Every banking lawyer knows the feeling of the moving target. A consumer-protection rule is finalized in one quarter, an interpretive letter reframes it the next, and a supervisory bulletin quietly shifts the goalposts before the first disclosure has even cleared internal review. The legal and compliance function inside a modern bank does not write on a blank page; it writes against a current. For most of the past fifteen years, the only way to keep pace was to add bodies, hours, and outside counsel. That equation is now being rewritten by a new generation of AI research and drafting systems that read the rulebook, ground their answers in precedent, and produce first drafts of disclosures, policies, and contracts in minutes rather than days.
The promise is genuine, and so is the peril. The same technology that can summarize a 900-page rulemaking can also invent a citation that never existed. Understanding both halves of that story, the productivity unlock and the accuracy risk, is the central task for any bank general counsel deciding how far, and how fast, to lean in.
The Old Way: Drowning in the Rulebook
The legacy model of bank legal work was defined by volume and manual labor. When the Dodd-Frank Wall Street Reform and Consumer Protection Act was signed into law in 2010, it roughly doubled the number of regulations applied to U.S. banks and, by one estimate, raised their annual compliance costs by more than $50 billion a year (Baker Institute). The statute itself ran to hundreds of pages, but the rulemakings it spawned, finalized in waves over a decade, multiplied that text many times over. Tracking which provisions were live, which were proposed, and which had been amended became a full-time discipline.
The wider picture is no less daunting. Thomson Reuters Regulatory Intelligence counted 61,228 discrete regulatory events worldwide in 2022, actions or changes issued by governing bodies, generated by 1,374 regulators across 190 countries, the equivalent of 234 regulatory alerts every single day (THL). A separate analysis by the consultancy Protiviti put the same figure at an average of 234 events per day and noted that the nature of regulation had expanded well beyond traditional safety-and-soundness concerns into conduct, culture, data privacy, and emerging technology (Protiviti).
Against that flow, the human workflow was painfully linear. A compliance lawyer would read the alert, locate the relevant statute and prior guidance, cross-reference internal precedent and firm standards, and then draft or amend a policy by hand, often re-doing work that a colleague had already completed elsewhere in the institution. The cost of that duplication is measurable: industry research estimates the average legal department spends roughly $162,000 a year paying lawyers to redo work already performed by outside firms (Gartner, via BizTechReports).
A rising tide of regulatory change
Global regulatory events tracked annually by regulatory-intelligence services
Annual alert volumes derived from Thomson Reuters Cost of Compliance reporting as summarized by Risk & Compliance Magazine and THL. 2021 ≈ 64,152 events (246/day); 2022 ≈ 61,228 events (234/day).
The Shift: Machines That Read the Rules
What changed was the arrival of large language models capable of being grounded in authoritative legal content rather than open-web text. The category moved fast. In its 2024 survey of more than 2,200 legal, tax, and risk professionals, Thomson Reuters Institute found that 63% were already using AI-powered tools as a starting point for tasks, with research, summarization, and drafting cited as the most common use cases, and 77% expected AI to have a high or transformational impact on their work within five years (Thomson Reuters).
By the following year, adoption had deepened rather than plateaued. In the 2025 edition of the same study, drawn from 2,275 global professionals, 80% of law-firm respondents said they expected AI to fundamentally alter how their business operates, 46% reported their organization had invested in new AI-powered technology in the prior twelve months, and 30% said they were already using AI regularly to start or edit their work (Thomson Reuters Institute). A parallel professional-services report found the share of organizations actively using generative AI nearly doubled to 22% in 2025 from 12% in 2024, with another 50% planning or evaluating deployment (Thomson Reuters).
The regulatory tide never slowed. What changed is that legal teams finally got a vessel fast enough to ride it.
The economics are what make the shift stick. Professionals surveyed in 2024 expected AI to free up four hours a week, roughly 200 hours a year, which for a U.S. lawyer could translate to nearly $100,000 in additional billable time (Thomson Reuters). A year later those expectations had risen to five hours a week, or about 240 hours annually, worth an average of $19,000 per professional and a combined $32 billion across the U.S. legal and tax-and-accounting sectors (Thomson Reuters).
Expected weekly time savings keep climbing
Hours per week professionals expect AI to free up, by survey year and horizon
2024 survey projected 4 hours next year, 8 hours in three years, 12 hours in five years; 2025 survey raised the near-term figure to 5 hours per week. Source: Thomson Reuters Institute.
Where banks and legal teams point the technology
Share of legal-industry AI users citing each use case
Top reported generative-AI use cases among legal and government users, with six cases cited by 50% or more of users. Source: Thomson Reuters 2025 Generative AI in Professional Services Report.
What It Looks Like Now: From Alert to Answer
Inside a bank legal function today, the technology tends to surface in three overlapping workflows. The first is regulatory research across evolving rules. Where a lawyer once manually traced how a rule had changed over multiple amendments, grounded research systems now ingest the relevant corpus, statutes, final rules, interpretive guidance, and the bank's own prior positions, and return a synthesized, citation-linked answer to a plain-language question. The most mature platforms verify outputs against curated legal databases rather than the open internet, an architecture often described as retrieval-augmented generation.
The second is drafting disclosures, policies, and contracts. A first draft of a deposit-account disclosure update, a revised vendor-risk policy, or a standard credit agreement can be generated from a prompt that references the controlling rule and the institution's house style, then refined by a human lawyer. Industry surveys consistently rank drafting and document review among the highest-value applications, with text-heavy work showing the largest efficiency gains (Everlaw / Thomson Reuters data).
The third is precedent-grounded compliance answers, the everyday question-and-answer traffic from business lines that used to clog a legal inbox. Generative tools increasingly handle these as a self-service layer, surfacing the controlling authority and the institution's settled interpretation so that routine questions never reach a senior lawyer at all.
| Task | The legacy approach | The grounded-AI approach |
|---|---|---|
| Tracking rule changes | Manual review of 200+ daily alerts | Continuous ingestion with change-flagging and summaries |
| Legal research | Hours of keyword search and reading | Plain-language query, citation-linked synthesis |
| Disclosure / policy drafting | Drafted from scratch or stale templates | AI first draft grounded in current rule + firm standard |
| Routine compliance Q&A | Escalated to senior counsel | Self-service answers with cited authority |
| Verification | Implicit in the lawyer's own research | Explicit, mandatory human review of every output |
That last row is not optional. The accuracy risk is real and well-documented. The first preregistered empirical evaluation of leading AI legal-research tools, conducted by Stanford's RegLab and Institute for Human-Centered AI, found that purpose-built legal research systems still hallucinated between 17% and 33% of the time, better than a general-purpose chatbot, but far from the "hallucination-free" performance some marketing implied (Stanford RegLab).
The courtroom consequences are mounting. A public database maintained by researcher Damien Charlotin had catalogued roughly 712 legal decisions worldwide involving hallucinated AI content by the end of 2025, with about 90% of those rulings written in 2025 alone (Bloomberg Law). The pattern began with a now-infamous 2023 case in which a Manhattan federal judge fined two lawyers $5,000 for citing cases that AI had invented (The Straits Times). For a bank, the analog is not a fabricated case citation but a disclosure that misstates a rule, or a policy grounded in guidance that has since been withdrawn, errors that carry supervisory and reputational weight.
The accuracy gap is not yet closed
Documented court decisions worldwide involving AI-hallucinated content
Cumulative tally from the AI Hallucination Cases database; roughly 90% of the ~712 decisions tracked through year-end 2025 were issued in 2025. Source: Bloomberg Law citing the Charlotin database.
The Next Few Years: Verification Becomes the Product
The trajectory is clear even if the timeline is not. The research firm Gartner projects that advances in generative AI and automation could lift legal-department productivity by 10% to 20% over the next two to five years, that 64% of legal and compliance leaders plan to increase spending on legal technology, and that the global legal-technology market could double to roughly $50 billion by 2027 as a result of generative AI (Gartner). The same firm forecasts that by 2029 roughly half of contract reviews could be handled by self-service systems, with only about one in ten escalated to a human (Point Blank, citing Gartner).
For banking specifically, three developments are worth watching. First, real-time regulatory mapping: systems that connect a newly issued rule to every affected disclosure, policy, and contract clause in an institution's library, then propose the precise edits required. Second, continuous compliance drafting, in which policies are treated as living documents that update as the underlying authority moves. Third, and most important, the rise of verification-first architecture, tools whose primary value is not generating text but proving that generated text is correct, complete, and current.
| Indicator | Projection | Source |
|---|---|---|
| Legal-department productivity lift | +10% to 20% over 2 to 5 years | Gartner |
| Legal-technology market size | ~$50B by 2027 (roughly doubling) | Gartner |
| Leaders increasing legal-tech spend | 64% | Gartner |
| Contract reviews via self-service | ~50% by 2029 | Gartner |
| Annual professional time savings | ~240 hours / $19,000 value | Thomson Reuters |
None of this displaces the lawyer. Banking remains a domain where final judgment carries personal and institutional liability, and surveyed professionals overwhelmingly agree: in the 2024 study, 95% said it would be a step too far for AI to represent clients or make final decisions on complex matters (Thomson Reuters). The likely shape of the next few years is therefore not fewer lawyers but differently deployed ones, fewer hours spent locating and transcribing the rule, more spent on judgment, escalation, and the verification that grounded systems make explicit rather than implicit.
Adoption deepened sharply between 2024 and 2025
Reported organizational use of generative AI in professional-services settings
Active organizational use rose from 12% (2024) to 22% (2025); regular individual use reached 30% and prior-year investment 46% in 2025. Sources: Thomson Reuters 2025 report; Thomson Reuters Institute.
The Bottom Line
Bank legal work was built for a slower world, one in which a lawyer could read the rule, draft the response, and reasonably hope the ground would not shift before the ink dried. That world is gone, replaced by a regime of hundreds of daily regulatory signals and compliance costs measured in the tens of billions. AI research and drafting tools are the first technology genuinely scaled to that velocity, and the adoption data shows the profession knows it. But the lesson of the courtroom sanctions and the Stanford findings is equally plain: speed without verification is a liability multiplier. The banks that win will be the ones that treat grounding and human review not as friction on the way to efficiency, but as the very feature that makes efficiency safe.