BlogHR Tips
May 19, 2026

MCP for HR: How the Model Context Protocol Is Changing What AI Can Actually Do in Your HR Stack

Author:
Kasia UbyszKasia Ubysz
Reviewer:
Kasia Ubysz
0 min
Share on:

Your HR team probably uses ten tools on a good day. An HRIS, a time tracker, a leave management system, a calendar, Slack, maybe a payroll platform, maybe an ATS.

For the past two years, we've all been sold the same promise: AI is going to do the heavy lifting and make this easier. But let's be honest about what we actually got - chatbots that can enthusiastically summarize your leave policy PDF, but somehow still can't actually approve the leave request, check if half the team was already off that week, or update the calendar. 

That changed in November 2024, when Anthropic open-sourced a protocol called MCP - the Model Context Protocol. Eighteen months later, OpenAI, Google, Microsoft, and AWS have all adopted it. So have the first HR platforms. This article explains what MCP means for HR, who's already shipping it, and what to ask your vendors, without the protocol-level jargon. 

What Is MCP and Why Should HR Leaders Care?

The "USB-C for AI" analogy

Before USB-C, every phone and laptop had its own charger. You traveled with a bag of cables. Before MCP, every AI tool needed its own custom API connector to talk to your HR software. If you wanted Claude to read your HRIS and ChatGPT to query your ATS, you needed two completely separate integrations, built and maintained by developers.

This is what engineers call the "M×N problem": M AI models times N software tools equals M×N custom integrations. It doesn't scale.

MCP collapses that to M+N. One MCP server per HR system. Any AI client that speaks the protocol (Claude, ChatGPT, Gemini, Microsoft Copilot) can connect to it. One plug fits all. 

How MCP differs from traditional APIs

Traditional APIs are point-to-point: you hard-code the endpoints, build the connector, maintain it when the API changes. MCP clients discover available tools dynamically at runtime. The AI asks the server "what can you do?" and the server answers with a structured list of capabilities. No hard-coding required.

Feature Traditional API Model Context Protocol (MCP)
Connection model Point-to-point. Each AI model needs its own connector per tool. Hub-and-spoke. One MCP server per system, callable by any compliant AI client.
Discovery Hard-coded – the client must know endpoints in advance. Dynamic – the client queries available tools at runtime.
Vendor lock-in High. OpenAI functions ≠ Anthropic tool use ≠ Google function calling. None. Same MCP server works with Claude, ChatGPT, Gemini, Copilot.
Auth standard Varies by vendor. OAuth 2.1 with PKCE, standardized.

MCP vs chatbots and RAG: the difference between "answer" and "act"

Most AI-powered HR tools today use a technique called RAG – Retrieval-Augmented Generation. RAG reads your documents (a leave policy PDF, an employee handbook, help center articles) and feeds that text to the AI so it can answer questions. That's useful. But RAG is strictly one-way: it retrieves, it doesn't act.

MCP is two-way. The AI reads live data from your HR system and writes back to it. In practical terms:

  • RAG can answer: "What does our parental leave policy say?"
  • MCP can do: "Is David eligible for parental leave starting June 1? If yes, book it, check for team conflicts, and notify his manager."

One is a search engine. The other is an agent that does the work. 

Don't let your vendors sell you MCP as just another feature on a pricing tier. It is a fundamental architectural shift the standard that lets your AI assistant act in your HR systems on your behalf, with your permissions, within your role.

Who's Already Shipping MCP for HR?

As of mid-2026, only a handful of HR vendors have built their own MCP servers. The rest are accessible through third-party wrappers. Tools like Zapier or n8n that bridge the gap, but without the depth of a native integration. Here's where things stand. 

Workable – recruiting-first, 38 tools

Workable launched the broadest native MCP integration in the ATS space in May 2026. Their server exposes 38 tools covering jobs, candidates, pipeline stages, offers, time tracking, and calendar events. Every AI session is scoped to the authenticated user's role via OAuth2 – the AI can only see what you can see.

Their marquee demo: a recruiter asks "Which engineering candidates have been in phone screen for more than a week?" and gets a live answer from the ATS, not a stale export. [Source to link: Workable GlobeNewswire press release, May 13, 2026]

Calamari – native MCP for daily HR workflows 

While Workable tackles recruiting and HiBob tests core HR, Calamari built its native MCP server (live as of May 2026) specifically to handle the highest-frequency daily workflows: leave management, attendance, and time tracking.

Crucially, Calamari solved the security gap that beta implementations are currently struggling with. Instead of relying on a blanket service account, Calamari’s MCP server was built with deep RBAC (Role-Based Access Control) inheritance from day one. When an AI client connects to Calamari, it strictly adheres to user-level permissions. The AI only sees exactly what that specific authenticated user is allowed to see – nothing more.

HiBob – beta since April 2025

HiBob was the first major HR platform to ship an MCP server. It covers people data, time off, and tasks. But the beta has a notable limitation: it doesn't support user-level OAuth yet. Every AI session inherits a service account's permissions — meaning the AI sees everything the service account can see, regardless of who's actually asking.

HiBob's own developer docs acknowledge this: "Employee-level access (with OAuth) is not supported at the moment." 

The big absentees

BambooHR, Personio, Deel, ADP, Gusto, Rippling – none of them have official, vendor-built MCP servers as of May 2026. Workday supports MCP through its Agent Gateway but hasn't released a standalone MCP server.

If you use any of these platforms with AI today, you're going through a third-party wrapper: Zapier, n8n, StackOne, or Composio. These wrappers work, but they're generic – auto-generated from standard API actions, without the semantic depth a native integration provides. 

Zapier and n8n – the universal middle layer

Zapier exposes over 9,000 apps through a single MCP endpoint, including HR connectors for most major platforms. n8n offers 1,650 workflow automation nodes with an open-source MCP server. Both are useful for cross-platform orchestration — chaining an ATS action with a Slack notification with a calendar update.

But they're reach plays, not depth plays. A Zapier MCP wrapper for your HRIS gives an AI generic actions like "create record" or "update field." A native MCP server gives it domain-aware tools like "submit leave request with substitute assignment and team conflict check." The difference matters when you need the AI to actually understand HR workflows, not just push data between systems. 

Look closely at your vendors this year. The HR tech industry is aggressively splitting into two camps – vendors with native MCP servers (deep, secure, purpose-built) and vendors reachable only through third-party wrappers (broad but shallow). When evaluating your stack, ask which camp each vendor falls into.

Four HR Workflows MCP Is Transforming Right Now

These aren't hypotheticals, but workflows that MCP-enabled platforms are executing today. What used to require tab-switching and manual data entry now happens through a single conversation with your AI assistant.

1. Leave and attendance – the highest-frequency use case

Before MCP: An employee opens the HR platform, fills out a leave request form, selects dates, picks a substitute, submits. The manager gets an email, logs in to approve. Someone manually blocks the calendar. If there's a team conflict, nobody notices until Monday morning.

With MCP: The employee tells their AI assistant: "Book 5 days of PTO starting next Monday. Assign John as my substitute." The AI checks the employee's balance in the HRIS, checks team availability, submits the request – all within the conversation.

This matters because every manager asks "who's out this week?" almost every day. Leave and attendance queries are the single highest-frequency HR interaction in most companies. This is where conversational AI delivers the fastest, most visible ROI.

2. Onboarding orchestration

Think about your current onboarding. An HR coordinator burns roughly 30 minutes per new hire playing 'tab roulette' – creating an HRIS record, filing an IT provisioning ticket, setting up a Slack channel, scheduling orientation, and enrolling them in compliance training.

With MCP, "Start the onboarding workflow for Jane Doe, new designer," triggers a chain: HRIS record created, IT ticket filed, Slack channel opened, orientation on the calendar, compliance courses assigned. Each sensitive step simply gets human approval before executing. No dropped steps, and a much faster time-to-productivity. 

3. Candidate pipeline triage

Right now, a recruiter exports a pipeline CSV from the ATS, opens the hiring manager's calendar in another tab, and manually cross-references stalled candidates with available interview slots. Multiply this across twenty open roles.

With MCP, they just ask: "Which engineering candidates have been in phone screen for more than a week, and when is the hiring manager free this week?" The AI queries the ATS for stalled candidates and the calendar for open slots, then presents both in a single answer — with an offer to send the interview invitations. Forrester research suggests AI-driven automation can cut related administrative costs by up to 68%. 

4. On-demand workforce analytics

Normally, an HR analyst has to run a BI query, export it to Excel, pivot it, format it, and send a summary to the manager two days later.

MCP turns that into a 30-second Slack message. "What's our employee turnover rate this quarter compared to last?" The AI queries the HRIS, calculates the comparison, and returns it in the conversation. Workforce data stops being locked behind analyst queues and BI tool licenses.

The Security Checklist Every HR Leader Needs

Connecting AI agents to live HR data – PII, compensation, org structures – is a serious step. The MCP protocol has security built into its specification. But the protocol sets the floor. Your vendor's implementation determines whether it survives an audit.

What the protocol guarantees

The November 2025 MCP specification mandates:

  • OAuth 2.1 with PKCE (Proof Key for Code Exchange) – no outdated OAuth 2.0 implicit grants
  • MCP servers classified as OAuth 2.1 resource servers – the same enterprise pattern used by identity providers like Okta and Azure AD
  • RFC 8707 resource indicators – tokens are bound to a specific server URI, preventing "confused deputy" attacks where a leaked token could be reused against another system
  • HTTPS required for all authentication endpoints

What you must demand from your vendor

Protocol compliance is necessary but not sufficient. Here's what separates a production-ready HR integration from a demo:

  • RBAC inheritance. Imagine a junior coordinator casually asking your AI assistant, "What does the VP of Sales make?" If your vendor uses a shared service account instead of user-level RBAC, the AI will happily spit out that number. It must be denied at the data layer, not by an AI politely deciding to self-censor. Every AI session must inherit the end user's role-based permissions.
  • Human-in-the-loop. Sensitive operations – record changes, salary updates, terminations – should require explicit human approval before the AI executes. The AI suggests; the human confirms.
  • Admin on/off toggle. Administrators must be able to disable MCP integration organization-wide with one click. No buried setting, no support ticket.
  • Audit trail. Every tool call logged with: who asked (user identity), what was requested (parameters), what happened (response), and when (timestamp).
  • Prompt injection defense. MCP servers should validate and sanitize all inputs before translating them into executable commands. Security researchers have identified real prompt injection risks in MCP implementations — this isn't theoretical.

Seven questions to ask any MCP-enabled HR vendor

Before you sign off on an MCP integration, run this checklist:

  1. Do you use OAuth 2.1 with PKCE per the MCP spec, or API-key / service-user authentication?
  2. Does every AI session inherit the end user's RBAC, or a shared service account's?
  3. Is human-in-the-loop required for record-mutating operations?
  4. Can administrators disable MCP organization-wide with one click?
  5. Is every tool call logged with user identity, timestamp, parameters, and response metadata?
  6. What is your prompt-injection defense on tool outputs?
  7. Are you SOC 2 / ISO 27001 / GDPR-compliant on the MCP path specifically — not just the underlying product?

If your vendor can't answer these concretely, they're not ready for production HR data. 

What's Next: the Road to Connected Intelligence

The agent stack is settling

Two open protocols now form the foundation of enterprise AI integration:

  • MCP (Anthropic, November 2024; donated to the Linux Foundation's Agentic AI Foundation in December 2025) defines how an AI agent talks to tools and data sources.
  • A2A – Agent-to-Agent (Google, April 2025; now also under the Linux Foundation with 150+ partner organizations including Salesforce, SAP, Workday, and ServiceNow) defines how AI agents talk to each other.

In practice, they work together: a general-purpose orchestrator agent delegates a task to a specialized HR agent (via A2A), which then uses MCP to query your HRIS, check the calendar, and update Slack. Your HR data stays in your HR system. The AI handles the coordination. 

What analysts are saying

Gartner (August 2025): 40% of enterprise apps will embed task-specific AI agents by end of 2026 — up from less than 5% in 2025. But Gartner also warns that over 40% of agentic AI projects will be cancelled by end of 2027 for cost, ROI, or governance reasons.

Josh Bersin (January 2026): AI "superagents" will eliminate up to 30% of traditional HR roles, shifting HR professionals toward hiring, coaching, and managing AI infrastructure.

Forrester: AI-driven automation can cut HR administrative costs by 68%.

The message for HR leaders: this is moving fast, but not everything will stick. Start with one high-frequency workflow. Pilot deliberately. Don't bet your stack on predictions — test what works for your team.

What to do now

  • Audit your HR stack: Which tools have native MCP servers? Which are only reachable through third-party wrappers?
  • Pick one workflow — leave management, attendance queries, candidate triage — and run a 90-day pilot.
  • Align IT and HR on governance before agent sprawl starts. Agree on authentication standards, audit requirements, and kill switches now.
  • Press your vendors for a dated MCP roadmap. "We're exploring it" isn't an answer in mid-2026.

Calamari and MCP – Built for the Workflows That Happen Every Day

When we were mapping out Calamari’s MCP server, we looked at the data and realized something obvious: the real value of AI in HR isn't in automating the annual performance review or a quarterly headcount report. It’s in killing the daily friction. It’s the "Who's out next week?" and the "Clock me in" messages that interrupt your team fifty times a day. These are the interactions that happen constantly across every team – and they're exactly what Calamari does best.

What Calamari MCP does today

Calamari's MCP server works with any AI client that supports the protocol — Claude, ChatGPT, Gemini, and others. Here's what you can do right now:

  • Submit leave requests through your AI assistant. Say "Book me a personal leave on March 5, assign Kamil as my substitute" — the AI handles the rest.
  • Clock in and out by telling your AI "start my workday" or "clock me out." No dashboard, no app switch.
  • Search for people and absences — ask "who's out next week?" or find any employee by name.

All actions respect your existing Calamari permissions. The AI sees exactly what you see in Calamari — nothing more. 

What's coming next

  • Search work schedules and holiday calendars
  • Attendance data analysis without Excel exports – ask your AI for the report, get the answer
  • Slack and Microsoft Teams as surfaces for employees to interact with Calamari through AI
  • Natural-language system configuration for administrators

Why we built it this way

  • Focused on what happens most. Leave requests, time tracking, attendance queries – these are the workflows every company runs every day. We started here because this is where AI assistants deliver the most immediate, visible value.
  • Security built in from day one. Calamari's MCP server inherits your existing role-based permissions. Administrators can enable or disable MCP integration with a single toggle in Settings. No separate permission system to configure, no service accounts with blanket access.
  • Works where your team already works. You don't need to learn a new interface. If you're already working in Claude or ChatGPT, Calamari's data is right there – one question away.

Join the Calamari MCP waitlist →

Key Takeaways

  • MCP lets AI assistants act in your HR systems – not just answer questions about them. It's the open standard that connects any AI client to any HR tool through one protocol.
  • Only a handful of HR vendors have shipped native MCP servers. Workable (GA, May 2026), HiBob (beta, April 2025), and Calamari are in the first wave. Everyone else is reachable only through third-party wrappers.
  • The highest-ROI use cases are the highest-frequency ones: leave management, attendance, onboarding orchestration, candidate pipeline triage.
  • Demand specifics on security: OAuth 2.1, user-level RBAC, audit logging, human-in-the-loop for sensitive operations. If your vendor can't answer the seven questions above, they're not production-ready.
  • Start with one workflow. Pick the highest-frequency process, run a 90-day pilot, measure the time saved. Don't wait for your vendor to move – ask them where they stand.
Kasia Ubysz

Written by Kasia Ubysz

Product Marketing Manager @ Calamari

Product Marketing Manager at Calamari with a passion for HR tech and recruitment marketing. Kasia drives brand awareness and growth initiatives across the customer journey. When she’s not crafting marketing strategies, you’ll find her exploring analog wellness concepts or hiking through forests.

You may also like

HR Tips
Nov 24, 2025

How does AI Copilot revolutionize working with documents in the Microsoft 365 environment?

The job market is changing faster than ever. Recruiters review dozens, sometimes hundreds, of applications daily. It's easy to miss the ideal candidate in a flood of information, especially when processes are repetitive and time-consuming. Fortunately, artificial intelligence is increasingly entering the HR world, and it seems like it's here to stay. Microsoft Word with Copilot is a combination that supports recruiters in their work.

Marta CzapikMarta Czapik
HR Tips
May 5, 2026

SharePoint – Simple Intranet in Microsoft 365. Is Self-Implementing Really Possible?

Many companies, when they first start exploring internal communication tools, don't realize they need an intranet at all. They focus on specific pain points: poor communication, inconsistent information, no central knowledge base, no single place for company documents.Employees increasingly want simple, practical tools for managing information, communication, and documents inside their organization. SharePoint in Microsoft 365 is exactly that — a platform for building a modern intranet where people can collaborate, share knowledge, and find everything they need in one place. Thanks to its tight integration with Microsoft 365, SharePoint goes beyond a file repository. It becomes an organizational hub, accessible to the right people from anywhere, on any device.

Marta CzapikMarta Czapik

HR knowledge in your inbox

Get monthly insights and make HR simple with us

By entering your email, you consent to receiving commercial information via email from Calamari sp. z o.o. sp.k., with its registered office in Warsaw, ul. Chmielna 2/31, 00-020 Warsaw.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Powering Fast Growing Companies

Join 130.000+ relaxed employees from 106 countries

See for yourself how much time you can save by automating time off management, easy time tracking or having one place for all HR documents.

No card required. Trial ends automatically.
Contract left Contract Right
Product
Time Off
Plan time off and automate entitlement calculation
Time & Attendance
Track attendance and work time of employees
Core HR
Organize work with documents and people
Performance
Collect employee feedback, analyze results and growth your team
Pricing
Resources
BlogWhat's newSecurityHelp Center
Customers
Start free trial
Already a client? Log in
Download the mobile app:
Calamari on App StoreCalamari on Google Play

HR knowledge in your inbox

Get monthly insights and make HR simple with us

By entering your email, you consent to receiving commercial information via email from Calamari sp. z o.o. sp.k., with its registered office in Warsaw, ul. Chmielna 2/31, 00-020 Warsaw.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.