Insights

AI & automationJuly 20267 min read

MCP, the standard that plugs AI into your tools

A year ago, plugging an AI into each of your tools meant a custom connection every single time. MCP changed the rule. Here is what a leader needs to understand about it, without a single line of technical detail.

By Nathan · guinat7 min read

MCP, what is it, in one image

Picture a universal socket. Before, every time I wanted an AI to talk to one of your tools, your CRM, your inbox, your accounting software, I had to build a custom cable. Ten tools, ten cables. MCP, for Model Context Protocol, is the standard socket that puts an end to that. Concretely, your AI assistant can read a customer record, open a ticket or check stock in your existing software, without anyone reinventing the wheel each time.

Why it changes your integration bill

Without a standard, connecting several AIs to several tools gets expensive because the number of connections explodes: it is the number of AIs multiplied by the number of tools. Five tools and three use cases mean fifteen cables to build and maintain. With a standard like MCP, each tool connects once, each AI connects once, and everything talks to everything. You go from a number of connections that multiplies to one that adds up. In plain terms: the cost no longer shoots up as you add tools.

The real bonus: you are no longer a prisoner of one vendor

When your connections rely on an open standard, switching AI model or provider no longer forces you to redo everything. Your tool keeps its socket, you plug another AI in behind it. I have seen too many companies stuck because everything had been wired to fit one vendor. Another safeguard against fashions: MCP does not bet on a single camp, it is a neutral standard the main providers already follow, and it combines with the other building blocks on the market, such as coordination between agents, instead of locking you into one vendor.

Where I sound a warning: security is not automatic

I am not going to sell you MCP as a magic wand. Giving an AI a socket into your tools means giving it hands inside your system. Poorly framed, it is a real risk, and it is today the number one concern among companies, rightly so. Hundreds of these sockets have already been found left open on the internet without so much as a password. The good news: these are risks you can control, on three conditions I apply systematically.

  • Least privilege: the AI only accesses what it strictly needs.
  • A human in the loop on sensitive or irreversible actions: sending money, deleting, writing to a customer, all go through a validation.
  • No rogue socket: no connector plugged in on the side that nobody is watching.
An AI plugged into your tools without guardrails is not a productivity gain. It is an access to your company that nobody is watching.

What I recommend you do, concretely

You do not need to understand the protocol. You need to ask three questions to anyone who offers to plug AI into your tools. Does it rely on an open standard, so I am not locked in? What exact permissions does the AI get, and who checked they are the minimum? Which actions go through a human validation before they leave? If the answers are clear, you have a healthy project. If they are vague, that is the signal to stop.

Read next

Contact

Ready to go from demo to production?

Reply within 24 hours · first conversation free, no strings attached.