Run drip campaigns, lead qualification, and win-back sequences through AI agents — with consent enforcement, suppression list checks, and deliverability controls built into every send.
Marketing technology stacks are increasingly agent-driven. Segmentation, campaign triggering, and personalization decisions that once required human configuration are now delegated to AI agents operating across CRMs, CDPs, and email service providers. This shift creates efficiency gains but also new compliance exposure. CAN-SPAM, GDPR, CCPA, and the ePrivacy Directive impose specific obligations on automated commercial email — unsubscribe honor, consent documentation, and data use restrictions that don't pause because a model made the sending decision. Martech companies operating AI agents need email infrastructure that enforces these constraints structurally, not as an afterthought. MultiMail provides a programmatic email API with oversight modes, suppression list enforcement, and audit trails designed for agents running at campaign scale.
Automated campaigns that fire without checking suppression lists or consent records create CAN-SPAM and GDPR violations at scale. An agent that sends to an unsubscribed contact 50,000 times is 50,000 violations, not one. Suppression checks must be structural, not optional.
High-volume martech sends require active deliverability monitoring. Bounce rates above 2%, spam complaint rates above 0.1%, and sudden volume spikes all damage domain reputation. Agents executing campaigns need real-time access to these signals to throttle or pause automatically.
AI-generated campaign copy, subject lines, and personalization tokens introduce accuracy risk. A model that hallucinates a discount percentage or references a product feature incorrectly creates customer trust damage and potential FTC exposure. Human review checkpoints on outbound campaign drafts reduce this risk.
Martech agents frequently operate on customer data sourced from CDPs, CRMs, and enrichment providers. GDPR and CCPA require documented legal bases for each data use. Agents that ingest audience segments and immediately trigger sends without validating data provenance create liability gaps.
Customers expect preference centers to be respected — channel preferences, topic subscriptions, and send frequency caps. Agents optimizing for engagement metrics will over-send to responsive segments if frequency constraints aren't enforced at the infrastructure level.
Run drip sequences and triggered campaigns autonomously while marketing ops receives real-time notifications on every send. The monitored oversight mode lets agents execute at campaign velocity without requiring per-message approval, while maintaining a human-visible audit trail. Marketing teams can intervene on anomalous sends without being in the critical path for normal operations.
Product announcements, win-back campaigns, and any send with AI-generated personalization can be routed through gated_send mode — the agent drafts the message, a human reviews before delivery. Use list_pending to surface queued messages and decide_email to approve or reject. This creates a human checkpoint for copy accuracy without blocking the agent's drafting and segmentation work.
Agents analyzing inbox engagement patterns, reply rates, and thread context for lead scoring or segmentation can operate in read_only mode. The agent reads email data via check_inbox, read_email, and get_thread to build audience signals without any send permissions — useful for analysis pipelines that feed into separate campaign decision systems.
Feedback requests, order confirmations, and other transactional sends with low personalization variance and pre-approved templates can operate in autonomous mode. The agent calls send_email directly without human approval gates, appropriate for high-volume transactional flows where template accuracy is governed by pre-review rather than per-send review.
import multimail
client = multimail.Client(api_key="mm_live_...")
def run_drip_sequence(lead_email: str, mailbox: str, sequence: list[dict]):
"cm"># Check current sequence position via tags
contacts = client.manage_contacts(query=lead_email, mailbox=mailbox)
if not contacts:
return
contact = contacts[0]
existing_tags = contact.get("tags", [])
"cm"># Skip if already completed or unsubscribed
if "drip_complete" in existing_tags or "unsubscribed" in existing_tags:
return
"cm"># Determine next step
sent_steps = [t for t in existing_tags if t.startswith("drip_step_")]
next_step_index = len(sent_steps)
if next_step_index >= len(sequence):
client.tag_email(contact_id=contact["id"], tags=["drip_complete"])
return
step = sequence[next_step_index]
"cm"># Send next step — monitored mode, no approval needed
result = client.send_email(
mailbox=mailbox,
to=lead_email,
subject=step["subject"],
body=step["body"],
tags=[f"drip_step_{next_step_index}", "campaign_drip"]
)
print(f"Sent drip step {next_step_index} to {lead_email}: {result[&"cm">#039;message_id']}")
# Example sequence
sequence = [
{"subject": "Welcome to the platform", "body": "Here&"cm">#039;s how to get started..."},
{"subject": "Your first integration guide", "body": "Most teams start with..."},
{"subject": "Are you getting value?", "body": "Here&"cm">#039;s what teams like yours typically do next..."}
]
run_drip_sequence("[email protected]", "[email protected]", sequence)Agent executes a multi-step drip sequence, tagging contacts after each send to track sequence position and avoid re-sending to completed or unsubscribed contacts.
import multimail
from datetime import datetime, timedelta
client = multimail.Client(api_key="mm_live_...")
def queue_winback_drafts(churned_accounts: list[dict], mailbox: str):
queued = []
for account in churned_accounts:
days_since_churn = (datetime.now() - account["churned_at"]).days
"cm"># Personalize based on churn duration
if days_since_churn < 30:
subject = f"We noticed you left — here&"cm">#039;s what changed"
body = f"Hi {account[&"cm">#039;first_name']},\n\nIt's been {days_since_churn} days since your subscription ended..."
else:
subject = f"A lot has changed since you left"
body = f"Hi {account[&"cm">#039;first_name']},\n\nWe've shipped significant updates since you last used the platform..."
# Queue as pending (gated_send mode — agent drafts, human approves)
result = client.send_email(
mailbox=mailbox,
to=account["email"],
subject=subject,
body=body,
tags=["win_back", f"churn_day_{days_since_churn}"],
oversight_mode="gated_send" # holds for approval
)
queued.append(result["message_id"])
print(f"Queued {len(queued)} win-back drafts for review")
return queued
def review_winback_batch(mailbox: str):
# Marketing ops reviews pending sends
pending = client.list_pending(mailbox=mailbox, tag="win_back")
print(f"{len(pending[&"cm">#039;messages'])} win-back messages awaiting approval")
for msg in pending["messages"]:
print(f" To: {msg[&"cm">#039;to']} | Subject: {msg['subject']}")
# In practice: route to approval UI
# client.decide_email(message_id=msg["id"], decision="approve")
# client.decide_email(message_id=msg["id"], decision="reject")Agent drafts personalized win-back messages for churned accounts and queues them for human review before delivery. Marketing ops approves or rejects each batch via list_pending and decide_email.
import multimail
import re
client = multimail.Client(api_key="mm_live_...")
BUYING_SIGNALS = [
r"\bpric(e|ing)\b",
r"\bdemo\b",
r"\btrial\b",
r"\bbudget\b",
r"\bcontract\b",
r"\bteam size\b",
]
def qualify_inbound_replies(mailbox: str):
inbox = client.check_inbox(
mailbox=mailbox,
filter={"tags": ["campaign_drip"], "unread": True}
)
qualified = []
for email_summary in inbox["emails"]:
email = client.read_email(
mailbox=mailbox,
message_id=email_summary["id"]
)
body_lower = email["body"].lower()
matched_signals = [
pattern for pattern in BUYING_SIGNALS
if re.search(pattern, body_lower)
]
if len(matched_signals) >= 2:
"cm"># Tag as MQL — buying intent detected
client.tag_email(
message_id=email["id"],
tags=["mql", "buying_intent", f"signals_{len(matched_signals)}"]
)
qualified.append({
"from": email["from"],
"signals": matched_signals,
"thread_id": email["thread_id"]
})
print(f"MQL: {email[&"cm">#039;from']} — {len(matched_signals)} buying signals detected")
return qualified
qualify_inbound_replies("[email protected]")Agent monitors a shared sales inbox, reads inbound replies to campaigns, and tags leads by qualification signal — without sending anything, using read_only patterns for the analysis phase.
# MCP tool sequence for feedback request campaign
# Run from Claude Desktop or any MCP-compatible client
# Step 1: Send feedback request to recent customer
send_email(
mailbox="[email protected]",
to="[email protected]",
subject="Quick question about your experience",
body="Hi Sarah,\n\nYou've been using the platform for 30 days now. We'd value your honest take — what's working well, and what's frustrating?\n\nThis goes directly to our product team, not a survey form.\n\nThanks,\nThe Team",
tags=["nps_request", "cohort_2026_q2"]
)
# Step 2: Check for replies (run 3-5 days later)
check_inbox(
mailbox="[email protected]",
filter={"tags": ["nps_request"], "has_replies": true}
)
# Step 3: Read full thread to extract sentiment
get_thread(
mailbox="[email protected]",
thread_id="<thread_id_from_step_2>"
)
# Step 4: Tag by sentiment for downstream routing
tag_email(
message_id="<reply_message_id>",
tags=["nps_response", "sentiment_positive"]
)Using MultiMail's MCP server from a Claude Desktop workflow — agent sends post-purchase feedback requests and reads responses to build NPS signal.
import multimail
client = multimail.Client(api_key="mm_live_...")
def send_product_announcement(recipients: list[str], announcement: dict, mailbox: str):
results = []
for recipient in recipients:
result = client.send_email(
mailbox=mailbox,
to=recipient,
subject=announcement["subject"],
body=f"""{announcement[&"cm">#039;body']}
---
You&"cm">#039;re receiving this because you're a {announcement['product_name']} user.
Unsubscribe: https://yourdomain.com/unsubscribe?email={recipient}
Your Company, Inc. · 123 Main St, San Francisco CA 94105
""",
headers={
"List-Unsubscribe": f"<mailto:[email protected]?subject=unsubscribe>, <https://yourdomain.com/unsubscribe?email={recipient}>",
"List-Unsubscribe-Post": "List-Unsubscribe=One-Click",
"X-Campaign-ID": announcement["campaign_id"]
},
tags=["product_announcement", announcement["campaign_id"]]
)
results.append(result["message_id"])
print(f"Sent announcement to {len(results)} recipients")
return results
announcement = {
"subject": "New: Bulk export and custom webhook routing",
"body": "We shipped two features this week that came directly from your feedback...",
"product_name": "Platform",
"campaign_id": "announce_2026_q2_bulk_export"
}
send_product_announcement(
recipients=["[email protected]", "[email protected]"],
announcement=announcement,
mailbox="[email protected]"
)Sends a product announcement email with CAN-SPAM compliant structure — physical address, unsubscribe mechanism, and sender identification — via the REST API.
| Regulation | Requirement | How MultiMail helps |
|---|---|---|
| CAN-SPAM | Commercial emails must include a valid physical postal address, a clear unsubscribe mechanism, and must honor opt-out requests within 10 business days. The sender identity must not be deceptive. AI agents executing campaigns at scale must check suppression lists before every send. | MultiMail's tagging system lets agents track unsubscribe status per contact using tag_email and filter sends via check_inbox with tag exclusions. Monitored mode creates an audit trail of every agent send, and the API's message headers support List-Unsubscribe and List-Unsubscribe-Post for one-click unsubscribe compliance. |
| GDPR | Under GDPR Articles 6 and 7, sending commercial email to EU contacts requires a lawful basis — typically explicit consent or legitimate interest with a documented balancing test. Consent must be granular, freely given, and withdrawable. Automated profiling for segmentation may require Article 22 safeguards. | MultiMail's read_only oversight mode supports audit pipelines that verify consent status before any sends are triggered. The gated_send mode ensures a human reviews high-risk sends (new segments, re-engagement of lapsed contacts) before delivery. All API calls are logged with timestamps for data subject access request responses. |
| CCPA | California consumers have the right to opt out of the sale of their personal information and to request deletion. Martech companies using third-party audience data must honor downstream deletion requests across all active campaigns and suppress contacts whose data has been deleted. | Contact tags created via tag_email provide a mechanism to mark contacts for suppression following deletion requests. Agents can query tag_email state before each send to enforce suppression without needing to modify campaign logic — the check happens at the infrastructure layer. |
| ePrivacy Directive | The ePrivacy Directive (and its national implementations) requires prior consent for electronic direct marketing to EU individuals, with a soft opt-in exception for existing customers marketed on similar products. Consent must be documented and traceable to the specific marketing communication. | MultiMail's campaign tagging model lets agents annotate each send with consent basis metadata. The monitored oversight mode surfaces every agent-initiated send to marketing ops in real time, enabling teams to spot consent basis gaps before they become complaints to data protection authorities. |
Email infrastructure built for AI agents. Verifiable identity, graduated oversight, and a 50-tool MCP server. Formally verified in Lean 4.