If you run WordPress sites for clients, you’ve probably been asked the question: “What do you actually do in that monthly maintenance fee?” Most agencies struggle to answer that clearly, which is why so many clients quietly cancel after six months.

WordPress maintenance is operational work — and like any operations discipline, it deserves a real checklist with measurable outcomes. Here’s how we approach it at HDNETRO.

The five operational pillars

1. Automated updates with safety nets

WordPress core, plugin and theme updates need to happen — but not blindly. A managed maintenance service should:

• Pull updates during low-traffic windows (typically 03:00 in your site’s local timezone).
• Take a pre-update file + DB snapshot before publishing the change.
• Run an automated visual regression test on the homepage + 3 critical pages.
• Roll back automatically if the visual diff exceeds a configurable threshold.

We measure success here in a single number: percent of updates published without manual intervention. Our internal target is > 99%.

2. Daily, off-site, encrypted backups

The backup industry standard is “3-2-1”: three copies, two media types, one off-site. For WordPress, off-site is the critical part. Local backups stored on the same server as the WordPress install are worthless if that server fails.

We store daily backups on encrypted AWS S3 in eu-west-1 with 30-day rolling retention. Restoration is one click from your dashboard. We test restore success on a random subset of customer sites every week.

3. Real uptime monitoring

“Uptime monitoring” is the single most over-promised feature in maintenance plans. Pings every 5 minutes from a single region tell you almost nothing. Real monitoring means:

• 1-minute ping intervals.
• Pings from at least 3 geographically distinct regions.
• Checking the actual HTML body for known strings (not just HTTP 200 — a defaced page can still return 200).
• SMS or push notifications when at least 2 regions report failure simultaneously.

4. Security as a process, not a plugin

A premium maintenance plan should include weekly malware scans, file integrity checks against a known-good snapshot, plus active monitoring of CVE databases for vulnerabilities in your installed plugins.

When a critical plugin CVE is published, we don’t wait for the next update window — we hot-patch within the same day, with manual review by an actual engineer.

5. A monthly report your client will actually read

Most maintenance reports are PDFs that look like server logs. We write ours like a doctor’s check-up summary: 1 page per site, plain language, with the three things your client cares about: is it up, is it fast, is it safe.

“The agencies that lose maintenance clients fastest are the ones that send the most technical reports.”

What this looks like at $29/month/site

The five pillars above are the floor — not the ceiling — of what HDNETRO Agency Maintenance includes. We charge $29 per site per month because we run real automation at scale; the marginal cost of adding a site to our system is genuinely close to that number.

If you’re paying more than $50/site for a “premium” plan today, ask your provider how often the visual regression test caught a bad update. If they don’t have that number, you’re paying for marketing.