Model Context Protocol (MCP) is an open technical standard that defines how AI assistants connect to external data systems and retrieve information in real time. Before MCP, connecting an AI tool to any given data source required a custom integration built specifically for that combination. MCP replaces that approach with a single, standardized communication layer that any compatible AI assistant can use to communicate with any compatible data system.

MCP was introduced by Anthropic in late 2024. OpenAI and Google adopted it in 2025. Governance was transferred to the Linux Foundation in late 2025, making it a vendor-neutral open standard. Key characteristics:

• Open standard — free to implement, not owned by any single company
• Model-agnostic — compatible with any AI assistant that adopts the protocol
• Real-time — returns live data rather than cached or previously scraped content
• Bidirectional — supports both reading data and initiating actions such as booking appointments or submitting inquiries
• Authentication — the MCP specification includes OAuth 2.1 standards for controlled access to data

An MCP implementation involves three components working together.

The MCP server is installed on or connected to a website or domain. It acts as a controlled gateway between the underlying data — inventory, pricing, vehicle specifications, images, scheduling availability — and any AI assistant that requests it. The server defines what data is accessible and under what conditions.

The MCP client lives inside the AI assistant the shopper is using. When a shopper asks their AI to find a specific vehicle, the client formats that request according to MCP standards and sends it to the appropriate MCP server. The server returns structured, current data and the AI presents it to the shopper.

The host manages the overall session — handling authentication, routing requests to the correct data sources, and maintaining the connection between client and server.

From the shopper’s perspective none of this is visible. They ask a question in plain language and receive a current, accurate answer. A single MCP server can simultaneously serve an AI-powered chat widget on the dealer’s own website and external AI agents arriving from outside the dealer’s web presence, using the same live data connection for both.

A traditional AI chatbot operates from a fixed script or a snapshot of information provided at the time of setup. It matches keywords in a visitor’s message to pre-written responses. If the question falls outside the script, the chatbot either returns a default response or routes the visitor to a human. It does not access live systems and cannot take action on a visitor’s behalf.

An MCP-enabled AI agent differs in three ways:

• Live data access — the agent queries connected systems in real time, returning inventory that reflects current availability at current pricing
• Natural language understanding — the shopper describes what they want in their own words; the agent interprets the request rather than matching keywords
• Action capability — an MCP-enabled agent can take steps within a conversation, such as checking availability, scheduling a test drive, or initiating a purchase inquiry, without requiring the shopper to navigate elsewhere

What a dealer can expose through an MCP server depends on which data sources have been connected to it. Data generally falls into two categories based on where it originates.

Data typically accessible through dealer website systems:

• New and used vehicle inventory — VIN, year, make, model, trim, color, price, photos, specifications
• Current incentives and dealer-applied pricing
• Service department appointment availability via online scheduling systems
• Dealership information including hours, location, and contact details
• Finance and lease payment estimates based on published rates

Data that requires integration with dealer management or third-party systems:

• Customer service history and repair records
• Warranty coverage status
• Open recalls by VIN
• Technician availability and labor time estimates
• F&I product details tied to a specific customer’s deal structure

The availability of data in the second category depends on the integration agreements and technical connections a vendor has established with the relevant systems.

As MCP becomes more widely adopted, dealers evaluating their current or prospective technology vendors may find the following questions useful:

• Do you have an MCP server deployed today? A deployed server and a stated roadmap represent different stages of readiness.
• What data does your MCP server expose? Inventory and pricing are the baseline. Service scheduling, DMS data, and customer-facing actions represent deeper integration.
• Who manages the MCP server? A vendor-managed server is part of the service agreement. A dealer-managed server requires technical resources on the dealer’s side.
• Which AI assistants can access it? A properly built MCP server following the open standard should be accessible to any MCP-compatible AI assistant.
• Is your implementation built to the current MCP specification? The MCP ecosystem continues to develop, including emerging standards for automatic server discovery by AI agents.

Some integration platforms have moved beyond MCP as a feature and built it into their core architecture. Truto, for example, allows any of its 650+ SaaS connectors to be exposed as an MCP server with a single API call — giving AI agents like Claude or ChatGPT direct, scoped access to live data without custom integration work. This illustrates how MCP is becoming infrastructure rather than a differentiator: the standard handles the connection layer, and the data behind it is what varies by vendor.

An API (Application Programming Interface) is a defined connection between software systems that transfers structured data through fixed, hardcoded endpoints. Each integration is purpose-built — a developer writes specific code to connect System A to System B, with predetermined data formats and call patterns. APIs are the backbone of dealership software — how your CRM talks to your DMS, your website processes payments, and data moves between platforms.

Whereas an API requires custom code written for every point-to-point connection, the MCP server is already pre-authorized to know what data it can release and ingest from connected systems — DMS, CRM, Inventory — and which AI agents it can exchange that data with. When an agent connects, an authorization handshake occurs and data flows immediately. No custom integration code is written for each new connection. A dealership or vendor configures the MCP once, and any authorized AI agent can work with it from that point forward. Changes in connectivity only require reconfiguration.

ISO/IEC 27001 is an international standard for information security management published by the International Organization for Standardization. It defines the requirements for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS) — a structured framework of policies, processes, and controls for managing information security risk.

Key components include:

• Context — understanding the organization, its stakeholders, and the scope of the ISMS
• Leadership — commitment from management and defined roles and responsibilities
• Planning — identifying risks and opportunities, setting security objectives, and planning to achieve them
• Support — ensuring adequate resources, competence, awareness, and documented information
• Operation — implementing and controlling processes to meet ISMS requirements
• Performance evaluation — monitoring, measurement, analysis, and evaluation of the ISMS
• Improvement — continual improvement of the ISMS based on evaluation results

ISO 27001 certification is awarded following an audit by an accredited certification body. Certification requires periodic surveillance audits and recertification to remain current. Accreditation bodies include ANAB (anab.ansi.org) and the ISO directly (iso.org).

What is SOC 2 Type 2 Certification?

SOC 2 (System and Organization Controls 2) is an auditing framework developed by the American Institute of Certified Public Accountants (AICPA) that defines how service providers should manage and protect client data. A SOC 2 Type 2 certification is issued following an independent audit conducted by a licensed CPA firm, covering an extended period — typically six to twelve months — rather than a single point in time.

The audit evaluates controls across five trust service criteria:

• Security — the system is protected against unauthorized access
• Availability — the system is available for operation and use as committed
• Processing Integrity — system processing is complete, valid, accurate, timely, and authorized
• Confidentiality — information designated as confidential is protected as committed
• Privacy — personal information is collected, used, retained, and disposed of in conformity with the provider’s stated privacy commitments

The AICPA sets the standards for SOC 2. Licensed CPA firms accredited by the AICPA conduct the audits. A current SOC 2 Type 2 report documents the results of that audit for the covered period.

Dealerships handle sensitive data across multiple departments — customer personally identifiable information, credit applications, service history, financing records, and data connected to dealer management systems. When a software or service provider has access to any of that data, the dealer has an interest in understanding how that provider manages and protects it.

SOC 2 Type 2 and ISO 27001 are two of the most widely recognized independent frameworks for verifying that a vendor has documented security controls in place. Both involve third-party audits conducted against established standards rather than self-assessment. The primary distinctions are:

• SOC 2 Type 2 is specific to the United States, governed by the AICPA, and evaluates controls over a defined time period
• ISO 27001 is an international standard applicable across jurisdictions and evaluates the overall information security management system

Neither framework is universally required for dealership software vendors. Dealers evaluating vendors with access to customer data, DMS feeds, or financial systems may request a current SOC 2 Type 2 report or ISO 27001 certificate as part of their vendor evaluation process.