Frequently Asked Questions

Our clients use us because of our broad capabilities - They know we can successfully deliver complex app and online portal development projects.

We have over thirteen years of experience in solving all kinds of problems, such as working alongside existing development teams, working with legacy systems to support new app developments, building technically complex features, and bringing together systems, processes and applications with seamless integration.

If you have big ideas, find yourself with complex problems and want the very best from an agency, then Scorchsoft can help.

Yes, absolutely!

I have good news, we've written an entire book on this topic called Execute Your Tech Idea. It contains 18 chapters covering everything from finding ideas, qualifying them, raising money, prioritising your project, project management, and even marketing.

Our founder and MD, Andrew, has written the book to be easily understood, even if you aren't technical. The content applies to creating internal tech tools, products, apps, web services, databases, IoT, web apps, and more; It's also relevant to Managers, Professionals in established teams, and Startups.

If you feel like you need to do some learning before you are ready to speak to us, then this is a great low-cost place to start. We hope you find it useful.

If you do find value in our book, then we make work well together too. So please give it a read, and contact us or request a quote when you feel ready (or now if you are already ready).

Get our book on Amazon UK, Amazon US, or other Amazon territories.

Yes, we can.

Before we begin your project, we work with you to write a detailed project specification and then provide you with a fixed-price quote to deliver the work. This fixed price and specification protect you: you can hold us accountable to deliver precisely what has been put to paper for that exact cost. 

A fixed price and accurate specification may take a commitment of time from yourself and Scorchsoft to reach. Before that commitment is made, you may appreciate a ballpark quote.

Get a free quote >

If your project is large and likely to experience frequent changes in your priorities, we also offer an Agile Sprint way of working with monthly (or per-sprint) budgets.

Yes, we will always try and give you a ballpark or approximate price as early as possible; normally on your first call or email. Having a rough idea of expected costs as soon as possible helps you to qualify whether what you have in mind is commercially feasible and if you would like to investigate further.

Ballpark estimates are educated guesses based on our experience, so please remember that the actual final cost may go up or down as we take the time to explore your requirements in more detail. The more information you can provide us with about what you need, the more accurate our ballpark estimate is likely to be.

Get a free quote >

Talk to us. If you share your idea via this form, one of our team will respond within one working day by email or phone.

If you’d prefer to speak to us right now, call 0121 7240447, and one of the team will talk through your ideas and project.

Scorchsoft is a collaborative business, we look to build a relationship with you and are happy to help.

Tell us about your idea >

Get a free quote >

If you aren't ready to contact us but would like to know where to start, then you are in luck; our Founder and Managing Director, Andrew, is the author of the book Execute Your Tech Idea, which aims to give you everything you need to know to find, qualify, implement, and launch your tech project. The philosophies in this book also guide the way we work at Scorchsoft, so if you like what you read, then you will probably like working with us.

Yes, most of the apps we make support both iOS and Android mobile platforms. It’s common for people to want their applications to work across web and mobile devices, so we use development frameworks such as React and React native that enable us to support both platforms quickly.

Yes, nearly every mobile app that we build also needs a web-based application behind the scenes to drive it—ever logged into an app? There is a web server in the background, serving the app with data that is checking whether you have permission to log in or not. 

We make some web applications that are simple admin panels for updating information as an admin user, and we build others that are advanced and interactive tech products. We build front-end web apps using the React framework, which is well suited to create rich and extendible user interfaces, though we can support other frameworks.

We don’t just blindly begin building your requirements; we start by having a meeting to understand the commercial factors that are driving the need for your project in our planning process. We aim to learn enough about you and your business to enable us to advise you and ensure our vision is aligned.

You don’t just want us to tell you that we understand your project; we need to prove it to you. This is why once we understand your business and your requirements, we can scope out your project, create wireframes, and quote. Plans are in place and agreed upon by both sides before we design a pixel or write a line of code.

For large projects, we offer the ability to work in cycles called Sprints, where we iteratively plan, implement, test and then release. Learn the difference between Agile and Waterfall.

You will be introduced to our project team, who will be your primary point of contact throughout the development process.

You can contact Scorchsoft via phone or email, and we also have a dedicated support portal which allows you to track the status of requests, have discussions, and upload other useful information. We also offer a range of support and maintenance options to ensure we are responsive to your requests after the launch date.

You can read more about our project management process in our answer to "How will you project manage my project?".

Yes, typically you will be assigned appropriate copyright or licence rights for the bespoke code we write for your project. We are transparent with intellectual property rights, and you will have the opportunity to review our code ownership terms before the project begins.

Scorchsoft follows Cyber Essentials guidance throughout the organisation to ensure employees, passwords, IT, and network configurations follow security best practices. 

To ensure a secure service, we do not publicly detail all our security precautions. However, we can provide an overview of some of the steps we take to protect your data:

The back-end server code used to drive your application is configured to run over HTTPS and has a secure SSL certificate installed.

We store passwords as hashed strings using a per-user salt, and in some scenarios, we store some sensitive data using two-way encryption algorithms. Should the worst possible scenario happen, and your data be compromised, the culprit would still need to perform complex decryption for the data to be readable.

We use development frameworks that provide tested security features out of the box. For example, our configuration of Laravel and Yii2 allows us to escape and sanitise user inputs to protect against SQL injection attacks, XSS, host-header and CSRF exploits and avoid direct file exposure through protected and restricted directories. Debugging modes are only enabled on test environments, meaning that live servers don’t reveal source code in the event of an error. We also write our code in special circumstances to build upon the protections provided by such frameworks.

we use third-party security software to scan our code for cyber risks automatically. 

Public-private keys are used to give developers SSH access to hosted accounts when deploying code, which allows for the secure management of access credentials.

When hosting with Scorchsoft, our standard servers are backed up daily, both on-site via bare-metal backups in the event of a complete server failure, as well as in a secure, redundant, off-site location within the UK. This backup process provides multiple layers of redundancy, allowing for quick and complete data recovery.

We offer the option to integrate your site or application using a secure content delivery network such as Cloudflare or Akamai. These can provide an extra layer against DDoS attacks while also speeding up the performance of your service. They provide an additional firewall layer, rate limiting, and mask your server’s IP address from those with malicious intent.

Sites that take payment do so via industry-standard PCI-compliant processes.

Our staff are contractually obligated to follow our security policies and receive training on the latest data security procedures. We regularly sign non-disclosure agreements (NDA); our company headquarters are within lockable facilities, which require per-user key fob access and a keycode to enter, and are monitored by CCTV.

For enterprise customers, we can provide a security and vulnerability audits service as part of a project’s deployment using industry recognised penetration testing tools

Many factors contribute to launching a successful project, and some requirements may result in the project taking longer to develop than others. However, for estimation, a good guide is that a project typically takes one month for every £10k +VAT of development work, plus 2-4 weeks for planning and 2-4 weeks to complete user acceptance testing.

For example, in practice, £20k projects take around 3-4 months, £30k projects take 4-5 months, £40k projects take 5-6 months, and so on.

In some cases yes, in others, no.

There are ways we can expedite your project; for example, if we work using the Agile method rather than Waterfall, then we can sometimes shorten the time to complete planning. This also allows us to conduct planning in parallel to development. Here is a 30-minute video where our director, Andrew, explains the trade-offs of Waterfall and Agile.

If you need a much faster delivery then there are other measures we can take. For example, for large projects, we can have two or more developers work on the project in parallel to expedite it every time. Though please be aware that this can add 10-20% to the project cost as there is more coordination time required each week.

Sometimes, by dedicating more developer resource to a project, it can be completed much faster. But in other situations, we may be restricted by the project, technology or security requirements. 

If you have a date requirement, contact us as soon as possible so we can do our very best to meet it.

Yes, we offer the option to engage us on an ad-hoc basis for support or have monthly retainer options should you require a more consistent and reliable level of service.

Most of our clients choose monthly support retainer to get the best responsivity, as dedicated time is scheduled months in advance. This also allows them to lock in our project hourly rate for support and maintenance requests. If you have a highly technical project with us, we recommend opting for a monthly support retainer to cover small ad-hoc changes, improvements, updates and support.

Ad-hoc support can work for projects that need minimal support. However, this can be at the expense of responsivity as requests are scheduled based on when our resource is available and cost more per hour than scheduled retainer or project work. 

We base the size and cost of our support agreements on the amount of development and support hours you need each month. The number of hours you need depends on many factors, such as the size of your project or the number of new features you are likely to need each month. It’s important that you get value for money, so we’d recommend putting together a nice-to-have list so that your allocation is used each month on value-adding improvements.

If you are likely to make extensions to your project after the launch of the first version, then we would recommend switching to an Agile method of project management. This is where we assign a monthly budget for development, and plan, build, test, and launch code revisions in short bursts of time called sprints.

You can read more about the trade-offs between Waterfall and Agile with our FAQ answer to "How will you project manage my project?" or by watching this 30-minute video from our Director, Andrew.

Yes, we recommend you launch the simplest possible version of your tech first (called your Minimum Viable Product) and then extend and adapt it over time. And, the development frameworks we use allow for incremental changes and improvements.

Some changes are bolt-ons, meaning they will probably cost the same to implement now rather than later. For example, if you want to add a new distinct section to your app, then the code and functionality might be stand-alone.

However, other changes can require rework. For example, if you require a very specific relationship to the way user accounts are owned by company accounts, and then change that later. As roles and user account functions touch every element of your app, they are much more likely to carry rework costs to change.

When we plan your project with you please let us know what what you'd like to launch for your first version, and where you'd like to take your tech over time. If we know what features you'd like to implement in future releases then we can take steps in our software design to minimise rework risk. For example, we might structure the first database design to account for future features now, rather than have to change the established database design later.

Thorny questions like this are another reason why we have our thorough planning process, to lean on our experience to make sure your tech is built the right way.

We like to use open source languages wherever possible with HTML, CSS and JavaScript for front-end web apps, and JavaScript or PHP on the back end.

We use React Native for most mobile app projects, and sometimes use Cordova when working within tight budgets or if we need to support web, Android and iOS with one codebase.

For web apps, we use frontend layout frameworks such as bootstrap, ant design or material design, in combination with front-end code frameworks such as React. On the back end, we usually use PHP frameworks such as Laravel or Yii2 for monolithic projects, or JavaScript using NodeJS for projects that require a Serverless or microservices architecture.

Here is a list of some of the other technologies we can support, including Microsoft Asure, Google Cloud, Amazon Web Services (AWS), Yii, Laravel, React, React Native, SQL, Docket, NGINX, Apache, and more.

There are no right or wrong languages, and you can achieve small and large projects using either of these technologies.

We consider both PHP and NodeJS when starting any new project, considering the best approach based on the capabilities of the tools that support these technologies.

For example, we may be more likely to use a PHP framework such as laravel for projects that suit a monolithic architecture. And we may be more likely to use NodeJS for solutions that require us to configure microservices.

Front-end web apps are built using React, which is a JavaScript framework, and for mobile apps, it's React Native. We occasionally work within other frameworks or use plain javascript.

We start by creating a central database that will hold all your data; we then put in place an interface (an API) to allow the web and mobile apps to send and receive this data.

Think of an API as a digital version of a drive-through burger restaurant. If you ask the teller for a burger, then you'll get given one from the kitchen. Ask them for a trampoline, and they will tell you they don't sell that product. When we build a connection between your web app and your mobile app, we will configure these rules based on the functionality of your system. 

We’ve written a free eGuide on this topic should you want more information about how the setup works.

Usually yes. Most modern apps and systems will have an interface as we described in the last question. Ask the company if they have any “API documentation”; if they do then it is very likely that we will be able to integrate with the system.

We’ve experience connecting with lots of different systems and online tools to drive app functionality - here are a few common ones we’ve worked with: Facebook, Twitter, LinkedIn, Amazon AWS, Salesforce, Google maps, Matchmaker, Broadbean, Google Sheets, PayPal, Stripe, Airtables, Mailchimp, Campaign Monitor, Marketo, Insightly, JT Telecom, SMS Gateway, Worldpay, Sagepay, Mailgun, Xero, Analytics, Youtube, Vimeo and others.

If you need to integrate with an existing system that doesn't have an API, then all is not lost; there are other ways. Please contact us about your requirements, and we will advise on what we think is possible.

We usually take payments on-site or in-app using a third-party payment provider such as Worldpay, SagePay, Stripe or PayPal. We can also support other providers on request. There are lots of different payment providers out there that we can integrate with, but they typically fall into one of two categories:

1. Full end-to-end
   Stripe and PayPal fall into the end-to-end category, though there are more providers. With this kind of vendor, you use their service, and they handle both the merchant services and fund collection for you and provide you with a dashboard. You have a balance that accrues with every sale, and payments are made into your bank account at regular intervals, usually every seven days. End-to-end is the simplest option; for example, at the time of writing, Stripe charges 1.4% +20p (at the time of writing) for European cards and 2.9% +20p for non-European cards.

2. Merchant services
   SagePay and Worldpay fall into this category, which act as a middle-man between your bank and your website or app. The merchant-in-the-middle charges a fixed price per transaction, and your bank takes a fixed percentage on top of the merchant services fee. Worldpay, Sagepay and the other merchant service middle-men typically charge 10-20p per transaction and usually have tiered packages based on order volumes.

   With this merchant services approach, you will need to negotiate with your bank about the fees they charge - it’s not uncommon for businesses to shop around the different banks to find the best deal. You will typically be able to achieve between 1-4% depending on the size and nature of your business.

   The largest benefit of the Merchant services approach, is that funds clear directly into your bank account, which may be worth a lot to you if you have high sales volumes.

The merchant services integration typically requires more development time to support as fewer payment related capabilities are provided out-of-the-box, compared with using an end-to-end provider such as Stripe.

Yes, we specialise in highly bespoke projects, and it is common for us to work with existing systems and teams. 

When working closely with other suppliers that are relevant to your business, we aim to build a strong collaborative relationship with a focus on cooperation and support for all of those involved.

If these stakeholders are crucial to the success of the project, then we would recommend arranging a call or meeting with them early on to explore their ideas and identify how to work around any potential environmental limitations.

Yes, if it’s digital. Most app projects start with creating custom visuals of how the app will look and feel before we start development. 

We begin the design process by discovering the value behind your brand, its image and your business as a whole. Once we understand your requirements and objectives, we can engineer a design that is easy to use and performs for your business. I use the word 'engineer' here as good design is more than just pretty pictures - what we build has to work for you. Often this translates to users that enjoy using the site or app, and implementing processes that are optimised to convert clients.

We'll usually begin the design process by wireframing the various sections of the project, thinking carefully about the user journey throughout the whole process. Once you're happy with the wireframes and specification, we will design sharp-looking mockups demonstrating how your app or website will look once built. You'll be given the opportunity to feed back on the look-and-feel and we won't begin coding it up until you are happy and have signed off on the artwork. 

Effective design and usability are all about continuous improvement based upon how users engage with what we've made. Tools like HotJar allow us to see heat maps and videos showing how people are using your post-launch product in the real world, providing valuable guidance on what's working and what needs improvement.

Probably, yes. We prefer to follow our own design process if possible, as it allows us to deliver the best quality and consistency, but we can be flexible with this. 

If your designs are strong and we are confident they will be effective, then yes, we will be able to work with them. If, however, they do not meet our high standards, then we will be honest and recommend that we create the designs for you instead.

Almost certainly. The GDPR regulations will affect your business if you have a website, or store customer data. If you ignore the new rules then you may be liable for fines of up to 4% of your revenue, or €20 million, so you don't want to get this one wrong.

We appreciate this is a complex topic, so, if you want to know more, we have written an article all about how to prepare for GDPR that's full of actionable tips.

Yes. 

If you have a site or app with small resource requirements, then we can host your project on our managed servers. If you have specific hosting requirements, intensive resource demands, or require something more specialist, then we can set you up with your own dedicated, cloud, or load balanced hosting environment. 

For example, if you need to handle high volumes of processing and traffic globally then we may opt for a bespoke multi-server hosting setup using Amazon’s EC2, Cloud Front, Elastic Load Balancer and S3 storage facilities.

Should you be unsure of what you require, one option is to start with a simple hosting package first, and then move to a more advanced configuration if your needs grow.

Our standard servers are backed up every day, both on site via bare-metal backups in the event of a complete server failure, as well as in a secure redundant off-site location within the UK. This provides multiple layers of backup redundancy, allowing data to be recovered quickly and completely.

Should you need data backups by-the-minute then we can configure a bespoke setup for you based on the granularity that you require.

We naturally provide a degree of strategic support around your business and marketing plans based on our experience as part of every project, and we can build tools to integrate with your social media or email marketing software. However, we are not an end-to-end marketing agency so don’t write copy or manage your marketing campaigns for you. 

If you need strategic marketing, social or SEO support, then we have some trusted partner companies that we work with on a regular basis that we’d be happy to introduce you to. If you'd like an intro to one of our preferred suppliers, then please feel free to contact us and let us know what you need.

We have a podcast episode available which outlines the recommended app project management approaches and their tradeoffs. However, here is a summary:

We offer both Waterfall and Agile methodologies, depending on which best aligns with your business needs and preferences.

To determine the most suitable approach, consider the following:

Clients typically seeking a fixed-price quote for a predefined scope of work find the Waterfall method advantageous. It's ideal for budget planning and obtaining approval for expenses. In this model, the project plan is established at the outset. As the project commences, each planned phase sequentially unfolds, offering clarity on deliverables, timelines, and costs.

Conversely, the Agile approach is more adaptable, suitable for projects where requirements may evolve. It involves working in short, iterative cycles or Sprints, usually lasting a month or less. Each Sprint begins with an agreement on the tasks to be accomplished and the criteria for success.

The Agile method's flexibility allows for significant changes based on evolving business needs, but it lacks the long-term predictability of Waterfall. It's akin to a series of mini-Waterfall projects, where new features are regularly released and plans are adjusted in response to changing priorities. Billing in Agile is typically based on a monthly budget that reflects the required development time.

In summary, Waterfall offers more predictability and budget control, ideal if your project requirements are stable. Agile, with its iterative process, is better suited for projects that require frequent updates and additions post-launch. For a project with minimal changes over time, Waterfall is recommended. If your project is expected to evolve with additional features, Agile's flexible, budget-based approach is more suitable.

We primarily use SQL databases (Like MariaDB) for data storage of monolithic hosting setups or NoSQL for applications that require a lot of data (Such as DynamoDB or MongoDB). Our approach can accommodate projects aiming for tens of thousands of users with ease. For projects expecting to scale beyond 50,000 to 100,000 users, we might suggest more complex data structures and possibly distributing the load across multiple servers. However, this can be overkill for most projects.

We will discuss the best option for your needs as part of our planning process.

Yes, we will need your support with testing the project, please. 

We have processes for testing and quality assurance, but the way that we think and use your app, is different to how you will. You defined the project, and you know what you want better than anyone, so you’ll probably use and interact with what we’ve built in ways that we couldn’t have predicted. 

Even if everything works 100% perfectly when we hand it over to you, you will need to check that everything works as expected to sign-off on the work with confidence that we've delivered the project to meet your specification.

Testing and achieving sign-off will require some time investment at the end of a project, and potentially at intervals across the life of the project too – So make sure that you set aside some time in your diary for when it’s needed.

Please check out our podcast episode on User Acceptance Testing, which explains what to expect from the testing process.

We recognise that there are many scenarios where you may grow to a point where you no longer need us. For example, a start-up may not have the experience or funds to employ and put the structures in place that are necessary to run an efficient in-house development team for some time. However, as the business grows, the commercial landscape may also change, and make in-housing the development team a sensible long-term decision.

And, we’re okay with that - In fact, we plan for it.

Our code is built upon popular frameworks used by lots of the best teams in the world. For example, we use the React Framework for many of our projects, the same framework that Facebook is built upon and drives all of their products. Provided they are used correctly, these frameworks provide rules and conventions that give consistency to the work that developers create.

These benefits extend to you too: Should our offices explode, which we sincerely hope that they won’t, then skilled development teams exist in the world that can pick up from where we left off. This significantly reduces project risk for you, offering peace of mind.

We also version-control our code using an industry-standard tool called GIT. Think of it like being able to save your game as you go - at key milestones developers can save their progress and GIT will remember all the file changes that form each save-state.

GIT provides a history of who has worked on what, and when, enabling us to manage the different versions of your application and safely enabling multiple people to work on a project in parallel. Once everyone is complete, we can pull together new code and features in a process called a merge. 

These methods allow our team to work collaboratively with each other and creates a win-win scenario that reduces your business risk too.

Yes we have a team of approximately 20 people who are based in the UK. 

There is a difference between a website and a web app, so this answer will exclusively talk about website content management. If you want to know how we build apps, then please read our reply to “What programming languages and frameworks do you use”.

We use a lot of different content management systems, and each one has its own set of pros and cons. Our usual go-to's are Laravel, NodeJS (Express), MODX and Wordpress, though we’ve also used many more including Drupal, Concrete5, Opencart, and Prestashop. 

There isn’t a one-size-fits-all content management system, as each one satisfies their own niche. But if you have simple requirements, then we will most-likely recommend MODX or Wordpress. 

Sometimes you may have more advanced plans for your website. You may want user login features with a bespoke dashboard, tools to take recurring payments, or want the option to build an app that connects to your website to populate it with data. If you fall into this category, then you should probably consider us building your site using a development framework such as Yii2, Laravel or NodeJS ExpressJS/Sails.

Yes, we can manage both anonymous and pseudonymous data, catering to projects that require data anonymization for sensitive information or compliance with data protection regulations. We can also use one-way and two-way encrypt data or encrypt data at rest (such as via hard drive encryption). Please let us know if you have a requirement for anonymisation or encryption of data, and we can ensure it forms part of your project specification, is included in plans, and is estimated.

We offer two main approaches for generating reports: coding them directly into the back-end or integrating with tools like Google Data Studio or Microsoft Power BI. The choice depends on the complexity of the reports needed and whether you prefer to manipulate the data yourself.

Yes, we can incorporate automated unit testing into our development process. The extent and depth of testing depend on the client's preferences and the project's requirements, balancing thoroughness with cost considerations.

For example, if you would like full code coverage unit tests, this will increase the time and cost to develop your MVP but will reduce ongoing maintenance work as the end product will be more robust. We have several options available, which we would be more than happy to discuss based on your needs.

For substantial projects with a fixed price agreement, such as those under the waterfall method, we typically divide payments monthly, including an initial deposit. This deposit is often slightly higher to cover the increased workload at the project's outset.

Additionally, should we undertake project planning, this will be billed upfront, though it usually constitutes a minor portion of the total cost.

In cases of Agile projects or support maintenance contracts, billing typically occurs at each month's start, in advance of the upcoming sprint.

Absolutely! Our Managing Director, Andrew, has written technology books to help you on your journey.

Execute Your Tech Idea

Execute Your Tech Idea gives you everything you need to find, qualify, implement, and launch your tech idea. Discover your ‘aha!’ moment in this plain-speaking, easy-to-read guidebook suitable for non-technical readers.

Enjoy learning about the essential concepts you need to succeed, covered in enough detail for you to be effective without getting overwhelmed. Each chapter builds on the last, enabling you to gradually grow your confidence in a way that feels clear and easy.

The ChatGPT Guide for Business

iscover the power of AI for your business with this essential guide to ChatGPT with this Quick-Start Guide to Effective AI Use and Prompt Engineering In Work and Business

Full of practical applications & techniques, learn how to harness AI to boost productivity, enhance your work & gain a competitive edge. From business communications to project management, marketing & more, you'll learn how to use AI responsibly without compromising your values.

A must-have guide for you or your team!

--

We also recommend the following books (not written by our MD):

The lean start-up

This book isn’t just aimed at start-up entrepreneurs; it also applies to existing businesses launching new products. It covers the most effective way to launch and test a new tech product, helping you to eliminate waste and maximise success.

Traction

So you’ve just build your new start up or product now comes the hard part – marketing it to get major traction! Traction shows you how businesses, both new and old, have identified and exploited one or more of the 19 marketing channels that exist to achieve explosive growth.

The start-up funding book

If you’re a startup in the UK wondering how you may self-fund your venture, then this book is for you. It covers all sorts of finance options from loans to accelerator programs, Angel and equity investors.

Please, let us hear it!

Ask Scorchsoft a question >

You’re here because you have an idea or a fundamental business problem that you’re trying to solve. If you want to find out more about us then you can check out our capabilities page or explore our case studies.

If you want even more information then it’s probably a good sign that it’s time to speak to us. You can start right now by telling us what you need via our contact form, or give us a call on 0121 7240447.

We reply to email enquiries within one working day.

Get a free quote >