When AI Notetakers Enter Your Client Meetings: Ethical Duties and Risks for Lawyers

The rise of AI‑driven notetaking in virtual law practice offers undeniable efficiency gains, from instant transcripts to searchable summaries that aid accessibility and case preparation. Yet, these benefits collide with the core tenets of legal ethics: confidentiality, competence, and candor. When an AI service captures a privileged conversation, the data often travels to cloud servers where vendors may retain it for model training, creating a potential privilege waiver and exposing sensitive information to discovery. Lawyers must therefore treat AI tools as extensions of their practice, conducting the same diligence they would for any third‑party service, including reviewing data‑retention policies, encryption standards, and consent mechanisms.

New York City’s Formal Opinion 2025‑6, while not binding in Illinois, mirrors the state’s own professional conduct rules, emphasizing informed consent and vendor vetting. Illinois Rule 5.3 extends supervisory responsibilities to technology, obligating attorneys to evaluate AI platforms for security flaws and compliance with the Biometric Information Privacy Act. The ARDC’s three‑step AI framework—classify sensitivity, determine internal versus external tools, and assess safeguards—provides a pragmatic checklist. By embedding these steps into engagement letters and firm policies, lawyers can mitigate the risk of inadvertent disclosures and preserve the sanctity of the attorney‑client relationship.

Practically, firms should inventory default AI features in Zoom, Teams, and other platforms, disabling them until a risk assessment is completed. When clients request their own AI tools, attorneys must negotiate clear terms: recordings must be shared, reviewed, and corrected before reliance, and any vendor‑level data use must be prohibited. Failure to enforce these protocols can trigger violations of Illinois’s eavesdropping statute, which mandates all‑party consent, and BIPA, which imposes strict biometric data controls. Proactive governance not only safeguards client trust but also shields law firms from costly malpractice claims and disciplinary sanctions.