CHAT — Development & AI automation
The ERP that answers in chat
We connect Claude to your ERP or company database through a secure connector: ask in plain language — “how much did we invoice in June?” — and get numbers, tables and charts from your real data. Everyone sees only what they are allowed to, every access is logged.
Describe the situation and we'll tell you how we can help. No commitment, no blind quote.
Your company already uses claude.ai. We install a connector: a small service that sits between Claude and your ERP or database. From that moment, anyone in the company (who is authorised) can ask questions in plain language — “how much did we invoice in June?”, “which agent sold the most drills?”, “chart of revenue by store” — and Claude answers with numbers, tables and charts taken from your real company data, respecting the permissions of whoever asks.
What you can ask
Sales, invoices, customers, products, agents, stores, suppliers, purchases. Rankings and cross-statistics on any dimension (e.g. revenue by agent by store), charts (bar, line, pie) and pivot tables generated on the fly, filters by period and dates. The owner can even ask “who logged into the ERP today and what did they look at?” and get the access log.
How it works
- The user writes a question in chat on claude.ai (computer or phone).
- Claude turns the question into a request and sends it to the connector — never to the database directly. The connector exposes only a closed list of predefined operations: Claude can use those and nothing else.
- The connector checks who is asking (login, role, permissions), runs the query, logs the access and returns only the result.
- Claude presents the answer in plain language, with tables and charts.
Three things to keep in mind: Claude does not browse your database freely; each user sees only their part (accounting doesn’t see margins, warehouse doesn’t see revenue); everything is logged and the log is available to the owner — even in chat.
Security, in short
- Personal login only (OAuth, the same “Sign in with…” standard used by Google or Microsoft). Claude never sees company passwords.
- Role-based permissions enforced server-side: the connector doesn’t hand over data outside your permissions — clever prompts don’t work either.
- Every access leaves a trace: who logged in, when, what they asked.
- The database stays in the company: encrypted outbound connection through Cloudflare infrastructure, no open inbound ports, database credentials never leave your servers.
- Queries, not data dumps: Claude receives only the results of individual authorised questions, never the whole archive.
Full technical details (OAuth 2.1 + PKCE, Cloudflare Workers, connection options, audit) are on the Italian security page: Sicurezza dei dati.
Try the demo (5 minutes, nothing to install)
Both demo connectors use the same demo database: “MRG srl”, a fictional wholesale distributor of tools and hardware — all demo data is made up. You need a claude.ai subscription.
- Open demo (no login) — full view, zero friction:
https://mrg-demo.webmaster-96a.workers.dev/mcp - Demo with login and roles — see permissions and the access log in action:
https://bia-mcp-demo.webmaster-96a.workers.dev/mcp— demo usersadmin(owner, sees everything),beatrice(accounting, no margins),massimo(warehouse, purchases only), single password1234(published on the login page).
To connect: claude.ai → Settings → Customize → Connectors → “Add custom connector” → paste the URL → enable the connector from the “+” tools menu in chat. Then try: “What can you do?”, “How is 2026 going compared to 2025?”, “Bar chart of revenue by store in 2026”.
Frequently asked questions
Is my data used to train the AI?
Anthropic's handling of data is governed by its commercial terms and privacy policy, available at anthropic.com/legal. Before connecting any real data, we also define the privacy and contractual aspects together (GDPR roles and appointments).
Who decides what each employee can see?
Your company. Roles and permissions are defined at activation — management, administration, accounting, warehouse, sales agents — and can be changed at any time. Limits are enforced by the connector, not left to the AI's goodwill.
Do I need to expose my database to the internet?
No. The link is an encrypted outbound connection from your company (tunnel): no inbound ports on the firewall, no public IP needed, and database credentials never leave the company.
Can the assistant modify my data?
No: everything is read-only by default. Write operations can be evaluated on request, as a project option, with per-operation confirmation and full logging.
What do I need to get started?
A claude.ai subscription for your users and a technical meeting to connect the ERP. The demo, however, takes five minutes and requires no installation.
What if an employee leaves the company?
You revoke their access and their token stops working. Revocation can target a single user or everyone, at any time.