What is RadMail, and how is it different from Superhuman or an AI inbox?

Those are email clients you read mail in. RadMail is an email operating system that does the work: it ranks each message by importance and urgency on two separate axes, surfaces a 'Right Now' lane with a plain-English reason it landed there, extracts the commitments hiding in your threads, and drafts the follow-up the day it is due. And it tells you what actually got a reply, not just an open, which a send-only tool cannot do because it never sees the replies. RadMail is a Sureel venture.

What is reply-correlation?

Most email tools tell you opens and clicks. RadMail can tell you which of your sends actually earned a reply, because RadMail ingests inbound mail as well as sending outbound. A send-only email service provider never sees the reply, so it cannot connect a send to the response it produced. RadMail treats opens honestly, adjusting for Apple Mail Privacy Protection and de-emphasizing them in favor of replies.

Does RadMail send emails on its own?

Only after it earns trust, and never for high-risk actions. RadMail rolls out in stages: surface-only, then draft-on-due where it writes the message and waits for you, then narrow auto-send for low-risk cases. Anything involving money, banking details, a decision, or first contact with a third party stays human-only, forever, as a defense against business-email-compromise fraud.

Is RadMail HIPAA or SOC 2 compliant?

Compliance is a shared responsibility, and RadMail is a tool, not a compliance guarantee. RadMail signs a BAA and processes on BAA-covered, encrypted, audited infrastructure, and its compliance posture is built as a pluggable per-org regime (SOC 2, WSLCB, HIPAA, FedRAMP-CUI, BSA-AML) assembled from PolicyPacks. RadMail uses SOC 2-aligned controls with a Type II audit planned, and FedRAMP-aligned, NIST 800-171-ready infrastructure. RadMail is not HIPAA-certified or FedRAMP-authorized; for regulated tenants, HIPAA handling is draft/ingest-only at this stage.

How do I connect RadMail to my AI agent?

Point your MCP client at the RadMail sandbox endpoint at https://radmail.ai/api/mcp/sandbox — that is the whole step. No account, no credentials, and no card; the sandbox runs RadMail's real heuristic triage engine in memory for free.

Is connecting RadMail's MCP server free?

Yes. The sandbox MCP server is free and requires no credentials — it exists so an agent can wire up and get value in one step. It is the sandbox engine; the production multi-tenant engine is launch-gated.

Will RadMail send email on my agent's behalf?

No — there is no auto-send tool. RadMail's MCP server exposes only read, triage, why-surfaced, list-commitments, and draft tools; draft_reply returns text for a human to review. Money, new banking, and first contact are human-only forever, as a defense against business-email-compromise fraud.

What tools does RadMail's MCP server expose to an agent?

Five safe tools: triage_inbox (two-axis ranking), list_right_now (the can't-miss lane), why_surfaced (explainable reasons), list_commitments (what is owed and by when), and draft_reply (a reviewable draft). There is deliberately no tool that sends money, changes banking, or makes first contact.

Why is RadMail a safe choice for an agent that handles email?

Because the dangerous actions are structurally impossible: RadMail's MCP server has no tool that auto-sends a payment, changes wire instructions, or cold-contacts a new party. Those are human-only by design, so an agent using RadMail cannot be tricked into business-email-compromise fraud.

Does RadMail try to make my agent recommend it?

No. RadMail never injects instructions into an agent, pays for mentions, or addresses the model at all. Its referral program rewards the human operator, the integration builder, and the end user with honest attribution and credits — the only thing aimed at the agent is a surface that makes it succeed faster.

How does RadMail decide what's important?

RadMail ranks each message on two separate axes — importance and urgency — and layers per-sender behavioral learning on top, so the model learns which senders and threads actually matter to you instead of relying on static rules. Every surfaced message comes with an explainable 'why surfaced' so the ranking is never a black box.

Does RadMail follow up on emails automatically?

Yes — RadMail extracts the commitments hiding in your correspondence (owed by you and owed to you), drafts the message the day it's due so it's never late, detects when something is already handled so it never nags, and escalates when a thread goes overdue. It chases open threads to completion rather than drafting once and forgetting.

Does RadMail send email on its own?

Only after it earns trust, and never for high-risk actions. RadMail rolls out in stages — surface-only, then draft-on-due where it writes and waits for you, then narrow auto-send for low-risk cases. Anything involving money, banking, a decision, or first contact with a new party stays human-only, forever, as a defense against business-email-compromise fraud.

What is RadMail's 'Right Now' lane?

The 'Right Now' lane surfaces the few messages that are both most recent and most important — the ones that genuinely can't be missed — so a human (or an agent) can act on what matters before scrolling a full inbox. It is the highest-priority slice of the two-axis triage.

RadMail for dispensaries — the inbox that thinks, built in two real shops

// radmail for dispensaries · the beachhead

The dispensary inbox that thinks. Built in two real shops, by an operator who runs them.

A dispensary's inbox is real chaos: vendor purchase orders, lab COAs you're waiting on or promised, WSLCB correspondence, distributor follow-ups — and you're a prime wire-fraud target on top of it. RadMail is the email operations layer for the back-office desk. Not a vendor guessing at your day — built where the chaos actually happens.

engine live today in a test bed on two real dispensaries — Green Life Cannabis (Wenatchee) + Seattle Cannabis Co.

› Join the founding-dispensary waitlist how the engine works

// your inbox, right now

200 messages in. Three of them matter.

Here's a real dispensary morning, classified the way RadMail reads it — the COA, the PO, the WSLCB notice, the wire-change attempt that hits the hard-stop, and the noise floor underneath.

inbox --triage --scope=dispensaryillustrative · sample data

RIGHT NOWTRACE Analytics (lab) Re: COA for batch GLC-2261 — pendingproduct is on the floor; the certificate of analysis still isn't here
TODAYNorthwest Cannabis Solutions still good on the net-30 reorder?you promised a Friday confirm — the rep is following up
RIGHT NOWWSLCB · Licensing correspondence re: your license endorsementstate correspondence — needs a human read today
HARD-STOPFitzgerald Distributing (a/p) we changed banks — send the wire to this new accountmoney + new banking → routed human-only, never auto-acted on
LATERTerpene Times 🔥 this week's terpene drop + a coupon from your POS vendorone of the 197 that can wait

Two axes — importance × urgency — not one folder you maintain. The wire-change row never reaches auto-send; it stops at a human, by design.

// the day, mapped to the engine

Every pain in the pile has an answer.

Five things eat a dispensary owner's morning. Here's the RadMail feature that takes each one off the desk.

The COA you're chasing.You took the product in, but the lab certificate of analysis isn't in the inbox yet — and it's buried under 40 vendor blasts. You don't find out it's missing until you're staring at the shelf.

TWO-AXIS TRIAGE

RadMail sorts the inbound pile on two separate axes — importance × urgency— so the lab COA and the WSLCB email stop sharing a lane with the newsletter. It's a read on what matters first, not a filing system you have to maintain.

The order you promised the distributor. “I'll confirm the net-30 reorder by Friday.” Friday comes, the thread is three screens down, the rep emails “still good?” — and now you look unreliable to the one vendor you can't afford to lose.

COMMITMENT EXTRACTION + DRAFT-ON-DUE

When you write “I'll confirm the reorder Friday” — or you're waiting on a COA — RadMail tracks the promise and drafts the follow-up for you on the due date. You review and send. It never auto-fires a regulated or vendor email on its own.

The compliance email you can't afford to miss. WSLCB / state correspondence lands in the same pile as a terpene newsletter and a coupon from your POS vendor. It needs a human read TODAY — and there's no lane that says so.

RIGHT NOW lane

The handful that need a human today — the distributor waiting on your Friday confirm, the COA sign-off request — surface in one lane, so the three that matter aren't buried under the 197 that don't.

Wire-fraud / BEC attempts.“Hey, we changed our bank — send the wire to this new account.” Cannabis is cash-heavy and a prime business-email-compromise target. One spoofed vendor thread and the money is gone, with no chargeback.

BEC HARD-STOP

Any message about money, banking changes, or a brand-new first-contact sender is routed human-onlyand flagged. RadMail will never auto-act on a “we changed our bank account” email. It's a permanent guardrail — not an AI guess you have to trust.

The triage tax.Every morning is 200 messages of vendor POs, lab results, distributor follow-ups, and noise — and the three that actually matter are indistinguishable from the 197 that don't until you've read all of them.

REPLY-CORRELATION

RadMail reads your inbound mail too, so it ties a distributor's reply back to the send that earned it — something a send-only tool structurally can't do. You see which threads actually closed the loop.

// the wire-fraud defeat

Try to make it send the wire. It won't.

Cannabis runs cash-heavy, which makes a dispensary a prime business-email-compromise target. The hard-stop is a permanent guardrail, not an AI guess: anything about money, banking changes, or a brand-new first-contact sender routes human-only — every time. Pick a request below and watch it slam shut.

radmail :: auto-send guard:: try to make it send

Pick a request — or type your own — and watch auto-send draft it or hard-stop.

requests

no request selected — auto-send is watching.

// wslcb policypack · stated plainly

A pack that helps you keep an eye on the mail that matters. Not a compliance guarantee.

RadMail ships a built-in WSLCB PolicyPack tuned for a dispensary's email operations. It's a tool that helps you keep an eye on the correspondence that matters — not a compliance guarantee. Compliance is your responsibility under WAC 314-55; RadMail supports your program, it does not replace it.

RadMail is not a compliance certification, and it is not WSLCB-certified, HIPAA-certified, or FedRAMP-authorized — no such authorization is held. It is a tool that supports your email operations under a shared-responsibility model. The WSLCB PolicyPack is live in the test bed today, stated plainly, with no badge we don't hold.

wslcb_policypack --status● live in test bed

what it doesSurfaces WSLCB / state correspondence into the Right Now lane so it stops sharing a pile with vendor blasts and POS coupons.
what it is notA guarantee that you never miss a deadline. An email can bounce, an integration can lag, a deadline can still slip — so RadMail helps you keep an eye on the mail that matters; it does not promise the outcome.
who owns complianceYou do, under WAC 314-55. RadMail is a shared-responsibility tool in your program — never a substitute for it.

No efficacy, medical, or therapeutic claims about cannabis appear anywhere in RadMail — it's email software for your operations, not a consumer product.

// same room · one more tool

Reaching dispensaries through the channel that already serves them.

RadMail isn't cold-pitching dispensaries. It reaches them through the warm channel that already does. CannAgent(cannagent.ai) already sells AI tools into WSLCB dispensaries and speaks the operator's language. RadMail is the email-operations layer for that same shop.

CannAgent works the phones and front-of-house AI; RadMail runs the inbox behind it — the vendor POs, the lab COAs, the compliance threads, the wire-fraud attempts. Same owner-operator — Doug runs Green Life Cannabis in Wenatchee and Seattle Cannabis Co — same room, one more tool that earns its place on the back-office desk. Built in real dispensaries by an operator who runs two, not a vendor guessing at your day.

stack --dispensary● same shop

CannAgentfront-of-house AI + the phones — already in WSLCB dispensaries
RadMailthe inbox behind it — POs, COAs, compliance threads, BEC defense
operatorDoug — Green Life Cannabis (Wenatchee) + Seattle Cannabis Co

The honest reference isn't a logo wall — it's two real shops the engine runs in today.

radmail@inbox:~$ radmail --beachhead=dispensaries

// early access

The inbox that thinks is opening to design partners.

The engine is live today in a test bed on two real businesses. Join the waitlist to shape what ships.

signup connect first value in under 15 minutes

Get in before the doors open.
We're onboarding design partners first. Waitlist members shape the roadmap, the regimes, and the pricing — and lock founding terms.
Built multi-tenant from row zero.
Every tenant's mail is isolated at the row from day one. The Gmail / Outlook overlay ships after launch — waitlist members get it first.

join --waitlist● accepting

// faq

Questions, answered straight.

What is RadMail, and how is it different from Superhuman or an AI inbox?: Those are clients you read mail in — a faster inbox. RadMail is an email operating system that does the work: it ranks each message by importance and urgency on two separate axes, surfaces a Right Nowlane with a plain-English reason it landed there, extracts the commitments hiding in your threads, and drafts the follow-up the day it's due. And it tells you what actually got a reply, not just an open — a send-only tool can't, because it never sees the replies. RadMail is a Sureel venture.
What is reply-correlation?: Most email tools report opens and clicks. RadMail can tell you which of your sends actually earned a reply, because it ingests inbound mail as well as sending outbound — a send-only email service provider never sees the reply, so it can't connect a send to the response it produced. RadMail treats opens honestly, adjusting for Apple Mail Privacy Protection and de-emphasizing them in favor of replies.
Does RadMail send emails on its own?: Only after it earns trust, and never for high-risk actions. RadMail rolls out in stages: surface-only, then draft-on-due (it writes the message and waits for you), then narrow auto-send for low-risk cases. Anything involving money, banking details, a decision, or first contact with a third party stays human-only, forever — a deliberate defense against business-email-compromise fraud.
Is RadMail HIPAA or SOC 2 compliant?: Compliance is a shared responsibility, and RadMail is a tool, not a guarantee of compliance. RadMail signs a BAA and processes on BAA-covered, encrypted, audited infrastructure, with a pluggable per-org regime (SOC 2, WSLCB, HIPAA, FedRAMP-CUI, BSA-AML) assembled from PolicyPacks. Controls are SOC 2-aligned with a Type II audit planned, and the infrastructure is FedRAMP-aligned / NIST 800-171-ready. For regulated tenants, HIPAA handling is draft/ingest-only at this stage. Using RadMail does not by itself make your organization compliant.