How to use AI in mWater

Working with mWater Through AI Tools & Agents
Quick win: Point your AI here to learn best practices.

Why this guide exists


More and more mWater users are pointing AI assistants and autonomous agents at their data. They use them to build surveys faster, summarize results, fill in dashboards, or bulk-edit records. That's a good thing, and mWater wants to support it.

But there's are more and less structured ways to connect AI, and here the difference matters.

When you ask an agent to "create a survey" or "build a dashboard" and it has no sanctioned, documented channel to use, it tends to do the most direct thing available. It watches the network traffic your browser sends to mWater, works out the internal API, and starts calling that API directly. 

That internal API is the same one mWater's own web and mobile apps use. It was never designed to be a public contract. This is not an issue when using the platform as a human because a lot of the rules that keep your data sane live in the app's screens, not on the server. So when an agent skips the screens, it skips the rules too.

We've already seen what happens:

Neither of these was malicious, and as they happen we can tighten the rules. They're just what happens when a capable agent gets a goal and an unguarded back door. This guide is here to help you, and the agents you direct, use the front door instead for the best, most structured experience that doesn't lead to stuck dashboards or surveys.

These issues share a single root cause: an agent calling the internal API skips the layer where mWater's rules live. That same cause produces a whole family of failures we can predict and get ahead of. The section "The broader risk landscape" maps them out, because the goal here is prevention, not patching one incident at a time.

The one principle

Use mWater's sanctioned AI channel, the MCP server. We recommend you do not let agents reverse-engineer the internal browser API and call it directly.

Everything else in this guide follows from that. 

The sanctioned channel: the mWater MCP server

mWater publishes a Model Context Protocol (MCP) server. Think of it as a purpose-built, AI-facing connection that does for agents what the portal does for people: it lets them get real work done while enforcing the guardrails that keep your data trustworthy.

It's the recommended way for any AI tool to read from or write to mWater.

Why it's safe by design

What the MCP server lets an agent do

What it deliberately won't do

These aren't limitations to work around. They're the whole point.

If you need to change structure (forms, dashboards, indicators)

The MCP server can't redesign forms or dashboards on purpose, and the internal API is not a safe stand-in. So how should AI help with design work?

Let the AI help you inside the portal instead of acting on the API. Have the agent draft the survey logic, suggest question wording, or sketch out a dashboard. Then you build or paste it through the portal's own editors, which check the design as you go. The person stays in the loop exactly where the guardrails live.

If you have a real need for programmatic design changes at scale, like generating many similar forms, get in touch with mWater at info@mwater.co. That's something we'd rather build properly, with validation, than have agents improvise against an internal endpoint.

Guidelines for directing agents


Do:

Don't:

Quick reference: common mistakes and the right pattern


mWater meets AI where it is headed


Capable AI agents are exposing a problem every data platform shares: agents will use whatever interface they can find, and most platforms' internal APIs were never hardened for that kind of use. At mWater we are prepared for this ahead of time. Hopefully these lessons can help other actors in the sector:

This guide, and the agent contract that sits beside it, are the next step. They make the safe path the obvious path, for people and machines alike.

Getting help