Kapsule Care for WordPress
Your WordPress
looked after.
The same NZ engineers who built your hosting maintain your WordPress. Monthly updates tested on staging, security reviews in plain English, dedicated support hours for the work you actually want done. Routine maintenance never counts toward your hours.
Kapsule Care Report
acme-store.co.nz · May 2026
14 plugins updated
Tested on staging · deployed 3 May
2 themes updated
Child theme preserved · no visual changes
Security review
No vulnerabilities · file integrity clean
Uptime this month
99.99% · 0 incidents
SSL renewed
Auto-renewed · valid to May 2027
Monthly
Plugin + theme updates
24/7
Uptime monitoring
< 1 hour
Care Pro response time
~14 hrs
Saved per site, per month
Pricing
Two tiers. Per site. Cancel anytime.
Care is per-site, per-month. No setup fee, no contract, save 20% billed annually. Routine maintenance and our own update breakages never count toward your hours.
Kapsule Care
For one production WordPress site
Or $63/month billed annually · per site · NZD
Monthly plugin + theme updates
Staged, tested, deployed
Uptime monitoring with alerts
24/7 we get paged, not you
Monthly security review
Plain-English report
1 hour WordPress support / month
Used on what you actually want fixed
Quarterly performance report
Core Web Vitals + speed audit
Priority support queue
Same-business-day response
Requires Kapsule hosting
For staging access + rollback
Kapsule Care Pro
For revenue-critical WordPress
Or $143/month billed annually · per site · NZD
Everything in Kapsule Care
Foundation of monthly + monitoring
3 hours WordPress support / month
3x more billable hours
Weekly malware scans
Not monthly, weekly
Monthly speed audit + 1 optimisation
We pick one finding and ship it
Priority response (< 1h NZ business)
Real engineer, not a script
Dedicated care engineer
One named person knows your site
After-hours oncall escalation
Site down? We pick up.
5+ sites? Email us for volume pricing.
Staged update workflow
Updates that test themselves before they touch production
Almost every WordPress disaster starts with someone clicking 'Update all plugins' on production. We do the opposite. Every update lands on a staging clone first. We run a visual regression check, click through the critical paths, and only when staging is green does production get touched.
- Staging environment spun up automatically (or we use your existing one)
- Visual regression: screenshot diff against pre-update baseline
- Functional check on the critical user journeys you flag
- Automatic rollback if anything fails the deploy gate
Update deploy pipeline
Clone production to staging
Database snapshot + file copy
Apply 14 plugin + 2 theme updates
Staging environment
Visual regression: 47 screens
0 diffs · baseline matches
Functional check on critical paths
Login, checkout, contact form all green
Deploy to production
Atomic, sub-second cutover
Verify production health
0 errors in 5min post-deploy
Any step fails: production untouched, our team investigates.
Security review · May 2026
contact-form-7 5.8.6 has known XSS (CVE-2024-2x4). Updated to 5.8.7, no exposure window since 24 May patch.
File integrity scan
No injected malware, no unexpected changes
Admin login attempts
2,143 blocked from known-bad ASNs
Admin user audit
3 users, all expected, last login fresh
WordPress core
Running 6.5.3 (latest), auto-patch enabled
SSL validity
Auto-renewed 2 May, valid 90 days
Plain English summary. Plus the technical detail your dev wants to read.
Security review, not security theatre
Real review of real risk, not a CSV of CVE numbers
Every month we run a security review and write you a short, honest report. It is not 'we scanned 5,000 CVEs and found 47 informational warnings.' It is 'your contact form plugin has a known XSS, we patched it; admin login attempts from Russia are up 4x, here is what we did about it.' Plain English, action taken.
- Known-vulnerable plugin/theme versions checked daily
- File integrity monitoring catches injected malware fast
- Admin login attempt patterns flagged to our team
- WordPress core patches applied within 24 hours of release
Support hours that fit your reality
Routine maintenance is free. Hours are for the real work.
Other Care services count every minute. Plugin updates? Hours used. Security check? Hours used. Email reply? Hours used. We do not work like that. Updates, monitoring, reviews are routine, never charged. Your 1 or 3 hours per month are for the things you actually want done.
- Routine maintenance never counts toward your hours
- If our update breaks the site, we fix it free
- Hours roll over within the same calendar quarter
- You see exactly what each request used, every month
This month’s usage
1h 13m remaining · resets 1st of next month
Recent requests
Update WooCommerce settings + Stripe webhook
15 May
Investigate slow product page (caching bug)
11 May
Add new About page from your brief
06 May
14 plugin updates · monthly maintenance
03 May
Security review · monthly
01 May
Care vs DIY
What this costs you in time without us.
We tracked the time our team takes to do this for one production WordPress site. If you do it yourself, these are the rough numbers you sign up for every month.
Power tools, every plan
Care is more than monthly emails.
The tools we run on your behalf every month. None of these are upsells. Both Care tiers get the full kit.
Vulnerability scanning
Staging environment
Atomic rollback
Uptime monitoring
Core Web Vitals tracker
Monthly Care report
File integrity scanner
Plugin compatibility check
FAQ
Frequently asked questions
Start with Care from $79/month.
Per site, per month. Cancel anytime. Save 20% billed annually. Requires Kapsule hosting because we need staging access and rollback.