The question is whether lawyers should be using “AI Browsers” right now?

AI browsers represent a fundamental shift from traditional web browsing. Unlike Chrome or Firefox with AI features bolted on, dedicated AI browsers like ChatGPT Atlas, Perplexity Comet, DIA Browser, and Strawberry Browser were built from the ground up around artificial intelligence. These tools don't just help you browse—they browse for you, making autonomous decisions, filling forms, booking reservations, and completing multi-step tasks through "agentic" capabilities that require extensive access to your data.

For lawyers, this autonomy creates unacceptable confidentiality risks. Security researchers discovered that AI browsers suffer from critical "prompt injection" vulnerabilities where malicious code hidden on websites tricks the AI into stealing emails, accessing calendars, and exfiltrating confidential files. When you ask an AI browser to "summarize this page," it processes both visible content and invisible malicious instructions without distinguishing between them.

The AI Training Threat

Most AI browsers automatically train on your browsing data unless you manually opt out. This means privileged attorney-client communications, case research, and client information could become embedded in AI training datasets permanently. Once data trains an AI model, removing it becomes impossible—it persists indefinitely in the neural network's learned patterns.

ChatGPT Atlas defaults to excluding browsing content from training, but users must verify this setting remains disabled in Data Controls. Perplexity Comet automatically opts users into AI training on browsing data and search queries unless you manually disable the Data Retention toggle in Account Settings. Strawberry Browser and DIA Browser have unclear or unknown training policies, making them inappropriate for client work. Samsung banned ChatGPT after employees accidentally exposed proprietary code this way.

The Leading Dedicated AI Browsers

Perplexity Comet positions itself as a research-focused "answer engine" with citation-first design. However, security researchers at Brave documented severe vulnerabilities including screenshot attacks where nearly invisible text tricks the AI into executing unauthorized commands. Comet's autonomous agent can navigate websites, fill shopping carts, and cancel subscriptions independently—impressive for productivity but catastrophic for confidentiality when exploited.

ChatGPT Atlas integrates OpenAI's models into a Chromium-based browser with Agent Mode for automating tasks. Currently macOS-only with other platforms coming soon, Atlas provides contextual memory across browsing sessions and can access connected services like email and calendars. While OpenAI implements some safeguards, security experts emphasize no AI agent browser has adequate protections for confidential information.

Strawberry Browser, developed by a Swedish team, focuses on multi-agent automation with "AI Companions" that learn your patterns and work across multiple websites simultaneously. Still in alpha/beta stage at $30/month, Strawberry demonstrates extensive autonomous capabilities but remains too experimental for legal practice.

DIA Browser from The Browser Company redesigns browsing around AI-powered tab organization and workflow memory. In limited beta, DIA uses AI to remember research habits and enable conversational interaction with open tabs. The experimental nature and unclear privacy policies make it inappropriate for client work.

Opera Neon and emerging alternatives (Genspark, Fellou, Poly, Quetta) remain in early stages with insufficient track records or unclear privacy practices for legal professional evaluation.

Critical Recommendations for Lawyers

Avoid all AI agent browsers for client-related work. PCMag's extensive testing concluded: "Given their dubious value, poor performance, and privacy concerns, I don't think AI web browsers are worth using" over traditional alternatives.

If you experiment with AI browsers personally, do so only for non-confidential tasks. Disable all training features immediately. Use separate devices that never access client files, emails, or practice management systems. Understand that prompt injection attacks remain threats regardless of privacy settings.

Traditional browsers (Firefox, Brave, Safari) with proper privacy configurations remain your only safe option. Your Rule 1.6 obligations require recognizing when new technology poses unacceptable confidentiality risks.

Lawyers should know what risks come with using AI Browsers!

Mobile Device Management is an essential concept for lawyers.

Mobile Device Management (MDM) has become essential for law firms navigating today's mobile-first legal landscape. As attorneys increasingly access confidential client information from smartphones, tablets, and laptops outside traditional office settings, MDM technology provides the security framework necessary to protect sensitive data while enabling productive remote work.

Understanding MDM in Legal Practice

MDM refers to software that allows IT teams to remotely manage, secure, and support mobile devices used across an organization. For law firms, this technology provides centralized control to enforce password requirements, encrypt data, install security updates, locate devices, and remotely lock or wipe lost or stolen devices. These capabilities directly address the ethical obligations attorneys face under the ABA Model Rules of Professional Conduct.

Ethical Obligations Drive MDM Adoption

The legal profession faces unique ethical requirements regarding technology use. ABA Model Rule 1.1 requires lawyers to maintain technological competence, including understanding "the benefits and risks associated with relevant technology". Rule 1.6 mandates that lawyers "make reasonable efforts to prevent the inadvertent or unauthorized disclosure of, or unauthorized access to, information relating to the representation of a client".

ABA Formal Opinion 498 specifically addresses virtual practice considerations. The opinion cautions that lawyers should disable listening capabilities of smart speakers and virtual assistants while discussing client matters unless the technology assists the law practice. This guidance underscores the importance of thoughtful technology implementation in legal practice.

Core MDM Features for Law Firms

Device encryption forms the foundation of MDM security. All client data should be encrypted both in transit and at rest, with granular permissions determining who accesses specific information. Remote wipe capabilities allow immediate data deletion when devices are lost or stolen, preventing unauthorized access to sensitive case information.

Application management enables IT teams to control which applications can access firm resources. Maintaining an approved application list and regularly scanning for vulnerable or unauthorized applications reduces security risks. Containerization separates personal and professional data, ensuring client information remains isolated and secure even if the device is compromised.

Compliance and Monitoring Benefits

lawyers, do you know where your mobile devices are?

MDM solutions help law firms maintain compliance with ABA guidelines, state bar requirements, and privacy laws. The systems generate detailed logs and reports on device activity, which prove vital during audits or internal investigations. Continuous compliance monitoring ensures devices meet security standards while automated checks flag devices falling below required security levels.

Implementation Best Practices

Successful MDM implementation requires establishing clear policies outlining device eligibility, security requirements, and user responsibilities. Firms should enforce device enrollment and compliance, requiring all users to register devices before accessing sensitive systems. Multi-factor authentication enhances security for sensitive data access.

Regular training ensures staff understand security expectations and compliance requirements. Automated software updates and security patches keep devices protected against evolving threats. Role-based access controls prevent unauthorized access to corporate resources by assigning permissions based on job functions.

MDM technology has evolved from optional convenience to ethical necessity. Law firms that implement comprehensive MDM strategies protect client confidentiality, meet professional obligations, and maintain competitive advantage in an increasingly mobile legal marketplace.

Keep Your Practice Safe - Stay Tech Savvy!!!

Disclaimer

The Tech‑Savvy Lawyer.Page blog and podcast are for informational and educational purposes only. The content reflects the insights and opinions of a legal professional with extensive experience in law and technology. Nothing published on this site or shared through the podcast should be construed as legal advice, nor does it create any attorney‑client relationship.

Readers and listeners should consult a licensed attorney for legal advice tailored to their specific circumstances. References to software, services, or products are provided for discussion purposes only and do not constitute endorsements, guarantees, or warranties.

Blog

"How To": Lawyers Choosing the Right “AI Browsers” While Protecting Client Data: Complete Guide 2025 🔒⚖️

📖 Word ("Phrase") of the Week: Mobile Device Management: Essential Security for Today's Law Practice 📱🔒

The Tech Savvy Lawyer

Disclaimer

Disclosure