The SRA does not prescribe which software UK solicitors must use. What it does require is that your systems are effective for maintaining confidentiality, managing client money, and demonstrating compliance on demand. The gap between those requirements and what most case management software actually delivers is where regulatory exposure lives.
In 2025, the SRA received more than 2,300 reports of data breaches from regulated firms. Sixty-seven percent of cyber attacks targeted firms with fewer than 20 employees — the exact firms most likely to be running inadequate or outdated software. The average cost of a cyber incident for a UK SME now exceeds £15,000, before legal costs and reputational damage.
This guide covers what the SRA actually requires from your software, an honest comparison of the leading platforms for small UK solicitor firms, and the COFA checklist you need before any system goes live.
What SRA Rules Actually Require from Your Software
The SRA Accounts Rules 2019 set the specific obligations that your case management or accounts software must support. The critical rules:
- Rule 4 — Client money: Client money must be kept separate from office money and held in a designated client account. Your software must prevent commingling and maintain a clear audit trail of every client money movement.
- Rule 6 — Interest: Interest earned on client money above a minimum threshold must be accounted for and paid to the client (or the SRA's Compensation Fund in some circumstances). Software must track interest earned per matter.
- Rule 8.3 — Reconciliation: Client account reconciliations must be carried out at least every five weeks. The reconciliation must compare the client account bank balance, the client ledger balance, and the client listing — a three-way reconciliation that must be documented and signed off.
The COFA (Compliance Officer for Finance and Administration) must be able to demonstrate compliance with these rules at any point — not just at year-end audit. Software that cannot produce a three-way reconciliation report on demand, or that cannot show the complete ledger history for any client matter, is inadequate for SRA compliance purposes regardless of what the vendor claims.
Platform Comparison
| Platform | SRA Accounts Rules | Data residency | AI features | Price (per user/mo) | Best for |
|---|---|---|---|---|---|
| LEAP | Full compliance | UK | Document automation | £90–130 (not listed) | Conveyancing, property |
| Smokeball | Full compliance | UK | Automatic time capture, AI drafting | £49–120 | Litigation, family law |
| Clio | Full compliance | UK/EEA (verify) | Clio Duo AI assistant | £59–99 | Firms with US/international clients |
| Proclaim | Full compliance | UK | Workflow automation | Quote only | High-volume PI, clinical negligence |
| Osprey | Full compliance | UK | Limited | £60–80 | 10–50 fee earner firms |
| LawWare | Full compliance | UK (Scotland focus) | Limited | Quote only | Scottish solicitors, end-to-end needs |
| Quill | Full compliance | UK | None | Service-based pricing | Firms wanting outsourced cashiering |
Pricing shown is approximate. UK legal software vendors almost universally require a sales conversation for firm quotes. Implementation costs, data migration, and training are typically additional.
Deep Dive: Top 6 Platforms
LEAP
LEAP is the most widely deployed practice management system among UK solicitors, particularly in conveyancing and residential property. Its document automation library for Land Registry forms, SDLT submissions, and standard conveyancing precedents is the most comprehensive available in the UK market.
LEAP includes native client account management with three-way reconciliation reporting. Data is UK-hosted. The pricing model is per-user, with costs that typically run £90–130/user/month for established firms (pricing is not publicly disclosed — quotes vary). For conveyancing-heavy practices, the document automation alone often justifies the premium. For firms in other practice areas, the ROI is harder to establish.
User reviews frequently cite complexity and training requirements as drawbacks. LEAP is a powerful system but expects a meaningful investment in onboarding.
Smokeball
Smokeball's UK product has developed significantly since its Australian parent company (ATI Global) expanded internationally. Its key differentiator remains automatic time capture: Smokeball records time spent in documents, emails, and on calls without manual entry, which reduces time-recording friction and typically increases captured billable hours.
Smokeball's AI drafting features allow document generation from matter data with minimal manual input. Client account management meets SRA Accounts Rules requirements. Pricing ranges from approximately £49/user/month (entry tier) to £120/user/month (full feature set), making it one of the more competitively priced options for small firms.
Office accounting requires Xero integration — Smokeball does not include a general ledger. This is a cost to factor in (typically £25–50/month for Xero) but is manageable for most small firms.
Clio
Clio is the dominant practice management platform in the United States and has expanded significantly into the UK market. Its integrations ecosystem is the deepest of any platform — over 250 third-party integrations including DocuSign, Microsoft 365, QuickBooks, and major UK court filing services.
The Clio Duo AI assistant provides matter summaries, document drafting assistance, and client communication drafts. For client-facing features — the client portal, document sharing, and electronic signatures — Clio leads the market.
The data residency question requires careful investigation. Clio has UK and EEA data centres, but the specific data residency for your instance depends on configuration. For GDPR compliance, confirm in writing that all client data will be processed and stored within the UK or EEA before signing. Some integrations may route data through US-based infrastructure — verify each one.
Clio's client account features meet SRA Accounts Rules requirements, but UK-specific functionality (particularly around Legal Aid billing and court-specific workflows) is thinner than LEAP or Proclaim.
Proclaim by Access Group
Proclaim is built for high-volume practice areas: personal injury, clinical negligence, conveyancing, and debt recovery. Its workflow automation is designed around volume throughput — if your firm handles hundreds of similar matters simultaneously, Proclaim's pipeline management and automated task assignment reduce fee earner overhead significantly.
Proclaim is UK-hosted and carries full SRA Accounts Rules compliance. Pricing is quote-only and tends to be structured around firm size and volume, making it less accessible for very small firms. For PI and clinical negligence firms running fixed-fee or conditional fee arrangements, Proclaim's billing and disbursement tracking is purpose-built.
Osprey Approach
Osprey targets the 10–50 fee earner segment and positions as a mid-market alternative to LEAP's complexity and price. It includes case management, client accounts (three-way reconciliation, SRA compliant), time recording, and billing in a single platform with UK data hosting.
Osprey lacks the document automation depth of LEAP and the AI features of Smokeball or Clio, but it is consistently rated well for ease of use and customer support response times. For firms that want a solid, compliant, uncomplicated system without LEAP's price tag, Osprey is a rational choice.
Quill — Outsourced Cashiering Niche
Quill occupies a specific niche: firms that want to outsource their cashiering function entirely rather than manage it in-house. Quill's managed cashiering service handles day-to-day client account management, bank reconciliations, and compliance reporting on behalf of the firm. The software component is the interface through which fee earners interact with the cashiering team.
For very small firms (1–3 fee earners) where the COFA role is a burden and internal cashiering expertise is limited, Quill's model eliminates a compliance risk entirely. It is not a conventional SaaS comparison but deserves mention for firms in that situation.
The COFA Compliance Checklist
Before any system goes live, the COFA must be able to demonstrate the following on demand — not just at audit time:
- Three-way reconciliation report showing agreement between client bank balance, client ledger total, and individual client matter listing — producible for any date in the last 12 months
- Complete ledger history for any client matter, including every receipt, payment, and transfer with timestamps and user attribution
- Interest calculation report showing interest earned on client money per matter
- Residual balances report — client funds remaining in the account after matter completion
- Duplicate payment detection — evidence that the system prevents or flags duplicate client account payments
- User access log — who accessed client account records and when, with no gaps in the audit trail
The wrong system does not just cost money — it creates regulatory exposure. An SRA investigation triggered by a client account breach can result in intervention, which means the SRA takes control of the firm. This is an existential risk, not a compliance checkbox.
Cybersecurity Requirements
SRA guidance on cybersecurity is increasingly prescriptive. The AML regime (under the Money Laundering Regulations 2017) requires client due diligence records to be stored securely for at least five years. Practice-wide risk assessments must include technology and cyber risk.
Minimum cybersecurity requirements for a compliant UK solicitor firm in 2026:
- Multi-factor authentication on all systems accessing client data — your case management software must support MFA, not just password protection
- Penetration testing — annual at minimum for firms handling significant client money; the SRA's cyber guidance recommends it explicitly
- Staff training — phishing simulation and cybersecurity awareness training at least annually; document this for SRA purposes
- Data residency confirmation — written confirmation from your software vendor that all client data is processed within the UK or EEA
- Incident response plan — documented, tested, and known to all fee earners; the SRA expects firms to be able to respond to a breach without improvising
When evaluating case management software, MFA support and UK/EEA data residency are non-negotiable requirements. Any vendor that cannot provide written confirmation of both should be eliminated from your shortlist.
5 Questions to Ask Before Signing
- Can you show me a three-way reconciliation report for a historical date? This is the core SRA Accounts Rules requirement — if the demo cannot produce this on demand, the system is inadequate.
- Where exactly is my client data stored and processed — UK, EEA, or elsewhere? Get this in writing, not from a sales brochure.
- Does your system support MFA on all user accounts? Ask specifically — "MFA available" and "MFA enforced" are different things.
- What is your data migration process from my current system, and how long does it take? Understand the realistic timeline before you commit to a go-live date.
- What are the contract terms and exit provisions? Specifically: minimum term, notice period, and what happens to your data when you leave.
For UK-US Cross-Border Firms
UK firms handling US matters — international arbitration, cross-border M&A, dual-qualified attorney practices — often find that UK-specific case management software handles UK compliance well but creates friction for US-format billing, retainer structures, and contract documentation.
For this segment, a platform like ContractKit (Solo $49/mo, Firm $99/mo, Enterprise $249/mo) handles cross-jurisdiction contract management and billing alongside your UK case management system, rather than forcing a single system to handle both regulatory environments it was not built for simultaneously.
Every platform in this comparison meets SRA Accounts Rules requirements. The differences are in practice area fit, data residency controls, AI capabilities, and total cost of ownership. The compliance floor is the same; the ceiling — and the price — varies considerably. Choose on fit for your practice area and fee earner workflows, not on which vendor has the most impressive demo.