A recent hack of my Web site led me to sign up with a security as a service (SaaS) vendor to monitor my site. A month in, they emailed to ask if I was pleased.
I don’t know, and that is bad. The updates they give me are so unclear, and their service so hard to navigate, I’m less sure about my security status than before.
When it comes time to renew my subscription, I’ll either cancel or find another SaaS provider whose value I can assess. If you’re a SaaS vendor, are you alienating your customers like this?
Dumb SaaS Mistakes
This provider seems to lack any understanding of my business. I make money by talking to clients, marketing myself, interviewing experts, and writing and revising marketing content. I lose money every hour I spend deciphering cryptic security messages, reading FAQ’s on arcane security topics or fiddling with complex WordPress files.
Whatever application or service you’re providing over the Web, your customers pay you to handle the IT plumbing so they can make money. Here’s what this vendor got it wrong, and what you should avoid with your customers.
Failed to properly set my expectations. Their Web site promised to “clean your site of malware with one click.” They may or may not have done this. But even after my site was supposedly clear of malware, it didn’t look and run right. It took many, many more hours and a lot of money with a designer fixing what the malware broke. A “one click” fix implies I’ll be good as new after that one click. If that isn’t so (and a customer will need other help beside yours to get back to business) tell them up front.
Bombarded me with jargon. This security provider tries to tell me what they’re doing, but fail miserably. Their weekly security alerts are full of techno-babble (see below) and provide “alerts” which turn out to be routine notifications I don’t need to take action on. This is a waste of my time and of theirs.
Are hard to work with: Rather than ask questions or get help via email, I have to log into this provider’s Web site to create my own trouble ticket. The site is crammed with tiny type and technical jargon. The “trouble ticket” option is hidden under other buttons, and requires me to submit my FTP log-in info to proceed. (You do have your FTP log-in credentials on the tip of your tongue, right?)
How to Get My Business
- Build your service around on my needs, not your technical specialty. In the case of a security monitoring service, I’d love it if they partnered with WordPress experts to take ownership not just for cleaning my site, but returning it to its original look and feel.
- Communicate effectively. Only contact me when I need to take action. Don’t tell me about routine security updates or “alerts” about which I don’t need to or don’t know how to respond to. (One exception would be a clear weekly or monthly report telling me how many infections/attacks you stopped, and the effect they would have had on my business, to help me measure your value.)
- Make everything easy. Large type, attractive icons and plain English terminology on Web sites, please. I work in email, not trouble tickets – let me ask questions and get help without logging into your site. And give me one or two click access to information about the most recent issue, without forcing me to go through a list of service requests. This is user interface 101.
I know security is devilishly complicated and requires safeguards and extra steps to work through customers’ Internet Service Providers and WordPress sites. But it’s comparatively easy to:
- Not promise a “one click” fix if you can’t provide it.
- Make it easy for me to understand what you’re doing, and most importantly…
- Remember the problem I’m paying you to fix isn’t fixed until I’m back earning money.
Need more help selling cloud services? Check out this sample content plan you can adapt to your own needs.