Home Insights Google Reviews for Law Firms
Local SEO · Bar Rules

Google Reviews for Law Firms: The Compliant Review Engine.

Citorian
Published June 4, 2026
Last reviewed June 4, 2026
~13 min read

Reviews are the single heaviest variable signal Google weighs for Local Pack placement. They are also the layer where a law firm can do real damage to itself, because every review touches three separate rulebooks at once: Google's policies, the FTC's Consumer Reviews Rule, and your state bar's advertising and confidentiality rules.

Most firms either under-invest in reviews because the rules feel risky, or chase volume with tactics that quietly violate one of the three. This is the model we use to do neither. We call it the Compliant Review Engine: four gates every review program has to pass before it earns a single star.

In this guide
  1. Why reviews are the heaviest, and riskiest, local signal
  2. The three rulebooks every review touches
  3. The Compliant Review Engine
  4. Gate 1: Ask every client, the same way
  5. Gate 2: Never put anything of value behind a review
  6. Gate 3: Respond without breaching confidentiality
  7. Gate 4: Keep testimonials from promising outcomes
  8. Three moves that get a firm suspended or reported
  9. How to build review volume the compliant way
  10. What good looks like
  11. What this means for your firm
  12. Frequently asked questions
For the skim readers

Six things to know before you read

  • Reviews are a top-three prominence signal. Volume, recency, average rating, and response rate together, not any single number.
  • Three rulebooks apply at once. Google's policies, the FTC Consumer Reviews Rule, and your state bar's advertising and confidentiality rules.
  • Review gating is now a federal violation. Selectively soliciting only happy clients is banned by Google and by the FTC rule that took effect in October 2024.
  • Incentives are the fastest way to break all three. Paying or rewarding anyone for a review can violate Google, the FTC, and ABA Model Rule 7.2.
  • Responding to a bad review is where confidentiality breaks. ABA Formal Opinion 496 is explicit: a negative review does not let you disclose anything about the representation.
  • The compliant path still wins. A neutral, systematic ask to every client out-produces aggressive tactics and survives scrutiny.
The short answer

Yes, a law firm can ask clients for Google reviews, and reviews are a top local ranking signal. What you cannot do is ask only the happy clients, pay or reward anyone for a review, or disclose case details when you respond. Those three moves violate Google, the FTC, or your state bar.

Why reviews are the heaviest, and riskiest, local signal

In the Citorian Local Authority Stack, review prominence sits at Layer 3, and it is the single most variable signal Google weighs for Local Pack placement. This guide is the deep dive on that layer.

Reviews move rankings through a combination of four things rather than any one: total count is the volume signal, average rating is the quality signal, recency is the activity signal, and response rate is the engagement signal.

A profile with 180 reviews at 4.8 stars, with new reviews arriving every few weeks and the firm replying to most of them, outranks a profile with 60 stale five-star reviews the firm has never touched.

That makes reviews the highest-leverage prominence work available to most firms. It also makes them the most dangerous, because reviews are the one local signal that is actively regulated from three directions at once.

Most ranking tactics only risk a Google penalty, but a review program done wrong can produce a profile suspension, an FTC exposure, and a bar grievance from the same mistake.

The firms that win here are not the ones who push hardest. They are the ones who build a system that is correct by design, then run it consistently for the months it takes for review velocity to compound.

The three rulebooks every review touches

Before any tactic, you have to understand that a single Google review for a law firm is governed by three separate authorities, and they do not always say the same thing.

The first is Google. Its prohibited and restricted content policy bans fake reviews, incentivized reviews, and review gating, which is the practice of selectively soliciting or displaying only positive feedback. Google detects suspicious patterns with automated systems and can remove reviews, suppress rankings, or suspend the profile entirely.

The second is the Federal Trade Commission. Its Consumer Reviews and Testimonials Rule, which took effect on October 21, 2024, bans fake or AI-generated reviews, buying positive or negative reviews, undisclosed insider reviews, and review suppression.

Knowing violations can carry civil penalties of tens of thousands of dollars per violation, and the rule applies to law firms like any other business.

The third is your state bar, working from the ABA Model Rules of Professional Conduct that most states adapt. Model Rule 7.1 prohibits false or misleading communications about a lawyer's services, and Model Rule 7.2 restricts giving anything of value for a recommendation.

The duty of confidentiality under Model Rule 1.6 then governs what you can say when you respond to a review.

The Compliant Review Engine exists to satisfy all three at the same time. When the rulebooks conflict, the strictest one wins.

Key facts
  • The FTC Consumer Reviews and Testimonials Rule took effect on October 21, 2024, and applies to law firms like any other business.
  • Knowing violations can carry civil penalties in the tens of thousands of dollars per violation.
  • ABA Formal Opinion 496 (2021) governs how a lawyer may respond to an online review, and confidentiality controls the response.
  • A single law firm review is governed by three authorities at once: Google, the FTC, and your state bar.

The Compliant Review Engine

A law firm review program has to clear four gates. Pass all four and you can pursue review volume aggressively and safely. Fail any one and the volume becomes a liability.

Gate 01
Solicit every client, the same way

Ask all eligible clients for a review with the same neutral message. No pre-screening for happy clients, no filtering by sentiment. This is what satisfies both Google's policy and the FTC rule on review gating.

Gate 02
Never put anything of value behind a review

No discounts, gift cards, fee credits, or contest entries for leaving a review. Incentives can violate Google, the FTC rule, and ABA Model Rule 7.2 in a single act.

Gate 03
Respond without breaching confidentiality

A negative review does not authorize you to disclose anything about the representation. ABA Formal Opinion 496 controls here, and the safe response is narrow by design.

Gate 04
Keep testimonials from promising outcomes

Reviews and testimonials you republish cannot imply that past results predict future ones. Model Rule 7.1 and most state disclaimer rules govern how you display them.

CITORIAN The Compliant Review Engine Four gates every law firm review program must pass. GATE 01 Solicit every client, the same way No gating. Ask all eligible clients with one neutral message, whatever the outcome. GATE 02 Never put value behind a review No discounts, gift cards, drawings, or review-count staff bonuses. GATE 03 Respond without breaching confidentiality A negative review never authorizes disclosing anything about the matter. GATE 04 Keep testimonials from promising outcomes No implied guarantee that a past result predicts a future one. citorian.com Reviews within Google, FTC, and state bar rules
The Compliant Review Engine: the four gates every law firm review program must pass.

The four gates map onto the three rulebooks: Gate 1 is mostly Google and the FTC, Gate 2 implicates all three at once, and Gates 3 and 4 are mostly bar rules. The sections below take each gate in turn.

Compliant vs. prohibited, at a glance

Practice Compliant Prohibited (and the rule)
Who you askEvery eligible client, one neutral messageOnly satisfied clients, or filtering by sentiment, which is review gating (Google, FTC)
IncentivesAn optional invitation, nothing attachedDiscounts, gift cards, drawings, or review-count bonuses (Google, FTC, ABA 7.2)
Negative reviewsNo response, or a narrow line that reveals nothingDisclosing case facts to rebut the review (ABA Opinion 496, Rule 1.6)
TestimonialsExperience-focused, with the required disclaimerImplying a past result predicts a future one (ABA 7.1)
Insider reviewsNone, or a clearly disclosed connectionUndisclosed reviews from staff, family, or the firm (FTC)

Gate 1: Ask every client, the same way

The most common review mistake at law firms is also now a federal violation: asking only the clients you expect to be happy.

Review gating is the practice of pre-screening clients before deciding who gets a review request, or routing satisfied clients to Google while steering unhappy ones to a private channel. A satisfaction survey that only sends a Google link to clients who rated you highly is review gating. So is handing the review QR code only to clients who seemed pleased at closing.

Google prohibits it outright. The FTC rule now treats review suppression as a deceptive practice, because it misleads consumers into thinking the overall sentiment is more favorable than it is. The fix is structural: every eligible client gets the same request, through the same channel, with the same wording, regardless of how their matter went.

This feels counterintuitive to firms worried about a stray negative review. In practice, a steady stream of genuine reviews from every client produces a higher average and a more credible profile than a curated set, and it is the only version that survives an FTC or Google review. The volume comes from systematizing the ask, not from filtering the audience.

Bar rules note

Some jurisdictions add their own constraints on how clients may be solicited for reviews and what a firm may say about leaving one. A handful restrict or require disclaimers on client testimonials. Confirm your state's specific rules before you finalize the wording of any review request.

Gate 2: Never put anything of value behind a review

Incentivizing reviews is the single fastest way to break all three rulebooks with one decision.

Google bans incentivized reviews. The FTC rule prohibits offering compensation or incentives in exchange for reviews that express a particular sentiment, whether the offer is explicit or implied. And ABA Model Rule 7.2 prohibits a lawyer from giving anything of value to a person for recommending the lawyer's services, with only narrow exceptions for nominal gifts of genuine appreciation that are not a form of compensation.

That means no gift cards, no fee discounts, no entry into a prize drawing, and no "leave us a review and we will waive the document fee." It also means being careful with third-party review platforms that bundle incentives, and with any internal staff bonus tied to the number of reviews collected, which can pressure employees into prohibited behavior.

The line is clean once you see it. You may ask for a review and make leaving one effortless, but you may not attach value to the act of leaving one.

A review has to be something the client chooses to give freely, which is exactly what Model Rule 7.2 contemplates when clients leave feedback of their own accord.

Gate 3: Respond without breaching confidentiality

Responding to reviews helps your ranking and your reputation, but the negative review is where lawyers most often cross an ethics line, because the duty of confidentiality does not pause when a client criticizes you in public.

In Formal Opinion 496, the ABA Standing Committee on Ethics and Professional Responsibility addressed this directly. The main ethical concern in any response to an online review is the confidentiality of client information under Model Rule 1.6.

A negative review, on its own, does not trigger the self-defense exception that would let a lawyer reveal information relating to the representation. Even a general statement that the events were not as described can reveal that the person was a client and that the lawyer was involved, which can itself disclose protected information.

The opinion's practical guidance is restrained. Often the best response is no response. A lawyer may ask the platform to remove a post that violates the platform's policies, but may not disclose confidential information to rebut it. Where a response is warranted, the committee offered a safe template along the lines of: "Professional obligations do not allow me to respond as I would wish."

For positive reviews, the confidentiality risk is lower but not zero. Thanking a client by name, or confirming details of their matter in a reply, can still disclose that the person was a client.

Keep responses warm, generic, and free of any case specifics. A simple "Thank you for the kind words, we appreciate the trust" is enough, and it reinforces the response-rate signal Google rewards.

Gate 4: Keep testimonials from promising outcomes

When you republish reviews as testimonials on your website or in ads, Model Rule 7.1 governs how they read.

A testimonial that truthfully reports a result can still be misleading if it is presented so that a reasonable person would form an unjustified expectation that the same result is available to them. A glowing review about a large settlement, displayed without context, can cross that line even though the review itself is genuine.

Most jurisdictions address this with a disclaimer requirement, commonly some version of "prior results do not guarantee a similar outcome," and some impose specific formatting or placement rules for that language. The cleaner editorial choice is to favor testimonials that speak to the experience of working with the firm, communication, responsiveness, and care, over those that lead with a dollar figure.

This is the same discipline that runs through everything we publish: no implied guarantees, ever. A testimonial is a client's honest account of their experience, not a forecast of yours.

An honest note

This guide is a synthesis of published rules, not legal advice, and it does not create a lawyer-client relationship. State bar advertising and confidentiality rules vary and are updated periodically. Confirm your jurisdiction's specific rules, and when the rulebooks disagree, follow the strictest one.

Three moves that get a firm suspended or reported

Three review tactics carry consequences serious enough that no short-term ranking gain justifies them. Each one is common, and each one backfires.

Anti-pattern 01

Review gating through satisfaction surveys

Filtering clients with an internal survey and sending the Google link only to the happy ones. Why it backfires: Google detects the pattern and can remove reviews or suspend the profile, and the FTC treats suppression as a deceptive practice carrying civil penalties. It also produces an artificially uniform review set that erodes credibility with real readers.

Anti-pattern 02

Incentivizing or buying reviews

Offering a discount, gift card, or drawing entry for a review, or purchasing reviews from a service. Why it backfires: It can violate Google's policy, the FTC rule on paying for sentiment, and ABA Model Rule 7.2 in one act. Purchased or AI-generated reviews are squarely within the FTC's enforcement focus.

Anti-pattern 03

Disclosing case facts to rebut a bad review

Correcting the record by explaining what really happened in the matter. Why it backfires: Under ABA Formal Opinion 496 and Model Rule 1.6, a negative review does not authorize disclosure. A public rebuttal that reveals the representation can become a confidentiality violation and a bar grievance far more damaging than the review.

How to build review volume the compliant way

Once the four gates are in place, volume is an operations problem, not a marketing trick. The firms that win review velocity simply make the compliant ask reliably, at the right moment, to everyone.

Time the request to the natural close of the relationship. The strongest moment is right after a matter resolves favorably and the client is engaged, but the request must still go to every client regardless of outcome to stay inside Gate 1. A post-resolution check-in is a natural, non-pressuring point to include it.

Make it effortless. A direct link or QR code to the firm's Google review form removes friction. Google's own policy cautions against pressuring clients on the premises or dictating what they write, so the ask should be a simple, optional invitation, not a supervised task.

Systematize it across the firm. Build the review request into intake-to-resolution workflows so it fires automatically rather than depending on whoever remembers. Train the people who close matters on the exact compliant wording, what they can and cannot say, and the rule against attaching any incentive.

Respond to build the engagement signal. Reply to most reviews, positive and negative, within the confidentiality limits of Gate 3. A consistent, professional response rate is itself a prominence signal, and it shows prospective clients the firm is attentive.

Maintain consistency over months. Review velocity, the rate at which new reviews arrive, matters more than a one-time burst, which can also look manipulative to Google's systems. A modest, steady inflow from a system that runs every week beats a campaign that spikes and stops.

See the related framework

The Citorian Local Authority Stack

Reviews are Layer 3. See how the five layers fit together to win the Map Pack in a competitive metro.

Read the Playbook

What good looks like

A compliant review engine produces a recognizable shape over time, and that shape is what Google's prominence signal rewards.

You want a review count that grows steadily rather than in suspicious spikes, an average rating that holds in the high fours because it reflects every client rather than a filtered subset, and a recency profile where the most recent reviews are weeks old, not years. Response rate should be high and consistent, with replies that stay free of case specifics.

The leading indicator to watch is review velocity, the number of new reviews per month, because it tells you whether the system is actually running. A firm that adds a handful of genuine reviews every month, indefinitely, will overtake a competitor sitting on a larger but frozen total. Track it monthly alongside Local Pack position for your core case-driving queries, and you will see the two move together.

What this means for your firm

Reviews are the highest-leverage prominence work most firms can do, and the rules are not the obstacle. The aggressive shortcuts are.

If your firm has been cautious about reviews because the bar rules feel like a minefield, the Compliant Review Engine is the way through. Ask every client the same way, attach nothing of value to the request, respond without disclosing anything about the representation, and present testimonials so they never imply a guarantee. That program is fully defensible and it out-produces the firms cutting corners.

If your firm has been chasing volume with satisfaction surveys, incentives, or aggressive responses, the exposure is real and worth fixing now, before a competitor reports it or an algorithm flags it. The work is to replace the tactics with a system that is correct by design and then run it patiently.

That is the reusable point across both cases. In high-trust categories, the compliant path is not the cautious path, it is the one that compounds, because it is the only one that survives the scrutiny that high-stakes legal marketing eventually attracts.

Frequently asked questions

Can a law firm ask clients for Google reviews?
Yes. Asking clients to leave a review is permitted by Google, the FTC, and ABA Model Rule 7.2, which contemplates clients leaving feedback of their own accord. The constraints are on how you ask, not whether. You must ask every eligible client the same way rather than pre-screening for satisfied clients, you must not attach any incentive to the request, and you should confirm any state-specific rules on soliciting reviews. A simple, neutral, optional invitation through a direct link or QR code is the safe form.
Is review gating illegal for law firms?
It is prohibited and, since October 2024, can be a federal violation. Review gating means selectively soliciting or displaying only positive reviews, for example by filtering clients with a satisfaction survey and sending the Google link only to happy ones. Google bans the practice and can remove reviews or suspend a profile, and the FTC Consumer Reviews and Testimonials Rule treats review suppression as a deceptive practice that can carry civil penalties. The compliant alternative is to send the same request to every eligible client regardless of how their matter went.
Can a law firm offer a discount or gift card for a review?
No. Offering anything of value for a review can violate three rulebooks at once. Google prohibits incentivized reviews, the FTC rule bans offering compensation in exchange for reviews expressing a particular sentiment, and ABA Model Rule 7.2 prohibits giving anything of value for recommending a lawyer's services, with only a narrow exception for nominal gifts of genuine appreciation that are not a form of compensation. That rules out gift cards, fee discounts, prize drawings, and staff bonuses tied to review counts.
How should a lawyer respond to a negative Google review?
Carefully, and without disclosing anything about the representation. ABA Formal Opinion 496 holds that a negative review does not trigger the self-defense exception to confidentiality under Model Rule 1.6, and that even a general denial can reveal protected information. The committee's guidance is that often the best response is no response, that a lawyer may ask the platform to remove a policy-violating post, and that a safe reply is a narrow statement such as "Professional obligations do not allow me to respond as I would wish." Never explain what actually happened in the matter.
Can a law firm use client testimonials in advertising?
Generally yes, but Model Rule 7.1 governs how they read. A truthful testimonial can still be misleading if it is presented so a reasonable person would expect the same result in their own case. Most jurisdictions require a disclaimer such as "prior results do not guarantee a similar outcome," and some specify how that disclaimer must appear. Favoring testimonials about the experience of working with the firm over those that lead with a settlement figure reduces the risk, and you should confirm your state's specific testimonial and disclaimer rules.
Do Google reviews actually affect a law firm's ranking?
Yes. Reviews are one of the top prominence signals Google weighs for Local Pack placement, and prominence carries the heaviest weight for high-trust legal queries. The signal is a combination of total count, average rating, recency, and the firm's response rate, not any single number. A profile with strong, recent, well-managed reviews can outrank a closer competitor with a weaker review profile, which is what makes reviews the highest-leverage local work for most firms.
Can a law firm remove a fake or defamatory Google review?
A firm can request removal, but cannot rebut the review by disclosing case facts. If a review violates Google's content policies, for example because it is fake, posted by someone who was never a client, or otherwise prohibited, the firm can report it to Google and ask that it be removed. ABA Formal Opinion 496 permits requesting removal but prohibits responding in a way that reveals information relating to a client's representation. Removal is not guaranteed, and the confidentiality duty applies even when the review is unfair.
How many Google reviews does a law firm need to compete in the Local Pack?
There is no fixed number, because ranking depends on your competitors and your other prominence signals, and no responsible partner can guarantee a Local Pack position. What matters is being competitive on the combination of count, rating, recency, and response rate relative to the firms ranking for your case-driving queries in your metro. A steady review velocity that keeps recent reviews flowing usually matters more than a large but frozen total, and it is the part of the signal most within a firm's control.
Apply this to your firm

Is your review program helping or exposing your firm?

A 45-minute strategy call reviews your firm's current Google review profile against the four gates above, audits where your prominence stands in your metro, and identifies the compliant ways to build review velocity that actually move Local Pack position.

Book a Strategy Call

Selective intake. One firm per practice area, per metro.

Read next

Local SEO · Playbook

How to Win the Map Pack in 2026

The full Local Authority Stack. How the five prominence layers fit together to win the Local Pack in a competitive metro.
Framework · Authority

YMYL for Lawyers: A Spectrum, Not a Binary

Why practice-area severity changes the bar for attribution, trust, and AI citation across high-stakes legal content.
Service

Local SEO for Law Firms

How Citorian builds local visibility for high-stakes legal practices, applied per metro and per practice area.