Solution · IoT

Stop building IoT pipelines.
Start using your sensor history.

IoTMan is the managed backend that treats every reading from your devices as an unchangeable, queryable event. No more stitching together databases and message queues. Just durable storage, live views, and standard APIs.

Real workspace with live sensor data. No account needed.

Building sensor
21.4 °C
Water meter
0.42 m³/h
Air quality
PM2.5: 14
MQTT gateway
Connected
Custom API
GET /readings/avg
SSE
/data/out/events
OAuth scope
data:read
IoTMan
managed · hosted
What it does

Everything needed. Nothing extra.

Device ingestion

Devices send JSON over HTTP or MQTT. No SDK required. Every payload stored durably in PostgreSQL.

REST, SSE & webhook access

Retrieve sensor data through a clean REST API with time-based filtering. Subscribe to live updates via SSE. Receive signed HTTP POSTs on tag matches via webhooks.

OAuth 2.1

Standard OAuth 2.1 flows for application and device access. Authorization Code + PKCE for user-facing apps, Client Credentials for devices and services.

Automatic tagging

JSONPath-based rules extract values from payloads and assign tags automatically. No code required.

Who it is for

Organisations that operate sensors.

Buildings, factories, public infrastructure, utilities — anywhere sensors are deployed and the data needs to be reliably collected and made accessible.

Designed for organisations without a dedicated software team to build and maintain a data backend — but that need one.

Operates IoT infrastructure

Your sensors are sending readings right now — but the data is trapped in device silos, discarded, or buried in CSV exports. You need a single, durable system of record for every reading.

Needs reliable data access

You need to answer questions you haven't thought of yet. A compliance requirement, a tenant dispute, or an energy audit — you replay and analyze historical sensor data instantly, not just see the latest value.

No in-house backend team

No specialist software staff to build or maintain a custom solution.

Requires EU data residency

Data must remain within EU jurisdiction — for compliance or sovereignty.

Scope

We do one thing well.

Your devices send data to us. We don't touch them.

Configure sensors once to POST JSON to an endpoint. No SDK, no agent, no device management overhead.

No features you'll never use.

No enterprise bloat, no months-long sales cycles, no seat licences for capabilities you will never need.

Built on standards, not a black box.

JSON over HTTP and MQTT for ingestion. JSONata and JSONPath for shaping views. OAuth 2.1 for authentication. Standard protocols, no proprietary SDK — your data, always accessible.

How it works

Simple by design.

01

Devices append to the log

Sensors POST JSON to your endpoint over HTTP or MQTT. Each payload becomes an unchangeable event — no proprietary format, no lock-in.

02

The log becomes your database

Every event persisted forever in PostgreSQL. No data loss, no expiry by default. Manage and monitor from the dashboard.

03

Grant access to views, not just raw data

Invite external users by email or register OAuth 2.1 client applications. Assign scoped access to live, materialized views — per user, per application, revocable at any time.

04

They subscribe to the story of your operations

Authorized clients get REST snapshots or real-time SSE streams. No shared passwords, no workspace accounts — just a scoped token.

device → IoTMan
# Device sends a measurement
curl -X POST \
  https://iotman.io/data/:workspace/:endpoint \
  -H "Content-Type: application/json" \
  -d '{"sensor_id":"bldg-3","celsius":21.4}'

✓  200 OK — stored
application → Data Access API
# Application retrieves data
GET /data/out/:endpoint_id?limit=50&from=1710000000
  Authorization: Bearer <oauth_token>

{ "data": [...], "next_page": "..."}
End-user access

Share data with your clients.

Invite external users by email and define exactly what they can access. No shared passwords, no workspace accounts — access is scoped and revocable.

Invite by email, scoped to what they need

Assign named permission scopes per user. A tenant sees only their building's data. A partner sees only what you authorised.

OAuth 2.1 for apps and services

Third-party applications authenticate with Authorization Code + PKCE. M2M services use Client Credentials. Standard flows, no custom SDK.

No workspace membership required

End-users authenticate via a one-time email link. They are not IoTMan users — they only receive a scoped token for your application.

End-user access — workspace: Building A
alice@tenant-corp.com
sensor:readbuilding-a:view
bob@facility-mgmt.io
sensor:readsensor:export
api-client@partner.eu
sensor:read
✓ Access revocable per scope, per user

Ready to make your sensor history work for you?

Start with a single curl. Save your sensor data. Views, dashboards, and integrations come later — when you need them.