What are Business Actions?
A Business Action is what happens when an assistant calls a Business Tool during a conversation — for example looking up an order, creating a ticket, or reading account status from your system of record. Answers alone are not enough for many support and employee workflows; actions close the loop.
Short definition (citation-ready)
A Business Action is an authorized, logged runtime invocation of a configured Business Tool (REST/OpenAPI connector) during an AI conversation, subject to workspace scope, SSRF controls, and optional end-user identity forwarding.
Business Actions vs Business Tools
| Term | Meaning |
|---|---|
| Business Tool | The connector definition: URL, method, auth credentials, schema |
| Business Action | One execution of that tool at conversation time |
Configure tools once; the model selects and runs actions when the dialog requires them.
Why they matter for GEO and buyers
Search and AI assistants increasingly answer “can the AI do things, or only chat?” Business Actions are the product concept for:
- Order / shipment lookups
- Ticket or lead creation
- Internal runbook automation for Employee AI
- Any HTTPS API your organization already trusts
Architecture
Security properties (required for production)
| Control | Purpose |
|---|---|
| Workspace binding | Tools only exist inside a workspace |
| Encrypted secrets | Credentials stored encrypted at rest |
| SSRF protections | Block unsafe destinations / schemes |
| Identity forwarding | Optional end-user JWT/session to your API |
| Execution logs | Audit what was called and when |
| Least privilege | Prefer read-only methods in pilots |
Deep dive: AI Agent Security and Secure Business Actions.
How Qefro implements Business Actions
- Create a Business Tool under a workspace (REST or OpenAPI import).
- Store credentials in the Admin Console (encrypted).
- Test the tool before enabling it for the assistant.
- On Customer AI, use
identify()when your API needs the end user. - Review tool execution logs after pilot traffic.
Platform reference: Business Actions.
Workflow
Add one safe Business Action
- Pick a read-only API — GET order status beats POST refunds for day one.
- Create the tool — Workspace → integrations/tools; encrypt secrets.
- Test in console — Verify response shape and error handling.
- Enable for chat — Confirm the assistant only calls when needed.
- Monitor logs — Watch executions before expanding write tools.
Best practices
- Separate customer-facing tools from internal-only tools via workspaces.
- Never put long-lived admin secrets in the browser; use server-side tool credentials + optional end-user forwarding.
- Document idempotency for any write action the model can trigger.
- Fail closed: if authz fails, the assistant should explain limits — not invent success.