What you can integrateYour stack. Your workflow. Our AI in the middle.
The API is built for common integration patterns — CRM triggers, marketing automation hand-offs, and compliance reporting. If your use case isn't covered, the REST API lets you build it.
CRM-triggered campaigns
Connect your CRM to push contacts into a campaign automatically when a trigger fires — a lapsed customer crosses a dormancy threshold, a new inbound lead arrives, a deal stalls in the pipeline. No manual CSV export required.
How it works: Contact import API accepts the same fields as CSV upload — validation, opt-out protection, and encryption all apply.
Booking outcome sync
When a contact reaches BOOKED state, the webhook fires immediately. Your CRM receives the contact ID, campaign name, and booking timestamp — and can update the contact record, create a deal stage, or trigger a calendar invite without human intervention.
How it works: Webhook fires on conversation state change — BOOKED, TIMED_OUT, CLOSED. Event includes enough data to action without a follow-up API call.
Compliance export
The audit log export API returns a full CSV of all messages, compliance decisions, AI directives, and campaign changes for your client — filterable by date range. Use it for internal compliance reporting or to satisfy regulatory inspection requests.
How it works: Export scoped to your client's data — client admins can export their own data, Friyay operators can export any client's data.
Access control
API keys are scoped per client. A client admin's API key cannot access another client's data, regardless of what endpoint is called. The same database-level client scoping that protects the operator platform applies to all API calls.
How it works: Client scoping enforced at the database query layer — not just the UI. Direct API requests are scoped correctly even if the caller constructs a request manually.