How to Evaluate Legal AI Without Falling for the Demo

The legal AI market is full of persuasive demos. Demos are cheap. Verification failures are expensive.

---

Legal AI tools promise efficiency gains, but most procurement processes still treat them like ordinary software. That is the first mistake.

Stanford research found hallucination rates between 17% and 33% for major legal research platforms. Those numbers alone should change how buyers behave. A system that can sound authoritative while being wrong is not something you evaluate with a cheerful demo call and a security questionnaire.

A serious evaluation process separates what the vendor says from what your workflow can survive.

---

The Hallucination Problem

The Stanford Legal RAG Hallucinations study, published in the Journal of Empirical Legal Studies in 2025, provides the most rigorous assessment of legal AI reliability to date. The findings are sobering:

• Lexis+ AI: 17-33% hallucination rate
• Westlaw AI-Assisted Research: 17-33% hallucination rate
• Ask Practical Law AI: 17-33% hallucination rate

The researchers defined hallucination as "a response that contains either incorrect information or a false assertion that a source supports a proposition." As Stanford HAI reported, this represents the first preregistered empirical evaluation of AI-driven legal research tools.

Vendor claims of "hallucination-free" systems are demonstrably overstated.

---

Types of Hallucinations

The Stanford study identifies two distinct failure modes:

Incorrect information: The AI describes the law incorrectly or makes factual errors.

Misgrounding: The AI describes the law correctly but cites a source that does not support the claims.

The second type may be more dangerous. A lawyer reviewing AI output might verify that the legal statement seems correct without independently confirming that the cited source actually supports it. Misgrounded citations pass a superficial review but fail detailed scrutiny.

---

Sycophancy Risk

AI tools tend to agree with user assumptions, even when those assumptions are incorrect. In legal research, this manifests as AI confirming what the user expects to find rather than surfacing contrary authority.

A lawyer who believes their client has a strong argument may receive AI output that reinforces this belief, even when the law is unfavorable. This sycophancy risk requires deliberate counter-prompting and adversarial testing.

---

Security Assessment Framework

Security vulnerabilities across AI legal tools remain a significant concern. A systematic security evaluation should cover:

Data handling: Where is client information processed? Who has access? How is it stored and for how long?

Vendor contracts: Do indemnification clauses specifically address autonomous actions and hallucinations resulting in financial loss?

Multi-jurisdictional compliance: For cloud-based tools, which jurisdiction's rules govern data processing?

Incident response: Does the vendor have documented protocols for AI-related errors or regulatory inquiries?

---

Accuracy Evaluation Methodology

Rather than relying on vendor benchmarks, firms should conduct independent testing:

Baseline testing: Run known queries with verified correct answers. Measure accuracy against ground truth.

Edge case testing: Test unusual fact patterns, minority jurisdictions, and recent statutory changes.

Adversarial testing: Deliberately include incorrect premises in prompts to evaluate whether the tool corrects errors or reinforces them.

Longitudinal monitoring: Accuracy may change as models are updated. Establish ongoing testing protocols.

---

Risk-Based Verification Layers

Verification requirements should scale with risk level:

Low risk (ideation): Spot checks acceptable. AI can suggest approaches, generate ideas for research directions.

Medium risk (drafting): Review for flow, logic, and general accuracy. Human editing expected.

High risk (citations, case analysis): Source verification mandatory. Each citation must be independently confirmed.

The Stanford data reinforces that mandatory human review substantially reduces AI-related errors in legal outputs.

---

Vendor Comparison Criteria

When evaluating competing tools, prioritize:

Transparency: Does the vendor disclose training data, model architecture, and known limitations?

Auditability: Can you trace AI outputs to source materials?

Integration: How does the tool fit existing workflows? What change management is required?

Support: What happens when the tool produces incorrect output? How are disputes handled?

Insurance: Does the vendor carry professional liability coverage? What are the policy limits?

---

Documentation Requirements

For malpractice defense and regulatory compliance, document:

• Tool selection rationale
• Testing methodology and results
• Usage policies and training provided
• Verification procedures
• Incident reports and remediation

This documentation establishes that the firm exercised reasonable care in adopting and using AI tools.

---

Regulatory Alignment

As of 2025, over 30 states have released AI-specific guidance, with 91% of state bars developing AI-specific rules or opinions. The ABA Commission released working group recommendations in February 2025 establishing attorney obligations.

Evaluation frameworks should align with:

• State bar guidance in relevant jurisdictions
• ABA Formal Opinion 512 (July 2024)
• NIST AI Risk Management Framework (for safe harbor in Colorado and Texas)

---

The Bottom Line

AI tool evaluation requires the same diligence you would apply to hiring a senior lateral or selecting an expert witness. The tool may be useful. It may even be excellent. But if you do not know where it fails, what review it requires, and how it fits your workflow, you are not buying capability. You are buying avoidable risk.

A systematic framework -- testing accuracy, evaluating security, scaling verification to risk, and documenting decisions -- is how you keep AI procurement from becoming theatre.

---

Key Takeaways

• Major legal AI platforms hallucinate between 17% and 33% of the time per Stanford research
• Two hallucination types: incorrect information and misgrounded citations (source does not support claim)
• Security vulnerabilities across legal AI tools remain a significant concern requiring systematic assessment
• Verification should scale with risk: spot checks for ideation, mandatory source verification for citations
• Mandatory human review substantially reduces AI-related errors in legal outputs

---

Sources

1. Stanford RegLab & HAI — "Hallucination-Free? Assessing the Reliability of Leading AI Legal Research Tools" (2025): Preregistered empirical evaluation finding 17-33% hallucination rates across major legal AI platforms. onlinelibrary.wiley.com

2. Stanford HAI — "AI on Trial: Legal Models Hallucinate in 1 Out of 6 or More Benchmarking Queries" (2024): Summary of the first preregistered study of AI-driven legal research tools. hai.stanford.edu

3. ABA — "Formal Opinion 512: Generative Artificial Intelligence Tools" (2024): National baseline for attorney ethical obligations when using AI tools. americanbar.org

4. NIST — "AI Risk Management Framework" (2023): Voluntary framework referenced by Colorado and Texas safe harbor provisions. nist.gov

5. Justia — "AI and Attorney Ethics Rules: 50-State Survey" (2025): Comprehensive tracker of state bar AI guidance across US jurisdictions. justia.com

---

TwinLadder Blog | Tool Evaluations | 2024