Signing an IT support contract without knowing what to look for is one of the most common mistakes UK businesses make. The sales process runs smoothly, the pricing looks fair, and then six months in something goes wrong and the contract does not cover what you assumed it did. This guide breaks down what to check before you commit.
Why the Contract Matters More Than the Sales Conversation
Every IT provider will tell you they are different. They will talk about response times, their team, and their track record. Some of it will be true. The only way to know for certain is to check what is actually written in the agreement.
The contract is what you can hold a provider to legally. Promises made in a sales call carry no weight if they are not written down. If it is not in the contract, it does not exist as far as your business is concerned.
Read the full document before you sign, not just the headline summary. The exclusions and limitations are usually buried in the service schedule or the appendix at the back.
What the Service Level Agreement Should Include
The SLA is the part of the contract that specifies how quickly your provider must respond to an issue and how quickly they must resolve it. This is one of the most important sections in any IT support agreement, and it is often where the gaps show up.
Most SLAs split issues by priority level. A total system failure that stops your whole team working should carry a response target measured in minutes. A single user having a non-urgent printer problem can reasonably wait a few hours. The question is whether the contract states this clearly, or leaves it vague.
Check whether the SLA covers response time only, or resolution time as well. Getting a callback within 30 minutes is not the same as having your problem fixed within 30 minutes. Some providers are precise on response but vague on resolution. If yours is, push for a specific clause before you sign.
Also confirm whether SLA hours are based on business hours or around the clock. If your team works shifts or your business runs outside the standard nine to five, that distinction matters a great deal.
What Is Actually Covered (and What Is Not)
Coverage varies between providers. Some give you a genuinely comprehensive service for a flat monthly fee. Others exclude onsite visits, out-of-hours calls, hardware faults, or any work they define as a project. Reading the exclusions is just as important as reading what is included.
A solid managed IT support agreement should cover remote support for day-to-day issues, proactive monitoring of your systems, software patching and updates, and IT helpdesk access for your team, with a clear escalation process for critical issues.
If onsite support matters to your business, check whether it is included in the contract or billed separately per engineer visit. Some providers include a set number of onsite days each quarter. Others charge per call-out on top of the monthly fee.
Ask the provider for a written list of what the contract explicitly does not cover. If they are reluctant to provide one, treat that as a warning sign.
Cybersecurity: Do Not Assume It Is Included
Many businesses assume their IT support contract includes meaningful security protection. It often does not, or not to the level you would expect.
At a minimum, your contract should specify who is responsible for keeping software and operating systems up to date. Unpatched systems are among the most common entry points for cyber attacks. The National Cyber Security Centre (NCSC) recommends that businesses confirm their IT provider holds Cyber Essentials certification as a baseline standard before signing anything.
Ask directly: is endpoint protection included? Is there monitoring for suspicious activity on your network? What happens if a security incident is detected? Your cybersecurity arrangements should be written into the agreement explicitly, not assumed.
According to the DSIT Cyber Security Breaches Survey 2024, half of UK businesses reported a cyber attack or breach in the previous 12 months. For medium-sized businesses, the average financial cost came to £10,830. A contract that does not address security is leaving your business exposed.
Exit Clauses: Know How to Leave Before You Sign
Before agreeing to anything, you should know exactly how to leave. A quality IT provider will not need to lock you in with unreasonable exit terms.
A reasonable notice period sits between 30 and 90 days. Anything longer should prompt questions. More importantly, check what happens to your data, accounts, and system configurations when the contract ends. Everything should be handed back to you cleanly.
If a provider controls access to your domain registration, your email accounts, or your server settings without a written exit process in the contract, that is a serious problem. Your infrastructure belongs to your business. Make sure the contract says so.
Also check whether you own any licences or hardware purchased through the provider. If they have been managing your Microsoft 365 licences or your domain, the contract should confirm those belong to your business, not theirs.
If you ever need cover quickly during a transition between providers, knowing you have access to emergency IT support as a fallback is worth planning for in advance.
Pricing and Hidden Extras
The monthly fee is rarely the total cost. Many IT support contracts carry add-on charges that do not appear in the headline price.
Common extras include onsite visits billed per call-out, out-of-hours support charged at a premium rate, project work such as moving to the cloud or setting up a new server, and fees for adding users or devices during the contract year.
Ask the provider to walk you through a realistic example invoice from an existing client in a similar-sized business. That gives you a much more accurate picture of what a typical month costs in practice. If they are not willing to do that, ask why.
Fully outsourced IT support in the UK typically runs between £35 and £90 per user per month, depending on what is included. If a quote is well below that range, check carefully what has been left out.
Contract Terms That Should Give You Pause
Some contract terms are worth walking away from entirely. Vague SLA wording with no clear resolution targets is one example. A liability cap set at only one month of fees is another. Exit notice periods of six months or longer suggest a provider who knows from experience that clients want to leave.
Watch for contracts that grant the provider ownership of your domain, your email accounts, or your server configurations. Your data and your systems belong to your business. If any clause implies otherwise, ask for it to be rewritten before you agree to anything.
Questions to Ask Before You Sign
These questions will tell you far more about a provider than any brochure or discovery call will.
What exactly happens if you miss an SLA? Is there a financial credit or penalty? Who handles our day-to-day support, and are they based in the UK? How do you manage critical issues that come in outside business hours? What security certifications does your company hold? Can we speak to a current client in a similar sector? What does your offboarding process look like if we decide to move on?
Clear, direct answers to those questions are a good sign. Vague or defensive answers are not.
Frequently Asked Questions
How long should an IT support contract be?
Most IT support contracts run for 12 months, which works well as a starting point. Some providers offer rolling monthly arrangements that give you more flexibility, sometimes at a slightly higher monthly rate. Multi-year agreements can offer better pricing but carry more risk if the service falls short. A 12-month initial term with a clear renewal option is a reasonable starting point for most UK businesses.
What is a reasonable response time in an IT support SLA?
For a critical issue such as a server failure or complete loss of connectivity, a response target of 15 to 30 minutes is reasonable. For a high-priority issue affecting a single user, one to two hours is typical. Always check whether these targets apply around the clock or only during business hours, and whether the SLA specifies response time, resolution time, or both.
Is cybersecurity included in an IT support contract?
Not always. Basic contracts may cover patch management and software updates but exclude endpoint protection, threat monitoring, or incident response. Before signing, confirm exactly what security provision is included. If it does not meet the standards recommended by the NCSC, a separate arrangement may be needed alongside the core IT support contract.
Can you leave an IT support contract early?
Most IT support contracts include an early termination clause that requires payment of the remaining contract value. If you are unhappy with the service, your best option is usually to document any SLA failures and use those as grounds to negotiate an early exit without full penalty. Always check the exit terms before you sign, not after.
What should happen to my data when the contract ends?
Your provider should return all data, passwords, account access, and system configurations to you in full when the contract ends. This should be written into the contract before you sign. If your provider holds access to your systems without a clear written exit procedure, raise that before agreeing to anything.
Do IT support contracts cover hardware?
This varies by provider. Some managed IT support agreements include hardware maintenance or replacement. Others cover software and configuration only. If physical equipment is central to your business, check the contract for hardware fault coverage and confirm in writing who pays for repairs or replacements when something fails.
A Contract Worth Signing
A good IT support contract protects your business, not just the provider. Taking time to read what you are signing, asking the right questions, and pushing back on terms that do not work for you puts you in a far stronger position when something eventually goes wrong.
If you are looking for IT support for your business or thinking about switching providers, UK IT Services offers a free consultation to help you understand exactly what level of support your business needs. Get in touch today to find out more.