Compliance, IoT, and sovereign AI: from product to resilient platform

How LITEWERKS GmbH (Konstanz), together with IntegrIT Solutions and studio hak, extended the platform — live in production since 2018 — for the intelligent LITE BLOX starter battery in 2025/26 with new frontends, lifecycle data, and AI readiness — and what architectural decisions industrial manufacturers can take away today.

Client: LITEWERKS GmbH (Konstanz)
Sector: Automotive · Industry
Our role: Software architecture & end-to-end development
Co-creation: studio hak (Rottweil) — Brand & interface design
Stack: FlutterNestJSNext.jsPostgreSQLRedis
Active units: ≈ 6,000 in the field
Infrastructure: Cloud & On-premise · EU Data Hosting
Status: Live since 2018 · Expansion 2025/26

What changed for LITEWERKS and their customers

Since 2018, the digital platform for LITE BLOX units has been in production. In 2025/26, IntegrIT Solutions extended it with mobile app, self-service customer portal, admin cockpit, and lifecycle data model — without structural rebuild. The effects are visible in the market:

5-year warranty — lifetime in preparation

Telemetry-based field data makes failure risks calculable. LITEWERKS positions itself as a premium provider in the LiFePO4 segment; an extension to lifetime warranty is in preparation.

Proactive customer service instead of complaint response

Issues are detected in the field before the customer calls. Support tickets decline, time-to-resolution shortens — service escalations become rarer and more predictable.

Camping and fleets as new business fields

What started as an intelligent starter battery today also serves auxiliary batteries in the camping market and fleet telemetry in professional use — on the same platform, without separate development per segment.

Compliance advantage built into the architecture

EU Data Act implemented since September 2025, EU Battery Passport readiness for 2027 — not a bolt-on but part of the platform layers. Structured data from day one rather than later migrations.

Four components, one platform

The platform live today — set up by IntegrIT Solutions in 2018, extended in 2025/26 with new frontends, analytics layers, and lifecycle data model — covers manufacturer, service, and end customer within a unified data architecture.

Mobile App (iOS/Android)

Flutter app with BLE real-time telemetry, live diagnostics, anti-theft control (A.V.A.T.), remote shutdown (I.K.O.S.), and notification center. Multilingual, secure user accounts, monitoring included. Telemetry over HTTPS.

Backend & API

NestJS backend with PostgreSQL and Redis. HTTPS telemetry ingestion, service-request workflow, webhooks, OpenAPI-driven types for the frontends. MQTT bridge exclusively for the soft migration of the legacy app.

Admin dashboard

Next.js with Authentik OIDC. Service requests, device and customer management, fleet overview, firmware releases, lab data integration, custom alerts and analysis, push notifications, webhook configuration.

Self-service customer portal

Next.js with user accounts, multilingual (DE/EN). Customers manage their devices, view telemetry and service history, export their data — directly implementable as Data-Act-compliant data access rights.

Mobile App

Admin & Portal

LITE BLOX Dashboard — Telemetry & service

See it live: App Store (iOS) Google Play (Android) Customer Portal Product website

Live status & roadmap

Live today

Mobile app (iOS/Android) with BLE real-time telemetry
NestJS backend with telemetry ingestion and service workflow
Admin dashboard with device, customer, and fleet management
Multilingual self-service customer portal (DE/EN)
OIDC auth (staff) + user accounts (end customers) with auto-linking
Platform-wide monitoring with Sentry and Grafana Cloud

Currently rolling out (May/June 2026)

Lifecycle data model with immutable birth snapshot per unit
Append-only event log for lifecycle history
Role-based QR access replacing the printed password
Preparation for the EU Battery Passport 2027

Next phase

On-premise AI analysis: detected patterns from field data flow back into engineering and product development, opening up new business fields
Multi-tenant capability for subcontractor manufacturing
Extended tagging and correlation tools for engineering and service

Three Mittelstand companies from Baden-Württemberg

A fully integrated IoT platform without a corporate apparatus — through focused specialist collaboration.

LITEWERKS GmbH

Konstanz · Hardware, product, engineering

Manufacturer of the intelligent LiFePO4 starter battery. ISO 9001 and VDE certified, sister company WeightWorks Engineering for carbon fibre composites. Founded 2014.

www.litewerks.de

studio hak

Rottweil · Brand & interface design

Interdisciplinary design studio focusing on strategic design and brand building. Founded 2001.

www.hakdesign.de

IntegrIT Solutions

Rottweil · Software architecture & development

Mobile, backend, cloud, and AI development. bwcon member, Managing Director Felix Maier. End-to-end responsibility from architecture to operations.

www.integritsol.de

Where this pattern carries

The architectural pattern — from a structured data foundation through AI analysis to insights and new business fields — is not battery-specific. It carries wherever manufacturers mature from product to service platform — across industries with service and compliance obligations.

Connected hardware with telemetry

Wherever devices generate data in the field — industrial machinery, medical devices, energy systems, sensor technology, mobility: predictive maintenance, remote diagnostics, and service workflows along the full lifecycle chain.

Compliance and audit obligations

EU Data Act, EU Battery Passport, MDR, ISO 13485, GMP, ESG reporting — traceability and data access as part of the architecture, not as later migration.

From product to service platform

Extended warranties, subscription models, fleet management, lifecycle data as new value creation — manufacturers expanding their margin via the service layer.

Self-service data access

B2B and B2C customer portals with device management, telemetry visibility, and multilingual data export — directly implementable as data access right under the EU Data Act.

Technical depth

Technical details for interested readers

Architecture, stack, and compliance anchoring — the building blocks that enabled these outcomes.

Architecture at a glance

Five clean layers with clear responsibilities. What is shown here at high level transfers to nearly any industrial product with service and compliance obligations.

Edge / Device layer

BLE telemetry · HTTPS

Bidirectional link to units in the field — offline-capable. New app over HTTPS; MQTT bridge exclusively as a transition layer for the legacy app.

Backend & API layer

NestJS · OpenAPI

Telemetry ingestion, service workflows, background jobs, webhooks to third-party systems. OpenAPI spec as the single source of truth for the frontends.

Data layer

PostgreSQL · Redis

Structured lifecycle data with ACID guarantees for regulatory evidence. Redis for caching and queues. Append-only event log for immutable audit trails, in rollout 2026.

Presentation layer

Flutter · Next.js

Three frontends (Mobile, Admin, Portal), three roles, one OpenAPI type definition. Authentication via Authentik OIDC (staff) and user accounts (end customers), multi-auth guard in the backend.

Operations & compliance

Sentry · Grafana Cloud

EU Data Hosting — cloud or on-premise. Rolling Docker deployments for zero-downtime releases, platform-wide monitoring and metrics. GDPR and EU Data Act anchored in the data pipeline and audit layer.

Tech stack — and why

Technology	Rationale
Flutter (app) + Next.js (admin & portal)	One codebase per platform with native performance; shared OpenAPI type definition across all three frontends.
NestJS + PostgreSQL + Redis	Structured TypeScript architecture with ACID guarantees for regulatory evidence; Redis for caching and background queues.
Authentik OIDC + User-Accounts	Clean separation of staff and end-customer authentication. Multi-auth guard in the backend with auto-linking by email.
Sentry + Grafana Cloud	Platform-wide error tracking and metrics on EU infrastructure (cloud or on-premise) with rolling Docker deployments — the prerequisite for stable live operations and traceable audits.

Compliance & sovereignty

The regulatory pillars are anchored in the data model and API layer — as part of the platform architecture, not as an additional layer on top of the product.

GDPR

Privacy by design across all frontends, self-service data export in the customer portal.

EU Data Act (since 09/2025)

Structured end-customer data access via the self-service portal — primary driver for portal development.

ISO 9001 (LITEWERKS-certified)

Identification, traceability, release processes. Lifecycle data model with append-only event log rolling out.

EU Battery Passport 2027

Below the 2 kWh threshold — architecture nonetheless follows the standard (birth snapshot, QR access).

Data sovereignty in every layer of the architecture

Data and models remain under own sovereignty. The next phase — on-premise AI analysis in own infrastructure — turns field data into detected patterns that flow back into engineering and product development, and beyond the product open up new business fields. No third-party models, no compromises on data protection, IP protection, or quality evidence.

Lessons learned — transferable

Extension carries long-term. A cleanly set-up platform absorbs new frontends, compliance layers, and analytics layers without structural rebuild — provided the data model, API contracts, and auth layer were drawn clearly from day one.
Compliance belongs in the data model, not in subsequent migrations. Birth snapshots, append-only event logs, and role-based tokens save more long-term than they cost initially.
The order matters: capture the problems, formulate a vision from them, cut it into stages — and ship step by step. This is how platforms emerge that are enterprise-grade from day one and still start small — and that carry eight years of continuous evolution with varying intensity, without structural rebuild.