Surf Data
Criar ContaCriar Conta
Voltar ao Blog
MCPModel Context ProtocolAIIntroductionAI Agents

What is MCP? Understanding the Model Context Protocol in Simple Terms

MCP is the protocol that lets AI agents access your data securely. We explain what it is, how it works, and why you should care — no jargon required.

Diogo Felizardo·Founder, Surf Data
11 de março de 20265 min de leitura

Imagine hiring a brilliant assistant who can't access any company files. They can answer any generic question, but when you ask "how many customers churned last month?", they have no idea — because they can't access your database.

That's exactly the problem MCP solves.

MCP in one sentence

The Model Context Protocol (MCP) is an open standard that lets AI agents connect to databases, tools, and external systems in a secure, standardized way.

Think of MCP as a "USB for AI". Just as USB standardized how devices connect to computers (before that, every manufacturer had their own cable), MCP standardized how AI connects to data sources.

The problem before MCP

Before MCP, connecting an AI agent to your database was an engineering nightmare. Every combination of AI model + data source required a custom integration.

Want to connect Claude to PostgreSQL? Custom code. Now want ChatGPT to access the same database? More custom code. And Gemini? Even more code.

This created what Anthropic called the N×M problem: N AI models multiplied by M data sources, each needing a separate integration.

| Without MCP | With MCP | |-------------|----------| | 3 models × 3 databases = 9 integrations | 3 models × 1 protocol = 3 connections | | Every integration is different | All follow the same standard | | Maintenance multiplied | Maintenance centralized |

How MCP works in practice

MCP uses a simple architecture with three parts:

1. The Host (who asks)

This is the AI application — it could be Claude, ChatGPT, a custom agent, or any app using an LLM. The host is the one asking questions.

2. The Client (who translates)

Lives inside the host and handles communication with the MCP server. It translates the AI model's request into the format the server understands.

3. The Server (who answers)

This is where the data lives. The MCP server connects to the database, executes queries, and returns results to the agent. It exposes tools — functions that the agent can call.

In practice, the flow works like this:

  • The user asks the agent: "What was January's revenue?"
  • The agent identifies it needs data and calls an MCP tool
  • The MCP server executes the SQL query against the database
  • The result flows back to the agent
  • The agent responds in natural language: "January revenue was $450,000"

All of this happens in seconds, transparently to the user.

Why MCP became the industry standard

MCP was created by Anthropic in November 2024 and, in just over a year, was adopted by virtually the entire industry:

  • OpenAI integrated MCP into ChatGPT in March 2025
  • Google announced Gemini support in April 2025
  • Microsoft, Oracle, AWS, and Cloudflare adopted the protocol
  • In December 2025, Anthropic donated MCP to the Agentic AI Foundation under the Linux Foundation — co-founded with OpenAI and Block

Today, the MCP ecosystem has over 97 million downloads per month and is considered the universal standard for AI-to-data integration.

A real-world example

Let's look at a real scenario. You're a sales manager and want to check your team's performance.

Without MCP:

  • You open a ticket for the BI team
  • Wait 2 days for the report
  • The report doesn't have the breakdown you needed
  • You open another ticket...

With MCP:

  • You open the chat with your company's AI agent
  • Ask: "Which salesperson closed the most deals in the last 30 days?"
  • The agent queries the database via MCP and responds instantly
  • You ask another question, and another — all in real time

The data team configured the queries once. The sales manager accesses them whenever they want, without depending on anyone.

Is MCP secure?

This is the question every technical team asks — and it's the right question.

MCP itself is a protocol, not a complete security solution. But it was designed with security in mind:

  • Access control: you define exactly which queries are exposed as tools
  • Authentication: the specification supports OAuth 2.1 and Bearer tokens
  • Sensitive data: PII masking (personal data protection) can be implemented
  • Safe SQL: best practices include blocking destructive commands (DROP, DELETE, INSERT)

The final security depends on how the MCP server is implemented. A well-built implementation gives the data team full control over what gets exposed.

Who should care about MCP

If you fit any of these profiles, MCP is relevant to you:

  • Data Engineers receiving requests from business teams for data access
  • Backend Developers building AI features into products
  • CTOs and Tech Leads deciding on the company's AI architecture
  • Data professionals who want to empower non-technical teams

Even if you won't implement an MCP server yourself, understanding the concept helps you evaluate tools and make better decisions.

How to get started with MCP without the complexity

There are two paths:

Build from scratch

You implement your own MCP server. Requires knowledge of JSON-RPC, connection management, authentication, and security. It's doable, but takes weeks of development.

Use a managed solution

A platform handles all the infrastructure. You only worry about what matters: which data to expose and how to protect it.

At Surf Data, we simplify this process:

  • Connect your database — PostgreSQL or MySQL, with encrypted credentials
  • Write SQL queries as tools — you define exactly what the agent can query
  • Configure PII masking — native sensitive data protection for LGPD compliance
  • Publish and use — get an MCP URL ready for any agent to consume

In minutes, not sprints.

Frequently Asked Questions

Is MCP an API?

Not exactly. MCP is a protocol — a set of rules for communication. APIs are specific implementations. MCP defines how any AI agent should communicate with any data source, regardless of vendor.

Do I need to switch AI models to use MCP?

No. The major models (Claude, ChatGPT, Gemini) already support MCP. If you use any of them, you can already benefit.

Does MCP only work with databases?

No. MCP can connect agents to any system: databases, APIs, file systems, productivity tools (Slack, Google Drive, GitHub), and much more. Databases are the most common enterprise use case.

Is it open source?

Yes. MCP is an open protocol, maintained by the Agentic AI Foundation under the Linux Foundation. Anyone can implement MCP servers and clients.

Conclusion

MCP is the missing piece that transforms AI from a generic chatbot into an assistant that truly knows your data. It standardized communication between AI agents and data sources, and by 2026, it became the standard adopted across the entire industry.

If your company already uses or plans to use AI agents, understanding MCP is no longer optional — it's essential.

Compartilhar