Which direction does data move between DATEV and Twilio?

Most of it moves from DATEV into Twilio as outbound alerts: ml-connector sends an SMS or places a call when an EXTF or DXSO booking job completes or fails. A smaller flow moves the other way, where a Twilio Verify code or an inbound SMS reply confirms or releases a held DATEV booking. DATEV will not return posted journals or its chart of accounts, so ml-connector never mirrors the ledger into Twilio.

Can Twilio store invoices or general ledger postings from DATEV?

No. Twilio is a communications platform with no native invoice, ledger, vendor, or account objects, so it cannot hold accounting records. What it does well is carry SMS, voice, and identity verification, so ml-connector uses it as the alert and approval layer: booking results go out as messages or calls and approvals come back as Verify codes or SMS replies, while DATEV remains the system of record.

How does the integration handle DATEV polling and Twilio's signed callbacks?

DATEV publishes no webhooks, so after submitting an EXTF or DXSO job ml-connector polls the job endpoint with exponential backoff and jitter until it reports complete or failed. Twilio instead pushes status and inbound-message callbacks, so each request is verified by recomputing the HMAC-SHA1 signature over the URL and sorted parameters with the Auth Token and is accepted only over HTTPS. Outbound sends are deduplicated by a jobId built from the DATEV job id, and DATEV access tokens are refreshed before their 15-minute expiry.

DATEVTwilio

DATEV and Twilio integration

DATEV runs the accounting: clients, documents, and the EXTF and DXSO booking jobs that feed DATEV Rechnungswesen and DATEV Unternehmen Online. Twilio runs communication over SMS, voice, and verification. Connecting the two pushes DATEV accounting activity to a phone the moment it matters. When a booking job completes or fails, ml-connector sends an SMS or places a voice call, and for a high-risk batch it can require a Twilio Verify one-time code before the job is submitted. Twilio has no invoices, ledgers, or accounts of its own, so it stays the alert and verification layer while DATEV stays the system of record. ml-connector handles the very different auth on each side and runs on a schedule you control.

How DATEV works

DATEV exposes clients and documents through REST APIs on per-product hosts such as accounting-clients.api.datev.de and accounting-documents.api.datev.de, while finalized bookings go in as asynchronous EXTF CSV jobs to DATEV Rechnungswesen and booking suggestions go in as DXSO XML jobs to DATEV Unternehmen Online. Authentication is OAuth 2.0 Authorization Code with PKCE through login.datev.de, a real user must consent, the access token lasts only 900 seconds, and a refresh sends the client_id without the client_secret. DATEV publishes no outbound webhooks, so job status is read by polling the job endpoint until it reports complete or failed. Finalized bookings are write-only: posted journal entries and the standard chart of accounts cannot be read back through the API.

How Twilio works

Twilio exposes Messages, Calls, Phone Numbers, and Verify through REST APIs under hosts such as api.twilio.com/2010-04-01 and verify.twilio.com/v2, returning JSON over HTTPS. Calls authenticate with HTTP Basic Auth using an API Key SID and Secret, which Twilio recommends over the raw Account SID and Auth Token for production, and POST bodies are form-encoded rather than JSON. List endpoints page through a NextPageUri, phone numbers must be in E.164 format, and rate limiting is concurrency-based and returns HTTP 429. Twilio also pushes message and call status callbacks to your HTTPS endpoint, each request carrying an X-Twilio-Signature header that is an HMAC-SHA1 signed with the account Auth Token. Twilio is a communications platform, so it has no native invoice, ledger, vendor, or account objects.

What moves between them

Most data moves from DATEV into Twilio as outbound notifications. After ml-connector submits an EXTF or DXSO job and polls it to a result, it creates a Twilio Message or Call that reports the client, the document or batch, and whether the job completed or failed, addressed to the finance contacts in E.164 form. A smaller flow moves from Twilio into DATEV: for a high-risk batch ml-connector starts a Twilio Verify check and waits for the approver's one-time code before it submits the job, and an inbound SMS reply or a delivered status callback can release a held booking. Cadence is poll-driven on the DATEV side and event-driven on the Twilio side, where status and inbound-message callbacks arrive as they happen. Posted journals and the chart of accounts are not readable from DATEV, so ml-connector never tries to mirror the ledger into Twilio.

How ml-connector handles it

ml-connector stores both credential sets encrypted. On the DATEV side it runs the OAuth2 PKCE flow, sends the bearer token plus the X-DATEV-Client-Id header on every call, and refreshes the 900-second access token with the client_id alone before it expires. On the Twilio side it calls the REST API with HTTP Basic Auth using the API Key SID and Secret, form-encodes every POST body since Twilio rejects JSON there, and keeps the Auth Token on hand because that token, not the API Key, is the HMAC-SHA1 key used to validate inbound callbacks. Every status and inbound-message webhook is verified by recomputing the signature over the exact URL and the alphabetically sorted POST parameters and comparing it to the X-Twilio-Signature header, and callbacks are accepted only over HTTPS. All destination numbers are normalized to E.164 so a missing plus prefix does not cause a silent failure. Outbound EXTF files are written in NFC-normalized UTF-8 with whitelisted filenames, because non-precomposed characters or stray special characters cause silent rejection, and ml-connector polls the async DATEV job with exponential backoff and jitter rather than waiting for a push DATEV never sends. Twilio rate limiting is concurrency-based and returns HTTP 429, so sends are paced and retried with backoff, and each outbound message is enqueued under a jobId of sms plus the DATEV job id so a retry never sends the same alert twice. Because Twilio does not guarantee exactly-once webhook delivery and status callbacks do not fire under test credentials, inbound events are processed idempotently on a queue, and every action carries a full audit trail and can be replayed if a downstream call fails.

A real-world example

A regional logistics firm with about 90 employees keeps its books in DATEV through its tax advisor and has no finance staff sitting at a desk all day. Before the integration, a rejected EXTF booking batch could sit unnoticed for days because the only signal was an email nobody on the road was watching, and large payment runs were submitted with no second check. With DATEV and Twilio connected, every EXTF and DXSO job result is sent as an SMS, a failed booking triggers a voice call to the controller, and a high-risk payment batch is held until the approver enters a Twilio Verify code. The team learns about a failed posting in seconds instead of days, and no large batch reaches DATEV Rechnungswesen without an explicit confirmation from a real person.

What you can do

Send a Twilio SMS or place a voice call when a DATEV EXTF or DXSO booking job completes or fails.
Require a Twilio Verify one-time code from an approver before a high-risk DATEV batch is submitted.
Release a held DATEV booking when the approver replies by SMS or a delivery status callback confirms it.
Bridge DATEV OAuth2 PKCE with its 15-minute refresh and Twilio HTTP Basic Auth, validating every callback with the Auth Token.
Poll DATEV jobs with backoff while pacing Twilio sends against 429 limits, with jobId dedup and a full audit trail on every action.

Questions

Which direction does data move between DATEV and Twilio?: Most of it moves from DATEV into Twilio as outbound alerts: ml-connector sends an SMS or places a call when an EXTF or DXSO booking job completes or fails. A smaller flow moves the other way, where a Twilio Verify code or an inbound SMS reply confirms or releases a held DATEV booking. DATEV will not return posted journals or its chart of accounts, so ml-connector never mirrors the ledger into Twilio.
Can Twilio store invoices or general ledger postings from DATEV?: No. Twilio is a communications platform with no native invoice, ledger, vendor, or account objects, so it cannot hold accounting records. What it does well is carry SMS, voice, and identity verification, so ml-connector uses it as the alert and approval layer: booking results go out as messages or calls and approvals come back as Verify codes or SMS replies, while DATEV remains the system of record.
How does the integration handle DATEV polling and Twilio's signed callbacks?: DATEV publishes no webhooks, so after submitting an EXTF or DXSO job ml-connector polls the job endpoint with exponential backoff and jitter until it reports complete or failed. Twilio instead pushes status and inbound-message callbacks, so each request is verified by recomputing the HMAC-SHA1 signature over the URL and sorted parameters with the Auth Token and is accepted only over HTTPS. Outbound sends are deduplicated by a jobId built from the DATEV job id, and DATEV access tokens are refreshed before their 15-minute expiry.

Connect DATEV and Twilio

Free to use. Add your credentials, ping your real systems, and see if we fit.

Get started