What is the Prodeal MCP Server?
MCP (Model Context Protocol) is an open standard that allows AI assistants to connect securely to external platforms and take actions on your behalf. Prodeal's MCP server is what makes those connections possible — it's the layer that translates requests from an AI assistant into authorized actions within your Prodeal account.
Today, Prodeal supports connecting via MCP to Claude. Support for additional AI assistants, including Microsoft Copilot and others, is on the roadmap.
Prodeal's MCP server is maintained and updated independently of the core platform, so we can ship new capabilities frequently without impacting your day-to-day Prodeal experience.
What can an AI assistant do with my Prodeal account?
When connected, an AI assistant can take actions in Prodeal on your behalf — scoped strictly to your account permissions. Examples include:
Listing your active deal rooms
Reviewing checklist status and outstanding items
Accessing documents and folder structures within a room
Combining Prodeal data with other connected tools to automate multi-step workflows
The available actions will grow over time as we expand the MCP server's capabilities.
Security FAQ
Is my data exposed to the AI assistant or its provider?
Only what you explicitly request. The MCP server acts as a secure, on-demand proxy — it does not store your Prodeal data, cache responses, or transmit anything beyond what's needed to fulfill your specific request. The AI assistant receives the response to your query, nothing more.
Does the MCP server store any of my data?
No. The MCP server is stateless, meaning it holds no customer data between requests. Every interaction is handled as an isolated, temporary session.
How does Prodeal verify that a request is actually coming from me?
Every request is authenticated using OAuth 2.0 — the same industry-standard authorization framework used by Google, Salesforce, and most major platforms. When you authorize a connection, Prodeal issues a cryptographically signed token tied specifically to your account and that integration. The token is verified on every request and cannot be reused across different integrations.
Is the connection encrypted?
Yes. All traffic between an AI assistant and Prodeal travels over encrypted HTTPS. The MCP server is not exposed to the public internet — incoming traffic passes through a web application firewall that screens for common attack patterns before anything reaches Prodeal's infrastructure. Outbound communication is restricted to a defined list of approved internal services.
Who can enable MCP access?
MCP access is controlled at two levels. An org admin must enable it for the organization first, and then individual users enable it for their own accounts. Neither step is on by default — access requires deliberate action from both the admin and the user.
Can Prodeal see what I'm asking the AI assistant?
No. Your conversations with an AI assistant are between you and that provider. Prodeal only sees the API calls that result from those conversations — the same as any other API request made on your behalf.
Where is the MCP server hosted?
The MCP server runs in a private, isolated environment on AWS and is never directly accessible from the public internet. All incoming traffic is routed through a CDN and web application firewall before it reaches the server.
What happens to logs and audit trails?
Network and application activity is logged for security and compliance purposes. Sensitive credentials — like authorization tokens — are automatically scrubbed from all logs. No cryptographic keys or secrets are stored in code; they are loaded securely at runtime from a secrets manager.
Does this affect my existing Prodeal workflows?
No. The MCP server runs independently of the core Prodeal platform. Updates to it do not require maintenance windows and have no impact on your normal Prodeal experience.
