Regulatory Sandboxes for legal services innovation

Margaret Hagan

Published in

Legal Design and Innovation

9 min readNov 8, 2019

This piece was first published on the Legal Executive Institute earlier this year.

by Margaret Hagan and Jorge Gabriel Jimenez

A short pre-script

This paper was written after our Lab’s Prototyping for Policy summit in November 2018, when we brought together policy innovators from different domains to talk about new structures and methods to address wicked systems challenges. One of the challenges we tackled was that of the access to justice crisis in US — why there are so many underserved people with pressing legal needs.

The concept of a Regulatory Sandbox emerged from our colleagues from outside of law: could we try the Sandbox model that emerged in financial technology policy-making, in the legal space? Could we encourage more user-centered innovation by having a Sandbox that would allow new kinds of services and providers enter the market, and use data-driven, risk-oriented regulatory methods to ensure that they were serving the public and not harming them?

Now the state of Utah will be launching a legal services regulatory sandbox, following the August 2019 report by a task force (of which I, Margaret, am a member) there that lays out the access to justice crisis and need for regulatory reform to address it. We are excited about how the idea grew out of last year’s summit, and now we are moving towards a launch of this new regulatory innovation effort.

A Regulatory Sandbox for the Industry of Law

How do you experiment to determine the best regulatory regimes to govern new technologies? In financial services, the concept of a “regulatory sandbox” has become a common structure around the world for companies and regulators to experiment with new types of services and technologies to determine the best mode to regulate them. It is a methodological approach to potential relaxation of regulatory requirements that build in more testing and feedback through a safe innovation zone.

In 2018, Arizona launched a regulatory sandbox for financial technology, specifically to promote entrepreneurship and investment around blockchain, cryptocurrencies, and other emerging technologies. The United Kingdom’s Financial Conduct Authority had the first regulatory sandbox, starting in 2016. Since then, it has had 4 cohorts of Regulatory Sandboxes to promote financial services innovation. The Monetary Authority of Singapore has run sandboxes to encourage experimentation with financial technology. Abu Dhabi’s Regulatory Lab set up a sandbox for fin-tech, that involved the Abu Dhabi Registration Authority, Financial Services Regulatory Authority, and the courts. Other financial technology sandboxes have been run in Australia, Mauritius, the Netherlands, Canada, Thailand, Denmark, and Switzerland. Some of the things being tested in financial sandboxes include new insurance, retirement, retail banking, investments, and retail lending offerings.

Legal regulators can learn from these examples. In 2016, the Law Society in the U.K. called for a sandbox approach to regulatory reform that would allow changes to promote innovation and new business structures that improve access to justice to be tested safely. In response, the Solicitors Regulation Authority (SRA), the regulator of solicitors and lawyers in England and Wales, created SRA Innovate, a mechanism that allows firms to innovate in order to offer clients affordable legal services. As legal regulators in California, Utah, Arizona, and elsewhere look at the possibility of changes that would promote innovation, the sandbox approach is well worth considering.

What exactly is a Regulatory Sandbox?

A sandbox is a safe playground in which to experiment, collect experiences, and play without having to face the strict rules of the real world. The private sector can innovate without worrying about fines or liability, the regulatory agency can test regulations to see what works before going through the long process of creating new rules, and consumers have access to these services in a controlled environment. The goal is to relax or change existing regulation in a controlled and evaluated space to run real-world experiments. These experiences can be collected and inform evidence-based regulatory schemes. Sandboxes are used as an alternative to regulation that is based on speculation about what behaviors could result — and what risks and harms can emerge — from changing technologies or changing policies.

Some authorities such as the Financial Supervisory Commission in Taiwan have substituted a regulatory sandbox with a pilot program. There is an inherent connection between a regulatory sandbox and a testing and piloting program. A sandbox can be seen as an umbrella that contains a testing or pilot program. The defining characteristic of a regulatory sandbox is the establishment of a formal and structured mechanism to receive applications by firms to work with the regulatory agency to test innovative services, products, or business models. Thus, the sandbox is the umbrella or regulation that enables a pilot or test program to operate.

Regulatory sandboxes are often case-by-case rather than one-size-fits-all. That means that individual firms propose exactly how the regulations might be changed for their particular innovation proposals. The burden is often on the firm to set what a new, better regulatory environment would be for their vision of innovation. They are allowed to test this vision as long as they stay within the authority’s principles and they agree to be evaluated regularly. They also are limited with how many customers they can interact with, how long they can run the experiment, and how they get consent from possible customers.

Why Do We Need a Regulatory Sandbox for the Industry of Law?

The legal market needs to overcome its most significant challenges: the access to justice crisis, and widespread dissatisfaction among legal buyers. Regulation can play a crucial role to overcome these challenges. Proper regulation can promote competition, encourage innovation, and ensure appropriate safeguards for consumers.

The regulators should differentiate the “legal profession” from the “legal industry”, however. The legal profession refers to lawyers (training, licensure, ethical responsibilities, among others). The legal industry describes the business of delivering legal services. More than 1,100 legal technology companies are changing the way legal work is done; however, most firms report regulatory and legislative hurdles as the most important barriers to innovation. And it’s the consumer who loses when access to legal services is reduced.

A regulatory sandbox for the legal industry would allow experimentation with new approaches involving new business models or legal technology. The sandbox enables a safe environment for business to test services or products without the risk of being sued for the unauthorized practice of law. In return, regulators could require participants to incorporate appropriate safeguards to protect the public interest and support competitive innovation in the legal market. SRA Innovate is helping firms and new entrants, alternative business structures (ABS), and traditional law firms to run and grow their business in creative ways. This help includes:

offering multi-disciplinary partnerships that give the public to access a “one-stop-shop” for legal and non-legal services;
allowing specific rules to be waived;
offering dedicated guidance to help firms deal with any regulatory barrier; and
providing a sense-check to technology firms looking to develop new platforms for legal businesses.

This Innovation Space lets firms explore new business models and introducing original ideas that can be tested and likely benefit the public in a controlled way.

The Proposed Structure of the Sandbox

The structure of the Sandbox is in phases, to promote experimentation, evaluation, and then possible extension, scaling of the sandbox, or abandonment of it. It is not meant to be a permanent thing — but rather a ‘prototype’ of a new policy, which the firms’ experimentation can help refine. Or the prototype might show too much risk and danger, and inform the authority that the regulation model in the sandbox should be considered a failure and abandoned.

Most sandboxes are structured in rolling cohorts. The Sandbox can refine the regulation and policies it has in place, with each new cohort of experiments, firm behavior, and consumer behavior. There is a sense of ‘iteration’ — that things can be changed in the sandbox design based on what behavior results.

It is helpful to think of the Sandbox in a timeline, as shown in the model below.

Details of how Authority is Exercised

Government authorities use several tools to ensure that the sandboxes are safeguarded. The SRA also has assured the applications protect their public interest purpose: to protect consumers and support the rule of law and administration of justice.

Key Principles. Each sandbox is set up with guidelines that can be parameters to ensure it does not spill over into ‘real consequences’. These guidelines can also be principles that applicant firms must agree to adhere to — and for which firms that overstep the parameters can be expelled from the sandbox. For example, before granting a waiver, the SRA must check the applicant is at least advancing some of the objectives of the Legal Services Act: protecting and promoting the public interest, obeying the rule of law, improving access to justice, protecting the interest of consumers, promoting competition, encouraging a diverse and effective legal profession, and increasing the understanding of citizens’ legal rights.

Restrictions on who can enter the sandbox. The regulator decides which firms can join the sandbox and enjoy the exploratory environment. Firms must apply to join, with an authorization process that should ensure that the firm will act ethically, in the public interest, and with a commitment to innovation. In the application, a firm must present a coherent vision of what they want to test, how they will promote innovation, how they will interact with the public, and what technology solution they are using. The authority can also put more evidence-based requirements on applicants. For example, Singapore set up a barrier of due diligence for firms that wanted to participate in their financial services sandbox. Any firm needed to show a previous ‘laboratory test’ of the thing the product or service that they wanted to test in the sandbox. This would show preliminary outcomes, as well as the firm’s understanding of the need for evaluation.

Regulatory Waivers/No Enforcement Action letters. A regulator can issue individual guidance or specific waivers to firms if there are burdensome rules that firms request relief from. The SRA generally publishes a summary of all waiver decisions, including an overview of the application. These let a firm know that if they openly deal with the regulator and abide by the agreement to stay within the sandbox parameters and to treat customers fairly — then the regulator agrees not to take disciplinary action even for unexpected issues. It gives some guarantee to the firm that they can take controlled risks and that they will not face punishment like unauthorized practice of law claims. Still, the regulator maintains discretion to hold firms liable if the public is harmed.

Controlled lists of requirements that can be relaxed or maintained. The authority can prescribe the list of what regulations may be altered, relaxed, or removed. They can also insist that some rules will be kept without a waiver.

Rolling Evaluation. The authority can evaluate the outcomes throughout the sandbox behavior. The authority typically spells out broad metrics (around promoting innovation, promoting consumer benefit) in their initial guidelines, and then individual firm participants should define how their particular ‘innovation’ will be evaluated. The SRA requires a formal report letter, including information on agreed-upon measures that demonstrate the success of the innovation, significant issues that have occurred, and any complaints or actions of dissatisfaction. In the UK fin-tech sandbox, one firm was forced to exit the sandbox because of lack of consumer uptake of their offering.

Informed Consent. The authority can require a firm to ensure that potential consumers understand they are participating in an experiment when the firm is trying to engage them with the ‘innovation’.

Lessons learned so far

In 2017 the UK’s Financial Conduct Authority issued a report on what they have learned from their series of Regulatory Sandboxes. The FCA found that the sandbox had led to high levels of innovation with new offerings for financial consumers, including new blockchain solutions, biometric services, and custom-automated financial advice. It also led to more significant investment in new technology and competitive pressure on incumbents. Regulators also found there was little misbehavior on behalf of the participating firms. The safeguards worked, and firms helped the regulators create more custom safeguards for particular experiments.

People need better access to affordable legal services. Firms report regulatory and legislative hurdles as the most common barrier to innovation. A regulatory sandbox for the legal industry, taking the experiences of the fin-tech sandboxes and the Innovation Space of the SRA, could be helpful in meeting the challenges of a changing market, assist new legal business to flourish, and advance access to justice.

—