The Problem
A UK legal practice of around twenty fee-earners was sharing client documents the way most small firms do — as email attachments, occasional Dropbox links, and the occasional encrypted ZIP when the matter felt sensitive enough to warrant the extra step. The model was familiar to everyone but no longer defensible. Clients had started asking, at the start of new instructions, what the firm’s document security model actually was, and the honest answer was that there was not one.
The day-to-day problems were practical. Email size limits forced large bundles to be split, with cover emails explaining the order. Clients who had switched email providers between matters could no longer access the original attachments. Partners who needed to confirm whether a particular draft had been sent to a client had to scroll through six months of email threads to find out. And when a matter closed and the firm wanted a clean record of what had been shared, the only source of truth was an inbox.
Compliance added pressure. The firm needed an auditable record of which documents had been delivered to which client, when, and whether they had been accessed.
The Approach
We built a client document portal scoped to the firm’s actual workflow rather than a generic file-sharing tool. Each client matter is its own workspace inside the portal, with documents organised by category and access scoped to the named individuals on the matter. Clients log in with multi-factor authentication and see only the matters they are party to.
The technical decisions that mattered were access logging and document lifecycle. Every view, every download, every upload is logged with timestamp, IP, and user — the firm can now produce, for any matter, a definitive record of who saw what and when. Documents support versioning, so when a draft is revised, the older version remains in the portal with its full access history rather than being overwritten and lost.
The System We Built
A multi-tenant document portal scoped to client matters, with role-based access, MFA on every login, full audit logging on view, download, and upload events, and document versioning that preserves history rather than overwriting. Notifications go to clients when new documents are uploaded, with the link landing them inside the portal rather than as an attachment in their inbox. Partners and fee-earners have an internal view that shows the same matter workspace, with internal-only notes and drafts that are invisible to the client side.
The Outcome
The firm now has a defensible answer to the security question that opens new instructions, and one client of significant size confirmed they had nearly disengaged over the lack of one before the portal launched. Internally, the time spent confirming what had been sent to a client dropped from “go scroll the email thread” to “open the matter, look at the file list with access timestamps”.
A less obvious outcome: clients now upload documents to the firm through the portal as well. The firm had not specifically marketed this, but once clients were logging in to retrieve, they started using the same interface to send. Inbound attachment volume to email dropped noticeably within a few weeks.
What We Learned
We considered using a third-party document platform with a custom skin, and rejected it because the audit-trail and matter-scoping requirements were specific enough that the customisation cost would have approached the build cost — and we would still have been dependent on the platform’s roadmap. Building it as part of the firm’s own system meant the audit trail and access model could be exactly what the regulator and the partners needed, not a compromise.
Looking at the Same Problem?
If your firm is sharing sensitive documents over email and the security model is harder to justify each year, get in touch to talk through what a client-facing portal could look like for your practice.