private. If not, assume it is public.

  2. Train on the "Why." Don't just say "No." Explain the mechanism. Explain that public AI learns from inputs. Use the analogy of a confidential conversation in a crowded elevator versus a private conference room.

  3. Define "Open" vs. "Closed." Create a visual guide. List your "Green Light" tools (Westlaw, Lexis, etc.). List your "Red Light" tools for client data (Free ChatGPT, personal Gmail, etc.).

  4. Supervise Output. Review the work. AI hallucinates. Even paid tools can make mistakes. Public tools make up cases entirely. We have all seen the headlines. Don't be the next headline.

The Expert Advantage

The line between “free” and “paid” ai could be a matter of keeping your bar license!

On The Tech-Savvy Lawyer.Page, I often say that technology should make us better lawyers, not lazier ones.

Using Lexis+/Protege, Westlaw Precision, Co-Counsel, Harvey, vLex Vincent, etc. is about leveraging a curated, verified database. It is about relying on authority. Using a public LLM for legal research is about rolling the dice.

Your license is hard-earned. Your reputation is priceless. Do not risk them on a free chatbot.

The lesson from the advisory board was clear. The schools are trying to keep up. But the technology moves faster than the curriculum. It is up to us. We are the supervisors. We are the gatekeepers.

Take time this week. Gather your team. Ask them what tools they use. You might be surprised. Then, teach them the difference. Show them the risks.

Be the tech-savvy lawyer your clients deserve. Be the supervisor the Rules require.

The tools are here to stay. Let’s use them effectively. Let’s use them ethically. Let’s use them safely.

MTC