A law firm’s core asset is confidence kept. Clients hand over their most sensitive affairs on the understanding that the information stays protected. Modern AI is plainly useful to legal work — for transcription, document review, and research — but the usual route to it asks the firm to send client material to a third party’s cloud. For privileged and confidential information, that route is hard to square with a solicitor’s duties. Air-gapped AI offers the capability without the transfer.
The duties that constrain the choice
Three obligations bear directly on how a firm may use AI.
Legal professional privilege. Privileged communications between a client and their solicitor are protected from disclosure. The protection is the client’s, and the firm must take care not to waive or compromise it. Passing privileged material to an outside processor, however reputable, introduces a third party into the handling of information whose protection depends on it staying closely held.
The SRA Code of Conduct. Solicitors must keep the affairs of clients confidential unless disclosure is required or permitted by law or the client consents. They must also provide a competent service and protect client assets and information. Confidentiality is not a courtesy; it is a regulated obligation, and the firm answers to the Solicitors Regulation Authority for it.
UK-GDPR. Client files routinely contain personal data, sometimes special category data. The firm is the controller. Engaging a cloud AI service usually makes that provider a processor, which brings an Article 28 processor agreement, due diligence on the provider and its sub-processors, and, for any processing outside the UK, a lawful transfer mechanism with appropriate safeguards.
Each duty points the same way. The more the firm can keep client information within its own control, the easier these obligations are to meet, and the smaller the chance of a misstep.
What changes when the AI runs on the firm’s own hardware
Air-gapped deployment puts the models on hardware inside the firm’s own network. Client data is read and processed there and never crosses the boundary. That single fact addresses each duty in turn.
Privileged material is not disclosed to a third party, because no third party receives it. The information stays as closely held as it was before the AI was introduced. Confidentiality under the SRA Code is preserved by architecture rather than by a clause in a contract, which is a sturdier place to keep it.
Under UK-GDPR, the supplier never receives the firm’s data as a third party, so for the AI layer there is no processor to appoint, no sub-processor chain to audit, and no cross-border transfer to safeguard. The firm remains the sole controller of the data, with full control over retention, access, and audit. The duties of a controller still apply; the third-party processing layer, and its risks, simply do not arise.
Where it earns its place in practice
The work that benefits most is the high-volume, sensitive handling that firms would rather not send anywhere.
Transcription. Recorded client meetings, witness interviews, and hearings transcribed on the firm’s servers, with the audio and text staying in-house.
Document review and disclosure. Large document sets read, classified, and searched without uploading a single file to an outside service. Redaction runs under the firm’s own audit trail.
Research over the firm’s own material. Question-answering across the firm’s precedents, matters, and know-how, with nothing exposed to an external index.
In each case the firm gets the speed of modern tooling while the material it is most obliged to protect stays exactly where the obligation expects it to be.
A point worth stating plainly
On-premise AI does not relieve a firm of its duties. The firm is still the controller under UK-GDPR, still bound by the SRA Code, still responsible for protecting privilege. What air-gapped deployment removes is the third party in the middle. It takes the AI vendor out of the chain of custody for client information, and with it the agreements, audits, transfers, and trust that the vendor would otherwise require. The firm is left answering only for its own controls, which is the position a solicitor is best placed to stand behind.
For a firm weighing how to adopt AI without compromising the confidence its clients place in it, that is the practical case for keeping the processing in-house.
If you would like this set against your firm’s specific obligations, we can prepare a short security briefing for your COLP, COFA, or information-governance lead, and talk it through.