Frequently Asked Questions

How engagements work, what things cost, and what to expect from the platforms we support.

Considering Your First Outside Partner

The questions we hear first, in the order they usually come up.

What happens on the first call?

Thirty minutes. We ask what is going on: what broke, what is slow, what the business is trying to do this year. If there is a fit, the next step is a short discovery, and you see a ballpark scope and budget before committing to anything further.

What does an implementation cost, and when do we find out?

Early, on purpose. After discovery we put a ballpark scope and budget in front of you, with no signature expected, so both sides know the shape of the project early. After design, pricing becomes a fixed scope. We present two structures side by side, a straight hourly project and the same scope amortized monthly with support included, so you can show leadership the difference and defend the choice.

How does pricing work?

Managed services run at a flat monthly rate per person, which covers their primary device; shared and additional devices are a small add-on. Project work is hourly and quoted in writing before it starts, or converted to a fixed monthly fee when you want budget certainty. Microsoft licensing passes through at list price.

Do you require long-term contracts?

No. Our standard commitment is a rolling 90 days, so we earn your business every quarter. Everything we build lives in your own Microsoft tenant with nothing proprietary in the way, which keeps that promise real: you could hand the keys to any provider tomorrow.

What happens in the first 90 days?

Weeks one and two are access and visibility: admin roles audited, MFA enforced, monitoring on your most critical systems, and a shared password vault. Weeks three to eight set the baseline: licensing rationalized, device management everywhere, backups running and test-restored. By week thirteen you have a steady rhythm: a weekly status call, a patch cadence, playbooks you own, and a 90-day review that sets the roadmap.

Will you make us rip everything out and start over?

Our first move is the opposite: squeeze everything out of what you already license before adding anything new. Where we push for consolidation is where you are paying twice for the same capability, like Zoom and Teams side by side, or a legacy platform nobody has logged into in years.

Working With Us

How fast do you respond?

Tickets go to an engineer first, with an average first response around 30 minutes during business hours. System-down issues carry an SLA. Support hours flex to where your team works, including multi-time-zone remote teams.

We already have an IT person. What happens to them?

They stay in charge. Co-managed IT is built around your internal lead: they remain first line for their own team, we take the escalations, they get admin access to every tool we bring, and someone senior covers them when they take a vacation. Several of our co-managed clients came to us specifically because their one IT person was at a breaking point.

Do you support Macs? Google Workspace?

Yes to both. Most of our clients run Microsoft, and several run all-Mac fleets on Google Workspace. We administer Apple Business Manager, device management for Macs and PCs, and Google Workspace daily, and none of it requires a platform migration.

We think we have been compromised. Is that where you start?

Yes, and triage comes before paperwork. On a first call after an incident we audit admin roles and mailbox delegates, review sign-in logs, check for hidden forwarding rules, and enforce MFA, then talk about the engagement. Serious threats get neutralized first and invoiced after.

What if we eventually build an internal IT department?

Everything we build lives in your tenant, documented, with no proprietary lock-in, so you can take it in-house or to any provider whenever that makes sense. The rolling 90-day commitment is designed for exactly that.

Do you put monitoring software on employee laptops?

We manage devices and security: patching, encryption, threat detection, and access control. We do not install employee-surveillance software, and we decline requests for it. If a productivity question comes up, that is a management conversation, and software is the wrong tool for it.

Do you come on site?

We are remote-first, because most issues resolve faster over a screen share than a truck roll. When hands on hardware is the answer, we are on site within two business days in our metro areas, and we can schedule recurring on-site time as part of an agreement.

Do you mark up Microsoft licensing?

No. Licensing passes through at Microsoft's list price. As your partner of record we handle procurement, true-ups, and renewals, and we flag the licenses you are paying for but not using. Our fees are for our work; licensing is not a profit line.

What happens after go-live?

Thirty days of hypercare are built into every implementation, then you move to the support option you chose. Expect a response within a couple of hours, usually a live screen share, and sessions that double as training. Heavy investment in training and cutover means post-go-live questions skew toward how-do-I rather than break-fix.

Our current partner controls everything. Can you take over an existing system?

Yes. An environment takeover starts with getting administrative access back into your own tenant, then stabilizing what is there and fixing incrementally. A rescue almost never means re-implementation, and you should see improvements in the first weeks, without waiting for a big-bang cutover.

Will Microsoft's updates break things mid-workday?

Business Central and Dynamics 365 ship two release waves a year, announced months in advance. We review each wave against your configuration, test in a sandbox, and train your team on what changes before it reaches production. No surprise updates during the Tuesday rush.

How do you handle training?

Role-based and timed close to go-live so it sticks: finance, operations, and quality each learn their own workflows, in your system with your data. After go-live, support sessions run as live screen shares that double as training, and flat-fee plans include training for new hires and on each Microsoft release wave.

Dynamics 365 Business Central
What is Dynamics 365 Business Central?

Business Central is Microsoft's ERP (enterprise resource planning) system for small and mid-sized businesses. It runs your general ledger, accounts payable and receivable, inventory, purchasing, and orders in one cloud system, so the numbers your business runs on live in one place instead of five.

How is Business Central different from QuickBooks?

QuickBooks records what happened; Business Central runs the operation. Once you need inventory that reconciles, approval workflows, multiple entities, or a month-end close that holds up, QuickBooks needs a web of spreadsheets and add-ons around it. Business Central replaces the web, and it scales without replatforming. We wrote a fuller guide on when to graduate off QuickBooks Online.

Who is Business Central for, and who is it not?

You have roughly 10 to 200 people, you have outgrown QuickBooks or an aging system like Great Plains or Inflow, and inventory, traceability, or a reliable close matter to your business. Distributors, light manufacturers, and product companies are the classic fit. On the other side: if QuickBooks still fits how you operate, keep it, and if you need enterprise-scale multi-entity master data management, Business Central has a ceiling and the answer may be a bigger platform. Weighing platforms? See our Business Central versus NetSuite comparison.

Dynamics 365 Sales CRM
What is Dynamics 365 Sales CRM?

Dynamics 365 Sales is Microsoft's CRM (customer relationship management) system. It tracks accounts, contacts, deals, and follow-ups in one shared pipeline, inside the Microsoft tools your team already uses, so selling stops depending on one person's memory.

How is this different from a spreadsheet, or from other CRMs?

Against a spreadsheet, the difference is that nothing falls through: every deal has an owner, a stage, and a next step. Against big-name CRMs, the difference is fit and cost: you get enterprise-grade pipeline management that plugs into Outlook, Teams, and your ERP without a second ecosystem to maintain.

Who is Dynamics 365 Sales for, and who is it not?

A sales team of two to twenty that quotes deals, hands work to delivery, and needs leadership to see the pipeline without asking. It is strongest connected to Business Central, so won deals flow straight to fulfillment and invoicing. A business with a handful of repeat customers and no live pipeline does not need a CRM; a shared spreadsheet does the job. And if the team will not agree to live in the system, the software cannot fix that. On the boundary between CRM and ERP: should sales enter orders in the CRM or the ERP?

Dynamics 365 Project Operations
What is Dynamics 365 Project Operations?

Project Operations is Microsoft's system for businesses that sell projects. Quoting, staffing, time tracking, and billing live in one flow, so a project's real margin is visible while you can still do something about it.

How is this different from our project spreadsheets and PM tools?

Most project businesses run a quoting spreadsheet, a project tool, a timesheet app, and an invoicing system that never quite agree. Project Operations replaces the handoffs between them, which is exactly where hours go unbilled and margin leaks.

Who is Project Operations for, and who is it not?

Services firms that live and die by utilization and project margin: engineering, consulting, field services, agencies. It is especially strong when projects run through Business Central for accounting. If your projects are short, uniform, and priced flat, a lighter project tool is cheaper and faster to run; this platform earns its keep when projects are big enough to leak.

Dynamics 365 Customer Service
What is Dynamics 365 Customer Service?

Dynamics 365 Customer Service is case management for support teams. Every customer issue becomes a tracked case with an owner, a queue, and a history, so support stops living in a shared inbox.

How is this different from a shared inbox or a helpdesk tool?

A shared inbox tells you nothing about volume, response times, or repeat issues, and things silently fall through. Against helpdesk tools like Zendesk, the difference is the Microsoft connection: cases sit next to the customer's orders and history instead of in a separate silo. We explain the moving parts in Dynamics 365 Customer Service, explained.

Who is Dynamics 365 Customer Service for, and who is it not?

Teams handling steady support volume, warranty or repair flows, or anything where 'did we ever respond?' is a real question, especially when case history should connect to orders and invoices. If you get a handful of support emails a week, a disciplined inbox is fine; case management pays off at volume, and it takes process discipline to run.

Power BI & Fabric Analytics
What is Power BI & Fabric Analytics?

Power BI is Microsoft's reporting and dashboard platform, and Fabric is the data plumbing underneath it. Together they read live from your ERP, CRM, and other systems, and turn the numbers into dashboards leadership can act on. For a concrete picture, see your first Power BI report off Business Central data.

How is this different from the Excel reports we already build?

The Excel report you email around is a snapshot somebody had to build, and it is stale by the time it is read. Power BI reads the live systems on a schedule, applies the logic once, and everyone sees the same current numbers with security trimming what each person sees.

Who is Power BI for, and who is it not?

Leadership teams who ask the same questions every week (margin, cash, pipeline, utilization) and are tired of waiting for someone to compile the answer, especially on top of Business Central. One caution: if the underlying data is a mess, dashboards just make the mess visible faster. Sometimes the right first step is fixing the system of record, and discovery shows which situation you are in.

More Questions
What are these add-ons (ISVs) you keep mentioning?

Business Central covers finance, inventory, and operations out of the box. Industry-specific needs, like catch weight for food distribution, FDA-compliant electronic signatures, or distributor EDI, are covered by vetted add-on products built for Business Central. We name them during design, quote their licensing before you sign anything, and remain your single point of contact. You never call Microsoft or the add-on vendor.

Do we have to migrate all our history?

Usually no, and it is one of the most expensive line items you can buy. Most clients go live with opening balances and open transactions, and keep a snapshot of the old database for lookups. If a regulator or your business genuinely requires full history, we scope it eyes-open.

We run Google Workspace. Is that a problem for Dynamics?

No. Business Central and Dynamics 365 do not care where your email lives, and switching to Microsoft 365 is never a requirement of the project. If you ever want that migration, it is a separate conversation.

Are we too small for an ERP?

Maybe. If QuickBooks still fits how you operate, staying on it is the right call. The move makes sense when the workarounds become the system: accounting in spreadsheets, inventory counts nobody trusts, and a close that never quite closes.

Managed IT
What is Managed IT?

Managed IT means we operate your entire IT function for a flat monthly fee: helpdesk for your staff, patching, backups, security, vendor management, and a documented plan. It is the IT department you would hire, without hiring one.

How is this different from calling an IT guy when something breaks?

Break-fix support (call a tech when something breaks, pay by the hour) is reactive by design. Managed IT is a flat monthly fee for keeping everything running, so prevention, monitoring, documentation, and planning are part of the service rather than billable extras.

Who is managed IT for, and who is it not?

Companies of roughly 10 to 75 people with no internal IT, where technology problems land on an office manager or the owner. It is also the right answer when insurance, clients, or auditors start asking questions your current setup cannot answer. If you already have a capable internal IT team, co-managed IT is usually the better structure, and if the deciding factor is the lowest per-seat price, flat-fee senior coverage is rarely the lowest bid.

Co-managed IT
What is Co-managed IT?

Co-managed IT puts our bench behind your internal IT person. They stay in charge and stay first line; we bring the escalation depth, the tooling, vacation coverage, and a second set of eyes on security.

How is this different from hiring a second IT person?

Hiring a second IT person costs a salary and still gives you two single points of failure. Co-managed gives your one person a whole team's depth for a fraction of that, without taking their job or their authority.

Who is co-managed IT for, and who is it not?

One-person IT departments at growing companies: the person is good, but they are stretched, they cannot take a real vacation, and some problems are simply bigger than one person. Much of the tooling is already in the Business Premium licensing you own. If nobody internal owns IT at all, there is nothing to co-manage, and fully managed IT fits better. The model also depends on the internal person seeing a bench rather than a threat, so we set that up clearly from the start.

Microsoft 365
What is Microsoft 365?

Microsoft 365 is the platform your business probably already runs on: Outlook email, Word and Excel, Teams, OneDrive and SharePoint files, and, underneath it all, the identity system that controls who can get into everything. Our service is setting it up properly, securing it, and running it. For what a proper setup involves, see the Business Premium setup checklist.

How is this different from Google Workspace, or our old email server?

Compared to Google Workspace, it is deeper on desktop Office, device management, and security controls, and it is the default in regulated and professional industries. Compared to an aging on-premises Exchange server, the cloud service removes the hardware, the patching, and the single point of failure.

Who is Microsoft 365 for, and who is it not?

Any business that lives in email and files, and especially any business whose tenant settings have accumulated by accident over the years; most of our security work starts with straightening out a Microsoft 365 tenant. If your company runs well on Google Workspace and has no Microsoft-specific needs, staying put is reasonable. We administer both.

Azure Infrastructure
What is Azure Infrastructure?

Azure is Microsoft's cloud: the servers, databases, and networks your systems run on, rented by the month instead of bought by the rack. Our service designs, migrates, and runs it, sized to what you use.

How is this different from the server we own?

The server in your closet has to be bought for its busiest day, maintained, backed up, and eventually replaced, and it fails without a spare. Azure workloads scale with you, get patched and monitored as a service, and are backed by data centers with better physical security than any office closet.

When does moving to Azure make sense, and when does it not?

It makes sense when you have an aging on-premises server, a line-of-business app that needs to be reachable from anywhere, or disaster-recovery requirements you cannot meet with hardware. Not everything belongs in the cloud, though: a stable workload with flat usage can be cheaper on owned hardware, and that math gets done before anything moves.

Security Operations
What is Security Operations?

Security Operations is the always-on layer: monitoring across identity, email, and endpoints, with a human response when something looks wrong. A suspicious sign-in at 2am gets caught, investigated, and shut down, whether or not anyone at your company is awake.

How is this different from antivirus?

Antivirus waits for a known-bad file. Modern attacks come through sign-ins, mailbox rules, and stolen credentials, which antivirus never sees. Security operations watches behavior across the whole environment, and pairs detection with someone who acts on it. Two of the foundations are covered in conditional access starter policies and setting up SPF, DKIM, and DMARC.

When does a company our size need security operations?

When clients trust you with sensitive data (legal, healthcare, finance-adjacent), when you are pursuing cyber insurance, or after a scare. It is not a substitute for the basics: if MFA is off and backups do not exist, we fix that first, because monitoring works best on an environment with the fundamentals in place.

More Questions
Will Copilot or AI expose our data?

Only if it is rolled out carelessly. AI tools surface whatever the signed-in person can already access, so oversharing that was invisible in file shares becomes very visible in answers. We fix permissions and governance first, then turn on AI, in that order.

Copilot & Azure Foundry
What is Copilot & Azure Foundry?

Copilot is Microsoft's AI assistant built into Word, Excel, Outlook, and Teams, working with your company's own data. Azure AI Foundry is the platform behind it for building custom AI on your data. Our service rolls both out with the governance to make them safe.

How is this different from ChatGPT?

Consumer chatbots run outside your company: they cannot see your business context, and anything pasted into them leaves your control. Copilot works inside your tenant, respects your permissions, and leaves your data where it lives. The difference is not the AI, it is the guardrails around your data.

When is a company ready for Copilot?

When the team is drowning in drafting, summarizing, and searching its own documents, and leadership wants AI adoption to be deliberate instead of fifty employees quietly pasting company data into free tools. Readiness has one prerequisite: if file permissions are a mess, Copilot will surface documents people should never have seen, so governance comes first. Here is why SharePoint cleanup comes before Copilot, and our Copilot prompt playbook shows what day-to-day use looks like.

Custom AI & Workflow Automation
What is Custom AI & Workflow Automation?

This is AI built around your specific bottleneck: document intake, classification, drafting, data extraction, the handoffs between systems that eat hours every week. We scope one painful process and rebuild it as software. One common shape: a document-extraction pipeline built on Azure AI Document Intelligence.

How is this different from off-the-shelf AI tools, or hiring developers?

Off-the-shelf AI tools are generic by design; your bottleneck usually is not. Compared to hiring developers, you get a senior team that has built these systems before, for the duration of the build, without adding permanent headcount.

Which processes are good candidates for custom AI, and which are not?

Good candidates are high-volume, rules-describable, and painful: hundreds of documents a week, a re-keying step everyone hates, an intake queue that eats a person. If you can describe the rules, the work can usually be automated. One-off tasks, judgment calls, and processes that change every month automate badly, and if the volume will not repay the build, the ballpark stage will show it.

Power Apps
What is Power Apps?

Power Apps is Microsoft's low-code app platform. It turns the tracking spreadsheet everyone fights over, or the paper form somebody re-types, into a real app with structure, permissions, and an audit trail, built in weeks instead of quarters.

How is this different from custom development, or staying in Excel?

Traditional custom development is a much larger investment and a long-term maintenance commitment. The spreadsheet costs nothing until it silently breaks. Power Apps sits between: real software, built fast on the platform you already license, connected to the data you already have.

What should we build with Power Apps, and what should we not?

Build the internal process everyone works around: equipment checkouts, inspections, approvals, intake forms, job tracking. If the words 'the spreadsheet' come with an eye-roll, it is a candidate. Customer-facing products with heavy design needs, or complex custom logic at large scale, deserve traditional development; Power Apps is for internal operations, and it is excellent at exactly that.

Power Automate
What is Power Automate?

Power Automate is the plumbing between your systems. When something happens in one place (a form submitted, an invoice approved, a file dropped), it makes the right things happen everywhere else, with no human re-keying in the middle. A typical starter project: a flow that auto-files incoming documents to SharePoint.

How is this different from Zapier, or just doing it by hand?

Tools like Zapier do something similar for consumer apps; Power Automate is the version that lives inside your Microsoft tenant, respects your security, and talks natively to Microsoft 365, Dynamics, and SharePoint without shipping your data through a third party.

Which everyday tasks are worth automating, and which are not?

Any recurring 'someone copies this from here to there' step: invoice routing, approval chains, onboarding checklists, notifications. The best candidates are boring, frequent, and precisely defined. Fragile processes that change weekly, and one-time migrations, are poor fits, because automation pays for itself through repetition.

FDA 21 CFR Part 11
What is FDA 21 CFR Part 11?

Part 11 is the FDA's rule for electronic records and signatures. If a digital record replaces paper in a regulated process, the system has to prove who did what and when, enforce sign-offs, and prevent silent changes. We build those controls into the Microsoft systems you run.

How is this different from staying on paper, or buying a validated suite?

The traditional answer is staying on paper binders, or buying a monolithic validated suite. We take a third path: implement the controls on the platform you already license, with validation support, so compliance stops being a separate system to buy and babysit.

Does Part 11 apply to us, and when should we tackle it?

It applies to life-sciences companies replacing paper records in regulated processes: pre-launch pharma, medical devices, labs. It gets urgent when production is scaling and the next FDA interaction is a matter of when, not if. Timing matters in the other direction too: if your processes still change weekly, locking them into validated systems too early creates churn. Stabilize the process, then validate it.

CMMC
What is CMMC?

CMMC (Cybersecurity Maturity Model Certification) is the Department of Defense's cybersecurity certification for its supply chain. If your contracts touch controlled unclassified information, certification is becoming a condition of keeping and winning that work. We build the controls and get you assessment-ready. One scoping strategy that saves small suppliers real money: walling off your CUI instead of moving the whole company.

How is this different from the NIST self-assessment we already did?

For years, defense contractors self-attested to NIST 800-171 and nothing was checked. CMMC ends that: a third-party assessor verifies the controls. The difference between self-attestation and certification is the difference between saying and proving.

Does CMMC apply to us?

It applies to defense contractors and subcontractors with controlled unclassified information in scope, and the clauses are already showing up in contracts and flow-downs. If you hold no controlled information and never will, basic cyber hygiene may be all your contracts require. Scoping is the first conversation, and it sometimes shrinks the problem dramatically. One strategy that saves small suppliers real money: walling off your CUI instead of moving the whole company.

HIPAA
What is HIPAA?

HIPAA sets federal privacy and security rules for protected health information. It covers providers and every business associate that touches patient data, and it requires you to prove your safeguards, not just have them. We build and document those safeguards on your Microsoft stack.

We signed BAAs. Is that not enough?

The common substitute is 'we signed a BAA and we use encrypted email,' which covers a fraction of the Security Rule. Real compliance is access controls, audit logs, risk analysis, and evidence, which is a program, not a signature.

Does HIPAA apply to us?

It applies to healthcare and healthcare-adjacent organizations that store or handle patient information: practices, billing companies, benefits firms, health-tech vendors selling to covered entities. If you never touch PHI, you need good security but not HIPAA scaffolding, and a short scoping conversation settles which world you are in. If your staff are already experimenting with AI, read why governed Copilot beats banning AI in a HIPAA-regulated org.

SOC 2
What is SOC 2?

SOC 2 is an independent audit of how your company safeguards customer data. The output is a report your customers' security teams accept in place of endless questionnaires. We build the controls and keep the evidence current so the audit confirms rather than surprises.

How is this different from just answering security questionnaires?

The alternative is answering every enterprise customer's 300-question security review by hand, forever. One SOC 2 report replaces most of that, and the controls behind it make you genuinely more secure rather than just better at paperwork.

When do we need a SOC 2 report?

When you sell to bigger customers who hold you to their security standards, especially as a software or services business handling client data. The trigger is usually a deal: a prospect asks for the report you do not have yet. If your customers never ask for it and never will, the audit adds cost without opening any doors; get the underlying security right and add the report when the market asks for it.

More Questions
Do you run the audit or certification itself?

No. Auditors and assessors have to stay independent, so the same firm cannot build your controls and certify the result. We build the controls, assemble the evidence, and sit beside you during the assessment, so the auditor finds a running system rather than a scramble.

Have a question that is not here?Send us a note →or call (312) 210-0318

See where you stand. Then move forward.

Book a free intro call. We'll talk through where you are today and map a strategic plan for growth, protection, automation, and alignment.

A 30-minute discovery call, no obligationA full team of specialists at a fraction of in-house costA clear next step before you spend a dollar
Loading scheduler…