05 / maintenance

Something always breaks eventually. We handle it before you notice.

Most of what keeps a website healthy is invisible — until it isn't. A plugin update silently breaks your contact form. An SSL certificate expires and Chrome starts warning visitors away. A spam bot finds your inquiry page and starts stuffing it with garbage. None of it makes noise. You just start losing leads and don't know why. That's what website maintenance actually is: the ongoing, unglamorou

{ Cleaning Services } { HVAC } { Plumbers } { } { E-commerce }

the honest truth

The moment you realize your site has been quietly broken for weeks.

Here's the myth: you launch a website, and then you have a website. Done. It just sits there, working, until you need to change something.

That's not how it works. WordPress sites run on a stack of moving parts — core software, plugins, themes, a server underneath all of it, a certificate proving to browsers you're legitimate. Every one of those parts updates on its own schedule, sometimes conflicts with something else when it does, and occasionally breaks something you rely on. Nobody sends you an email when that happens. You find out when a customer mentions it, or when a competitor asks if you knew your site was down.

The specific things that bite people: a plugin update that fights with another plugin and kills the contact form — not with an error message, just silently stops delivering emails. An SSL certificate that expired because nobody was watching it, and now every visitor gets a "Not Secure" warning before they even see your homepage. Spam bots that find an unprotected form and flood it until you can't find the real inquiries. A WordPress core update that went wrong because nobody checked for compatibility first. None of these are exotic problems. They happen to real local businesses every week.

And the cost of finding out too late is real. Every day your contact form doesn't work is a day a potential customer filled it out and heard nothing back — and hired someone else. Every week your site throws a security warning is a week Google is watching and quietly updating its opinion of you. A 404 page where your services page used to be doesn't just disappoint visitors — it tells search engines your site is unreliable. These aren't technical problems. They're business problems.

what you actually get

Maintenance that actually prevents problems — not just fixes them after.

A lot of "maintenance plans" are just automated scripts. A server cron job runs the updates, a plugin fires off a security scan, and you get an email report that nobody reads. If something breaks, you find out when you find out. Ours is different because humans are watching. Here's what that looks like in practice.

{ human-run updates }

Monthly updates done by people, not a cron job

We don't just click "update all" and walk away. Before we update anything — plugins, themes, WordPress core — we check the changelogs for known conflicts, look at your specific plugin stack, and make sure what we're about to do won't cause a problem. Then we update, then we test. Contact form still sending? Pages still loading? Checkout still working?

Automated updates are fast. Human-reviewed updates are safe. For a website that's actively bringing in business, safe matters more than fast.

{ unlimited small edits }

Need to change something? Just text us.

New team member needs to be added to your About page. Your hours changed for the holidays. You moved to a new service area and the old one is wrong. You got a better headshot and the current one is embarrassing you.

Don't put these things off because you don't want to deal with your website. Just text us. Small content edits — copy changes, photo swaps, adding or updating a page section — are included. No per-task billing, no minimums, no "that'll be two hours at our hourly rate." You send the request, we handle it, you get a confirmation. That's it.

{ proactive monitoring }

We find problems before your customers do

Every week we're checking uptime, SSL certificate validity, broken internal links, and site speed. Every month we run a full security scan and test your contact forms end-to-end — not just "is the form there," but "did the email actually land in your inbox?" We pull your Google Search Console data and look for crawl errors, manual actions, or indexing drops that might mean something went sideways.

Most of our clients never hear about the small things we catch and fix. That's the point. You shouldn't have to know every time a plugin threw an error or a link rotted. You should just know your site is being looked after.

{ rapid response }

When something does go wrong - and eventually something does - we're fast

If your site goes down or something breaks, you'll hear from us within two business hours. Not an auto-reply. A real person who has looked at the issue and can tell you what happened and what we're doing about it. Critical issues — site completely down, security breach, checkout broken — get escalated immediately and resolved same day in almost every case.

We also keep backups verified and ready. If an update goes badly wrong, we can roll back to yesterday's clean version while we sort out what happened. You don't lose days of work. You lose minutes.

always watching

We catch the small things before they become expensive things.

Uptime We check your site around the clock. If it goes down at 2 a.m., we know before your first customer in the morning does. SSL Certificate Expiry A lapsed SSL certificate turns every page of your site into a browser warning. We track expiration dates and renew well before it becomes a problem. Plugin Vulnerabilities When a security flaw is discovered in a plugin you're running, we know — and we patch it before bad actors can exploit it. WordPress Core Updates We review each WordPress core release before applying it, checking for compatibility with your theme and plugins so the update doesn't break what's already working. Broken Internal Links Links rot. Pages get renamed, content moves, things get deleted. We scan for broken links monthly and clean them up so visitors and search engines don't hit dead ends. Contact Form Delivery We test your forms every month — actually submitting them and confirming the email lands where it should. Silently failing forms are one of the most common and most costly problems on small business sites. Site Speed Slow sites lose visitors and rankings. We run monthly speed checks and flag anything that's starting to drag, so you're not blindsided by a performance drop. Malware & Injections We run security scans to catch any malicious code, unauthorized file changes, or injection attempts — before they do damage or get your site flagged by Google. Google Search Console Errors We monitor your GSC account for crawl errors, indexing issues, and manual penalties — the stuff that quietly tanks your search visibility if nobody's watching. Backup Integrity Backups are only useful if they actually work. We verify yours regularly so that if we ever need to restore your site, we know the backup is clean and complete.

what's in the box

One monthly plan. No itemized invoices for things that should just be covered.

Some maintenance plans charge you a base fee and then bill hourly when something actually happens — which is exactly when you least want to receive an invoice. Others bundle in so many automated tools that you're essentially paying for the illusion of oversight. Here's what's actually included with every Red Cedar maintenance plan, every month, without asking:

  • Monthly WordPress core + plugin updates — reviewed by humans, tested after every run
  • Unlimited small content edits — copy changes, photo updates, hours, team members, service areas
  • Uptime monitoring (24/7) — around-the-clock checks with real alerts when something drops
  • Monthly security scan — malware detection, file integrity check, unauthorized change alerts
  • Broken link check — internal links scanned and cleaned every month
  • Contact form testing — live end-to-end test to confirm email delivery is working
  • Monthly speed check & report — Core Web Vitals snapshot with notes on anything slipping
  • Google Search Console monitoring — crawl errors, indexing drops, and manual actions flagged
  • Backup verification — we confirm your backups are current, clean, and restorable
  • Priority support response — two-hour response window for issues, same-day for critical problems
  • Monthly status email — a plain-English summary of what we did, what we found, and how your site is doing