What we do
From a landing page to a locked-down cloud — one team, end to end.
Web & apps
Websites
Custom marketing sites — fast, multilingual, built to convert. Code you own.
- Custom design, no rented templates
- Auth, payments, blog and admin panel
- Multilingual, with a structured-data SEO pack
- API integrations and transactional email
- Optional maintenance with monthly hours included
Web apps
Custom web apps with an admin console and integrations with the providers you already use.
- Admin console for your team
- Integrations with the providers you already use
- iCal sync with any partner, no overbooking
- Support requests with history, tied to the account
- Built to grow with the business
Mobile apps
iOS and Android apps, backend included. One team responsible for the whole thing.
- iOS and Android from a single codebase
- Backend included: API, auth, push notifications
- App Store and Google Play releases handled
- One team for the app and the server
Ecommerce
An online store or marketplace, payments built in. Fast, easy to run.
- Catalog, cart and an optimized checkout
- Integrated payments, straight into your account
- Simple admin: products, stock, orders
- Multi-vendor marketplace, if that's your model
Online payments
Payment integration in any platform: Stripe, Netopia, mobilPay. Done right, tested end to end.
- Stripe, Netopia, mobilPay — or your processor
- One-off payments, subscriptions, recurring billing
- Webhooks and reconciliation handled properly
- Tested end to end, including refunds and failures
Online booking
Appointments and reservations online: clients pick their own slot, your team sees it all in one console.
- Request form or real-time availability calendar
- Admin console for managers
- Automatic confirmations and email reminders
- Fits clinics, salons, repair shops, hotels
Hosting & WordPress
Yes, we do WordPress — done right, if that's what you want. And we'll say honestly when you don't need it.
- Clean install, no plugin bloat
- Updates, backups and security included
- Managed hosting, monitored by us
- Honest advice: WordPress or custom code
Cloud & infrastructure
Cloud migrations
From the server in your office to AWS, Azure or GCP, without the downtime and with a rollback ready.
- From on-premise, colocation or another cloud
- Assessment, plan and cost model up front
- Infrastructure as code with Terraform
- Zero- or low-downtime cutovers
Terraform & GitOps
From hand-built infrastructure to Terraform and GitOps: everything in code, everything in git.
- Existing infrastructure imported into Terraform
- Changes go through pull requests, not the console
- CI/CD applies what's approved, automatically
- Full history and rollback for every change
Kubernetes
Kubernetes migration or cluster operations — from monolith to microservices, with GitOps.
- The full path: monolith → microservices → Kubernetes
- Operations for existing clusters
- GitOps deploys, declarative, with ArgoCD
- Autoscaling and costs kept under control
CI/CD
CI/CD pipelines for GitHub and GitLab: build, test and deploy on every commit.
- GitHub Actions or GitLab CI, on your repos
- Build, test and deploy on every commit
- Staging and preview environments per change
- Fast pipelines: caching, parallel jobs
Security
DevSecOps
Security wired into the pipeline, not bolted on at the end: SAST, SCA, DAST, container scanning.
- SAST, SCA and DAST in GitHub Actions or GitLab CI
- Findings as PR/MR comments, not PDF reports
- IaC validated before it's applied
- Container image scanning and supply chain security
- Security practices inside the developer workflow
Zero trust
Identity-first access, least privilege, and a network you can actually reason about.
- SSO and MFA through a central IdP (e.g. Okta)
- Cloudflare One or Zscaler: access policies and tunnels
- Zero exposed public IPs
- Least privilege, per person and per app
- Email security: SPF, DKIM, DMARC
Pentest & audit
We test your systems before someone else does: network, web apps, code audit.
- Network assessment: what's exposed that shouldn't be
- Web application pentest
- Code audit (white-box), if you give us access
- Report with prioritized risks and remediation steps
- Retest after you've fixed
Compliance
Technical readiness for GDPR, ISO 27001 and SOC 2 — real controls, no compliance theater.
- GDPR: data minimization, encryption, subject rights
- ISO 27001 and SOC 2 type 1/2: technical controls implemented
- Policies that describe what you actually do
- Partner for the formal audit, accredited auditor for certification
Security basics
Password manager, 2FA everywhere, access done right. Nobody wants it — until the first incident.
- Password manager for the whole team
- 2FA turned on everywhere it matters
- Access rights done right: who sees what, who can do what
- Clean offboarding when someone leaves
Identity & access (IAM)
One place to control who has access to what. Offboarding = one click, not a hunt through 20 tools.
- SSO across all your tools, MFA everywhere
- Okta, JumpCloud or whichever IdP fits
- Automatic provisioning and deprovisioning via SCIM
- Access policies on groups, not individuals
- Employee onboarding and offboarding, one click
Device management (MDM)
Company laptops and phones under control: encrypted, policy-enforced, remote-wiped when needed.
- Enrollment for laptops and phones
- Security policies enforced on every device
- Forced disk encryption
- Remote wipe on loss or departure
- Hardware and software inventory, up to date
IT for your business
Google Business Profile
Get found on Google Maps, Waze and Apple Maps. For local businesses, often worth more than the website.
- Complete profile: photos, hours, services, attributes
- Reviews managed: replies and a flow that brings new reviews in
- Presence on Waze, Apple Maps and aggregators
- Consistent data everywhere: name, address, phone
Google Workspace / Microsoft 365
Email on your own domain, shared files, one calendar. No more yahoo accounts and USB sticks.
- Professional email on your company domain
- Shared drive — company files off personal laptops
- Shared calendar for meetings and appointments
- Migration with no lost email or contacts
Backup & recovery
Automated, tested backups plus a recovery plan. Nobody wants it — until the data is gone.
- Automated backups for files, databases and email
- Tested regularly: we restore to prove it works
- The 3-2-1 rule: three copies, two media, one offsite
- Recovery plan: who does what, and how fast you're back
AI assistant for your documents
Ask it a question, cut a long contract down to a page, compare two versions, pull a table. Always with the source.
- Answers cite the source document
- Summaries and tables, on a fixed template
- Compare two versions, see only what differs
- Your data stays yours, nothing is trained on it
- Everyone sees only the documents they can access
- Use it in the browser or as chat on your site
Automations
Form → CRM → email → task, hands-free. The best value-for-effort of anything we do.
- New lead → CRM → reply email → task, automatic
- Invoices, reports and notifications that send themselves
- Make or Zapier — tools you can tweak yourself
- No custom code to maintain
Source and change monitoring
Legislation, official sources or supplier prices, checked on a schedule. You learn what changed and where it hits you.
- You pick the sources, we do the checking
- Daily, weekly or monthly checks
- Only the change, written in plain language
- Cross-checked against your own files and contracts
- Lands in your inbox, a report or a task
AI document processing
Invoices, orders and requests read, checked and pushed into your system. You only look at what isn't clear.
- Invoices, orders, CVs, requests, contracts
- Data lands in the system you already run
- Anything uncertain goes to a person, with the reason
- Replies drafted, sent only on your approval
- Works over email, a scan folder or upload
Anything IT
Not on the list? Ask anyway. If it plugs in, we can probably help.
- Automation and integrations
- Audits and second opinions
- Ongoing support and retainers
Have something in mind?
Tell us what you're building. We usually reply within a day.